Back to Home Page
Home
Contact
Site Map
Privacy Policy
My Account
Forgot Password?
Registration
Registration: End Users
Registration: Site Administrators
Registration: Enterprise ID Administrators
About
Services
Partners
Support
Support: FAQ
Support: FAQ: End Users
Support: FAQ: Site Administrators
Support: FAQ: Enterprise ID Administrators
Support: FAQ: SHIB Federations
Support: FAQ: SHIB Applications
Support: Policies
Support: Policies: End Users
Support: Policies: End Users
Support: Policies: Site Administrators
Support: Policies: Enterprise ID Administrators
Support: Policies: Attribute Release Policy
Support: Policies: ProtectNetwork IdP Metadata
Support: Downloads
Support: Downloads: Buttons
Support: Downloads: Logos
Support: Policies: ProtectNetwork IdP Metadata
Support: Integrate ProtectNetwork Metadata
 Microsoft®
Visit Site
 InCommon®
Visit Site
 UK Federation
Visit Site
 SWAMI
Visit Site
 University of Texas
Visit Site
 Texas A&M University
Visit Site
 MIT
Visit Site
 View all sites
Visit Site
  1. What is Shibboleth®?
  2. What is OpenID?
  3. How does ProtectNetwork ensure high availability and uptime for it's services?
  4. I manage a Shibboleth enabled Service Provider Website. How can I use ProtectNetwork for my site?
  5. What kind of SLA's does ProtectNetwork provide?
  6. What kind of uptime can ProtectNetwork identity services?
  7. Can our students, staff and guests obtain and use ProtectNetwork-ID's?
  8. Does ProtectNetwork support Microsoft Cardspace?
  9. I am a Campus/Enterprise Identity Registrar/Administrator. How can I leverage ProtectNetwork?
  10. Can you customize the process of acquiring and using ProtectNetwork identity services?
  11. I am an ASP that is not Shibboleth enabled. Can ProtectNetwork help me Shibbolize our web application?
  12. I manage a Shibboleth enabled site/federation. How can I add ProtectNetwork to our trust metadata?
  13. What is the attribute release policy (ARP) of ProtectNetwork?
  14. I manage a Shibboleth enabled site. How can I tell if the ProtectNetwork-ID presented to us is LOA-1 or LOA-2?

 
Shibboleth® is a widely adopted open Internet standard for web single sign-on and
federated identity and access management. Shibboleth uses the SAML open standard for exchanging authentication and authorization information across multiple security domains
in a collaborative trust federation.

Shibboleth® is currently in use worldwide at several hundred universities, healthcare organizations, large corporations and service providers. Shibboleth is the technology of
choice behind several large collaborative trust federations and web applications.

The SAML standard, created by the OASIS consortium, is employed in several large multi-institution collaboration projects, such as, Internet2, caBIG (Cancer Bioinformatics Grid),
BIRN (BioInformatics Research Network), Globus Alliance, Liberty Alliance, United States
eGov eAuthentication Initiative and HSPD-12.

Shibboleth® is a project of Internet2 funded by the United States National Science Foundation Middleware Initiative (NMI) and others.


 
OpenID is an open, decentralized framework for user-centric digital identity. OpenID starts
with the concept that anyone can identify themselves on the Internet the same way websites do-with a URI (also called a URL or web address). Since URIs are at the very core of Web architecture, they provide a foundation for user-centric identity. For more information, please visit the OpenID website.


 
ProtectNetwork has developed an extensive set of monitoring and alerting agents and processes to keep the identity provider infrastructure up and running at all times. We monitor our systems and networks internally for software, hardware and network failures in a distributed fashion. We also monitor our identity service infrastructure for accessibility and uptime for external failures such as DNS, HTTP, HTTPS, PING, TRACEROUTE and others. We have deployed monitoring agents worldwide to test and measure our uptime on a regular basis. Our IdM staff is alerted in advance in case of any access failures. We also provide the ability for our customers to check our uptime at anytime using their desktop web browser.


 

It is quite simple. Here are some simple steps you can follow.


 
ProtectNetwotk provides a industry leading SLA to it's identity and access management customers. This is the first of its kind in the industry. In addition, we provide a whole host of value added services to our campus/enterprise customers. Each of these services can be customized to each customers needs and budget. Our goal is to do our very best to meet and exceed our customer's objectives and expectations.


 
Our datacenter and customer support center is always open and available. We provide
SLA to our customers that host their identity and authentication services in our datacenter.
The datacenter is well equipped with highly redundant and reliable network and server infrastructure.


 
Yes. The ProtectNetwork site is open to all. Anyone who can access our site with a desktop web browser can request a userID. A ProtectNetwork-ID with LOA-1 is granted to anyone
with a valid and verifyable email address.


 
Very soon. We have this compatibility working in our test/staging environment and soon
will be available on our production site.


 
Campus/Enterprise registrars/administrators can load their user-identity data in bulk on
to ProtectNetwork and leverage ProtectNetwork as an Identity Provider for their Campus/Enterprise users. Once the user data is loaded you will have full access to
manage your data, you are always in full control of your data at all times. We provide remote delegated administration over the Web. This feature is available via SLA and legal contracts. Please contact sales@protectnetwork.org.


 
If you are a Campus/Enterprise with identity and access management needs then we can customize the process of registration, validation and authentication of ProtectNetwork-ID by employees of your organization. Our goal is to meet and exceed customer expectactions and experience.


 
Yes. The ProtectNetwork team provides a host of services to Campus/Enterprise/ASP customers. Our team has helped large campus/enteprise/ASP customers by enabling their IT and application infrastructure with Shibboleth and OpenID. We would be delighted to help. Please contact our sales team at sales@protectnetwork.org for further details.


 
We provide our ProtectNetwork Shibboleth IdP metadata online with instructions. As a site/federation manager, you may simply download our metadata and follow the install instructions. Alternately, you may coordinate this with our IdM support staff by contacting
them at support@protectnetwork.org.


 
Our attribute release policy is not a static document or practice, it evolves over time based
on changing needs of end-users, service providers and market forces. So please do visit
often and keep yourself up to date about our attribute release policy. In addition, we
provide user control mechanism so that end-users can control their attribute release by themselves. Attributes are released to an ASP only after user authenticates at
ProtectNetwork® and only with the permission of the user.


 
For transmission of the Level of Assurance (LOA) value, the ProtectNetwork IdP servers use a special attribute with the following ID:

http://protectnetwork.org/pn/loa

The permissible values for this attribute are:
LOA-1
LOA-2

A sample AAP.xml rule to accept this attribute would be:

<AttributeRule Name="http://protectnetwork.org/pn/loa" Header="Shib-PN-LOA" Alias="LOA">
  <SiteRule Name="protectnetwork-idp">
    <Value>LOA-1</Value>
    <Value>LOA-2</Value>
  </SiteRule>
</AttributeRule>