AAI and mobility

This activity aims at development and deployment of the infrastructure for federated sharing of services and resources. The infrastructure should enable the users of different institutions to access resources operated by their partner organizations. The accessed resources are not only various network applications but even the network connectivity itself.

Currently we use different authentication and authorization technologies as they have evolved for the needs of different types of applications. The Public Key Infrastructure (PKI) is used mainly by grid projects, Security Assertion Markup Language (SAML) controls access to web applications and the tree of RADIUS servers protects the network access in the eduroam project.

Since, independently of the technologies, the users' identities are always provided by their home institutions, our purpose is to build a unified trust domain within the Czech academic community to easily inter-connect with our partners outside of the country.