Date: Tue, 19 Mar 2024 10:43:13 +0000 (UTC) Message-ID: <881851512.1172.1710844993638@ip-10-10-7-29.ec2.internal> Subject: Exported From Confluence MIME-Version: 1.0 Content-Type: multipart/related; boundary="----=_Part_1171_1759773626.1710844993636" ------=_Part_1171_1759773626.1710844993636 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Content-Location: file:///C:/exported.html
Term |
Definition |
---|---|
COmanage Registry |
An Identity Management System (IdMS) designed= for collaborative organizations. |
COmanage component |
A part of the COmanage toolset, one that will= be available for use but not necessarily implemented by the COmanage platf= orm. Group management tools such as Grouper may be a component within the C= Omanage platform. |
COmanage platform |
A CMP based on the COmanage data model and th= e COmanage Reference Architecture. |
COmanage Service Instance |
A COmanage instance run externally to a CO. C= urrently in planning stages only. |
Term |
Definition |
---|---|
Attribute |
A piece of information (e.g., name, email, st= atus, age, address, course enrollment, level of education, nationality) abo= ut an individual. |
CMP Admin |
A person responsible for administration of th= e CMP itself (as opposed to access management to the CMP). |
CO Identity |
The collection of electronic information abou= t an individual as applicable to their participation in the CMP. This infor= mation may be informed by data coming in from the initial IdP for the user,= but will be editable/applicable only within the CMP setting. See also: Hom= e institution identity |
CO Registry |
An identity registry of participants associat= ed with a CO. The CO Registry is middleware that operates to support the CM= P. |
Collaboration Management Platform (CMP) = td> | A unified collection of services and middlewa= re that is intended to hide the complexities of inter-organizational collab= oration, enabling Scientists, Researchers, Educators and any one else needi= ng to work together to concentrate on their work instead of being frustrate= d by technological limitations. Services may include messaging (email, cale= ndaring and scheduling, and contacts), team collaboration (file synchroniza= tion, ideas and notes in a wiki, task management, full-text search), real-t= ime collaboration and communication (e.g., presence, instant messaging, Web= conferencing, application / desktop sharing, voice, audio and video confer= encing), and Social Computing tools (e.g., blog, wiki, tagging, RSS, shared= bookmarks). |
Collaborative Organization (CO) |
A collection of people collaborating together= . This may be on a department level, an institutional level, an interinstit= utional level, or any combination there of. Virtual organizations (see belo= w) are one possible form of Collaborative Organization. A CO provides the e= ssential IT infrastructure supporting collaborations between people so that= the traditional limitations of localized applications may be overcome. = |
Collaborative Organization Unit (COU) |
The COU is an optional construct to allow you= to define a hierarchy within a CO. (e.g. a self-contained collection or de= partment within a CO; a collection of privileges within a CO) |
COllabmin |
A person, usually a staff person or a researc= h associate, who is responsible for access management to the CMP. Tasks may= include adding people to email lists, granting them wiki access controls, = removing permissions, etc. |
Delegated enrollment |
When an account is created for an individual = in a CMP, either by an administrator or other authorized person. |
Delegated invitation |
When an individual is invited (with option to= decline) in to a CMP. |
Deprovisioning |
Removing access from an individual, either by= deleting the account or changing their authorization information for a giv= en service or application. |
Domesticated Application |
An application that works well with enterpris= e infrastructure, typically by externalizing group management, authenticati= on, and/or authorization. |
Enrollment |
The process of inviting, adding to groups, es= tablishing authorizations in the CO. (see CMP Enrollment) |
Group |
In the COmanage context a collection of peopl= e where the workflow for onboarding/offboarding membership is relatively si= mple as compared to the workflows for a CO or COU |
Identity Information Discovery |
The process of collecting identity informatio= n about a participant in a CO from the participant's home institution and/o= r by collecting self asserted data from the participant. This process follo= ws Invitation or Self Registration. |
Identity Provider |
An authoritative source of attributes for an = individual. |
Intake |
The attribute flow from the identity provider= in to the CMP. |
Intake and enrollment process |
The automatic enrollment of individuals in to= a CMP as a result of input from the participating institutions' central Id= M systems via federated tools such as Shibboleth or protocols such as OAuth= . |
Interfederation |
|
Invitation |
The process of inviting a new person to the C= O by an existing participant. |
Home Institution Identity |
The electronic identity stored at the identit= y provider, shared out per that institution's policies. Any changes that a = member of the CO wishes to make to this information must be done at the hom= e institution - the CMP will be unlikely to have authorization to make thos= e changes for the user. |
Organizational Identity |
An identity that is somewhat vetted, probably= from a education or research institution, as contrasted with a Social Iden= tity |
Petition |
A set of data that follows you through the en= rollment process. |
Provisioning |
Providing access to an individual user, eithe= r by creating an account or changing their authorization information for a = given service or application. |
Registry Admin |
A person responsible for the administration o= f the CO Registry. |
Role |
A specific function which implies a level of = access rights to a service or set of services. |
Self Registration |
The process of a person becoming a new partic= ipant in a CO without being invited by an existing participant. |
Social Identity |
(definition in progress) An identity that is = not vetted but is in popular use. For example: Google accounts, Facebook Co= nnect, Twitter |
Virtual Organization (VO) |
A VO is a collection of individuals or instit= utions that is focused around a particular domain science and usually uses = significant resources (computers, storage, networks, etc.) beyond collabora= tion tools. Often, these additional resources have substantial authorizatio= n requirements, stemming from federal guidelines, audit standards, etc. = |
For other useful terms and definitions, see the OSS IdM Functional Areas document *bei= ng produced by the FIFER-API group and the Grouper Glossary