COmanage Gears

An Identity Management System (IdMS) designed for collaborative organizations. Modules within Gears include: CO person Registry, the COmanage API, and the COmanage console.

COmanage module new

A part of a specific COmanage toolset, one that will be available for use but not necessarily implemented by the COmanage platform. For example, the CO Person Registry is a module of the COmanage Gears toolset.

COmanage platform new

A CMP based on the COmanage data model and the COmanage REST COnnector API but otherwise independent in its design and implementation.

COmanage Service Instance new

A COmanage instance run externally to a CO. Currently in planning stages only.

Attribute delivery mechanism new

The process of sending attributes to be added or built in to an X509 certificate.

CMP Admin

A person responsible for administration of the CMP itself (as opposed to access management to the CMP).

CO identity new

The collection of electronic information about an individual as applicable to their participation in the CMP. This information may be informed by data coming in from the initial IdP for the user, but will be editable/applicable only within the CMP setting. See also: Home institution identity

CO Registry

An identity registry of participants associated with a CO. The CO Registry is middleware that operates to support the CMP.

Collaboration Management Platform (CMP)

A unified collection of services and middleware that is intended to hide the complexities of inter-organizational collaboration, enabling Scientists, Researchers, Educators and any one else needing to work together to concentrate on their work instead of being frustrated by technological limitations. Services may include messaging (email, calendaring and scheduling, and contacts), team collaboration (file synchronization, ideas and notes in a wiki, task management, full-text search), real-time collaboration and communication (e.g., presence, instant messaging, Web conferencing, application / desktop sharing, voice, audio and video conferencing), and Social Computing tools (e.g., blog, wiki, tagging, RSS, shared bookmarks).

Collaborative Organization (CO)

A Virtual Organization, but with additional capabilities allowing for collaborators to use their institutional identities and services. A CO provides the essential IT infrastructure supporting collaborations between people among separate institutions overcoming the traditional boundaries of Internet applications.

COllabmin

A person, usually a staff person or a research associate, who is responsible for access management to the CMP. Tasks may include adding people to email lists, granting them wiki access controls, removing permissions, etc.

Deprovisioning

Removing access from an individual, either by deleting the account or changing their authorization information for a given service or application.

Domesticated Application

An application that works well with enterprise infrastructure, typically by externalizing group management, authentication, and/or authorization.

Enrollment new

The process of inviting, adding to groups, establishing authorizations in the CO.

Identity Information Discovery

The process of collecting identity information about a participant in a CO from the participant's home institution and/or by collecting self asserted data from the participant. This process follows Invitation or Self Registration.

Identity Provider

An authoritative source of attributes for an individual.

Intake new

The attribute flow from the identity provider in to the CMP.

Intake and enrollment process new

The automatic enrollment of individuals in to a CMP as a result of input from the participating institutions' central IdM systems via federated tools such as Shibboleth or protocols such as OAuth.

Invitation

The process of inviting a new person to the CO by an existing participant.

Home Institution Identity new

The electronic identity stored at the identity provider, shared out per that institution's policies. Any changes that a member of the CO wishes to make to this information must be done at the home institution - the CMP will be unlikely to have authorization to make those changes for the user.

Provisioning

Providing access to an individual user, either by creating an account or changing their authorization information for a given service or application.

Registry Admin

A person responsible for the administration of the CO Registry.

Role

A specific function which implies a level of access rights to a service or set of services.

Self Registration

The process of a person becoming a new participant in a CO without being invited by an existing participant.

Virtual Organization (VO)

A VO is a group of individuals or institutions that is focused around a particular domain science and usually uses significant resources (computers, storage, networks, etc.) beyond collaboration tools. Often, these additional resources have substantial authorization requirements, stemming from federal guidelines, audit standards, etc.