BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:(Research) Bluetooth Tracking without Discoverability / (Skills) D
 eploying web user authentication with Shibboleth - Simon Hay and Sören Pr
 eibusch
DTSTART:20090518T130000Z
DTEND:20090518T140000Z
UID:TALK17490@talks.cam.ac.uk
CONTACT:Andrew Rice
DESCRIPTION:Research: Bluetooth Tracking without Discoverability\, Simon H
 ay\n\n\nOutdoor location-based services are now prevalent due to advances 
 in mobile technology and GPS. Indoors\, however\, even coarse location rem
 ains unavailable. Bluetooth has been identified as a potential location te
 chnology that mobile consumer devices already support\,easing deployment a
 nd maintenance. However\, Bluetooth tracking systems to date have relied o
 n the Bluetooth inquiry mode to constantly scan for devices. This process 
 is very slow and can be a security and privacy risk. In this paper we inve
 stigate an alternative: connection-based tracking. This permits tracking o
 f a previously identified handset within a field of fixed base stations. P
 roximity is determined by creating and monitoring low-level Bluetooth conn
 ections that do not require authorisation. We investigate the properties o
 f the low-level connections both theoretically and in practice\, and show 
 how to construct a building-wide tracking system based on this technique. 
 We conclude that the technique is a viable alternative to inquiry-based Bl
 uetooth tracking.\n\n\nSkills: Deploying web user authentication with Shib
 boleth\, Sören Preibusch\n\n\nShibboleth is a set of policies and protoco
 ls providing an access control system for web-based resources. It is simil
 ar to that currently provided by Raven\, but extended and standardised to 
 allow users from multiple organisations to access resources provided by ot
 her independent organisations. Compared to Raven\, Shibboleth involves a h
 igher implementation effort\, yet supports a broader range of platforms fo
 r deployment. Service providers can define more fine-grained rules for acc
 ess control and the identity of authenticated users need not be disclosed 
 (privacy-preserving single-sign on).\n\nThis talk is intended for Web auth
 ors and developers envisioning to set up user authorisation and authentica
 tion. I will briefly review the architecture and underlying Web service in
 frastructure for Shibboleth and sketch typical deployment scenarios. More 
 prominently\, I will share my own experiences in becoming the owner of the
  first Shibboleth-protected web site in the University. 
LOCATION:FW26\, William Gates Building
END:VEVENT
END:VCALENDAR