Federated Authentication. Ensure the Security, Trust, and Mobility of users who log into your service

20 June 2023

The manager of the Digital Identity Service, Esmeralda Pires, explains all about Federated Authentication technology, detailing how the FCCN Unit uses it to guarantee the security and mobility of the teaching and research community in Portugal.

Do you still remember the time when, to access a web service, the only available option required a previous registration where it was necessary to fill in the username and password? And that every time we accessed a new service we repeated this process over and over again, leaving us with a long list of passwords to memorize?

Federated authentication was created to solve this problem. This type of authentication has long been adopted by several commercial services, and today we use federated authentication almost without realizing it - we access several different services without a registration process, and log in using only the credentials from our email service or social network.

However, another question arises regarding the reliability of identity. What if my service wants to know if the user is a student, teacher or researcher? How can I be sure that the user is who they say they are? FCCN has the answer and the solution for these services.  

The unit FCCN is responsible for two authentication infrastructures: CIÊNCIA ID and RCTSaai. These infrastructures ensure the authentication and authorization of users from the academic and research community. Services or applications that target users from the academic and/or research community can adhere to and integrate RCTSaai and/or CIÊNCIA ID authentication.

CIÊNCIA ID is an authentication and identification infrastructure intended for the services of the national and/or international science ecosystem. In addition to uniquely and permanently identifying citizens who engage in scientific activity in Portugal, through the registration of the CIÊNCIA ID account, it also provides a common authentication mechanism for the various science management platforms.

RCTSaai aims to simplify the provision of web services to the entire community served by FCCN. Students, teachers and employees of participating institutions, using their institutional account, have access to a range of services available through RCTSaai.

eduGAIN or international authentication

What if my service also intends to give access to foreign students or faculty? In this case, the service can integrate eduGAIN authentication. eduGAIN is managed by GÉANT and interconnects the existing identity federations worldwide. RCTSaai is one of 80 federations that is part of eduGAIN and enables students, staff and faculty from the international academic community to access services and collaboration platforms worldwide.

A good example of the use of eduGAIN authentication are the services of the Erasmus+ program(Erasmus+ App or Online Learning Agreement), where students authenticate using their institution's credentials and the services receive the necessary information about mobile students (European Student Identifier, contact information, home institution).

Web Services or Mobile Applications can and should adhere to federated authentication (RCTSaai, CIÊNCIA ID or eduGAIN) and, in this way, guarantee three fundamental elements to their users

User and Service Security

  • Reduced number of credentials by the user to access the services (only use/generate the credentials of the home institution or CIÊNCIA ID);
  • The services integrate users from other national and international institutions in a simple and secure way;
  • Federated authentication RCTSaai/eduGAIN and CIÊNCIA ID relies on secure protocols (SAML and OpenID Connect) to perform authentication requests and exchange user information.

Confidence in Identity

  • User registration is performed at the user's home institution, which is responsible for securing the user's information (e.g. RCTSaai: enrollment file, employment contract, etc.)
  • User data is sent by the institution to the services only after successful authentication and consent by the user.  

Mobility

  • Users use their institution's credentials to access collaboration services and platforms around the world;
  • The services can accommodate users from all over the international academic community.

To find out if your service can integrate the Unit's federated authentication services FCCN, check the service pages RCTSaai e Science ID.

Latest Articles

Driving the future of Advanced Computing. A female perspective on STEM 

"As a witness to the rapid transformations in Advanced Computing over the years, it is important to highlight the role played by women in STEM, particularly in Technology"

Read article

Jornadas FCCN: Filipe Vieira's testimony - IPBeja

"The Jornadas FCCN are a boost for new technologies in Higher Education Institutions"

Read article

Jornadas FCCN: Testimony from Susana Lopes - Nova SBE 

"It's not possible to work in Higher Education without being familiar with the initiatives of FCCN, and at the Days we were able to get a broad overview of the various projects"

Read article

Jornadas FCCN: Pedro Vapi's testimony - University of Coimbra

"Undeniably one of the most important and remarkable events for the technical academic community"

Read article

Jornadas FCCN: Testimony from Madalena Carvalho - Universidade Aberta 

"The Jornadas FCCN are an incentive for innovation. They are a forum of excellence for the dissemination of knowledge, collaboration and discussion of issues relevant to the advancement of science and technology in Portugal." 

Read article

Jornadas FCCN: Testimony from Pedro Inácio - UBI 

"The Jornadas FCCN are an opportunity to connect and strengthen community spirit, exchange ideas and experience, and provide focused and effective updates on everything that surrounds the infrastructure and technologies that support Higher Education and Science on the Portuguese scene."

Read article

VoIP in Wireshark - where's the problem?

Wireshark is an open source tool that allows you to capture and analyze network traffic in real time. It is an important resource for optimizing networks, including VoIP networks.

Read article

My first experience at BlackHat

Understanding how important it is to be up-to-date on the latest techniques and methods used by attack teams and threat actors, I was able to attend the BlackHat USA 2023 conference for the first time.

Read article

High-speed Internet to accelerate knowledge

Networks play a fundamental role in science and academia. They connect teaching and research institutions and provide digital services to help researchers and students.

Read article

SIP TRUNK - The telephone channel over IP

In the RCTS VoIP network, the term SIP Trunk is often used to refer to the interconnection of our VoIP equipment with operators.

Read article

Malware attack by e-mail. What it is and how to protect yourself.

It is crucial to know the threats that can attack your organization and how to mitigate them. One such threat is malware, which often infiltrates organizations through apparently harmless emails.

Read article

Conference FCCN 2024: over 600 registrations, 102 speakers and 35 sponsors 

Participation in the largest gathering of the national higher education and research community exceeded all expectations in 2024. 641 people registered for the initiative.

Read the news

Online exhibition celebrates milestones associated with April 25  

"Arquivo.pt: Memórias do 25 de Abril na Internet" (Archive.pt: Memories of April 25 on the Internet) is the name of the initiative carried out by the FCT, in partnership with the 50 Years of April 25 Commemorative Commission, and which is part of the celebrations for the 50th anniversary of Democracy. 

Read the news

FCCN has a new image: more innovative and closer to the FCT identity

On April 11th, the company's new logo was presented FCCN , revealing a rebranding that brings it closer to the image of the Foundation for Science and Technology (FCT).

Read the news

Meet the sponsors of the Jornadas FCCN 2024 

This year, with the largest number ever, 35 organizations are joining the Jornadas FCCN - from April 15 to 17 in Funchal - as sponsors. Come and find out more about the sponsors of the largest annual meeting of the Research and Higher Education community.

Read the news

Safer Internet Day (SID) 2024: Viseu hosts this year's initiative dedicated to Artificial Intelligence 

February 6th marks the 21st edition of Safer Internet Day (SID). The Safer Internet Center Consortium is organizing this national commemorative event, which will be held this year in Viseu. The SID Summit 2024 program is dedicated to Artificial Intelligence. 

More info

Inauguration of the MareNostrum 5 supercomputer: Barcelona is Europe's new innovation hub  

The opening of MareNostrum 5 reinforces Europe's role at the forefront of global technological innovation. Barcelona is Europe's new innovation hub

More info

Students explore the world of technology at Open Week FCCN 

From October 23 to 26, more than 150 secondary and vocational school students will attend the Open Week FCCN.

More info

Vila Real hosts 3rd RNCA meeting in November - Registration now open!  

The largest annual event of the National Advanced Computing Network will be held on November 7 and 8 at the University of Trás-os-Montes and Alto-Douro, in Vila Real.

More info