<html lang="en">

<head>

<meta charset="utf-8">

<title>samlbits.org</title>

<meta name="viewport" content="width=device-width, initial-scale=1.0">

<meta name="description" content="SAMLbits.org">

<meta name="author" content="Leif Johansson <[email protected]>">

<!-- Le styles -->

<link href="/bootstrap/css/bootstrap.css" rel="stylesheet">

<style type="text/css">

body {

padding-top: 20px;

padding-bottom: 40px;

}

/* Custom container */

.container-narrow {

margin: 0 auto;

max-width: 800px;

}

.container-narrow > hr {

margin: 30px 0;

}

/* Main marketing message and sign up button */

.jumbotron {

margin: 60px 0;

text-align: center;

}

.jumbotron h1 {

font-size: 72px;

line-height: 1;

}

.jumbotron .btn {

font-size: 21px;

padding: 14px 24px;

}

/* Supporting marketing content */

.marketing {

margin: 60px 0;

}

.marketing p + h4 {

margin-top: 28px;

}

/* workaround for google maps/jquery */

#map_canvas img {

max-width: none;

}

</style>

<link href="/bootstrap/css/bootstrap-responsive.css" rel="stylesheet">

<!-- HTML5 shim, for IE6-8 support of HTML5 elements -->

<!--[if lt IE 9]>

<!-- Fav and touch icons -->

<link rel="apple-touch-icon-precomposed" sizes="144x144" href="/bootstrap/ico/apple-touch-icon-144-precomposed.png" />

<link rel="apple-touch-icon-precomposed" sizes="114x114" href="/bootstrap/ico/apple-touch-icon-114-precomposed.png" />

<link rel="apple-touch-icon-precomposed" sizes="72x72" href="/bootstrap/ico/apple-touch-icon-72-precomposed.png" />

<link rel="apple-touch-icon-precomposed" href="/bootstrap/ico/apple-touch-icon-57-precomposed.png" />

<link rel="shortcut icon" href="/bootstrap/ico/favicon.png" />

</head>

<body>

<div class="container-narrow">

<div class="masthead">

<ul class="nav nav-pills pull-right">

<li class="active"><a href="#">Home</a></li>

<li><a href="#about">About</a></li>

<li><a href="#contact">Contact</a></li>

</ul>

<h3 class="muted">samlbits.org</h3>

</div>

<hr>

<div class="jumbotron">

<h1>The Identity CDN</h1>

<p class="lead">Global reach for SAML metadata. <a href="#about">Read More...</a></p>

</div>

<hr>

<!-- div class="row-fluid">

<div class="row-fluid marketing">

<h1>Hosted Resources</h1>

<ul>

<li><a href="http://trust.kantarainitiative.org">Kantara Initiative Trust Registry</a></li>

<li><a href="http://reep.refeds.org">Terena RE:EP</a></li>

<li><a href="http://edugain.org">eduGAIN</a></li>

<li><a href="http://discojuice.org">DiscoJuice</a></li>

<li><a href="https://caf-shib2ops.ca/CoreServices/">Canadian Access Federation (CAF)</a></li>

</ul>

<div style="text-align: center;"><a class="btn btn-success btn-lg" href="#using">Start using the CDN</a></div>

</div>

<hr/>

<div class="row-fluid marketing">

<h1>Sponsors</h1>

<ul class="thumbnails">

<li class="span4"><a href="http://www.isoc.org" class="thumbnail"><img src="/images/isoc.png" alt="ISOC.org"/></a></li>

<li class="span4"><a href="http://www.sunet.se" class="thumbnail"><img src="/images/sunet.png" alt="SUNET.se"/></a></li>

<li class="span4"><a href="http://www.rnp.br" class="thumbnail"><img src="/images/rnp.png" alt="RNP.br"/></a></li>

<li class="span4"><a href="http://www.rhnet.is" class="thumbnail"><img src="/images/rhnet.png" alt="RHnet.is"/></a></li>

<li class="span4"><a href="http://www.gakunin.jp" class="thumbnail"><img src="/images/gakunin.png" alt="Gakunin"/></a></li>

<li class="span4"><a href="http://www.isoc.jp" class="thumbnail"><img src="/images/isoc-jp.png" alt="ISOC-JP"/></a></li>

<li class="span4"><a href="http://sakura.ad.jp" class="thumbnail"><img src="/images/sakura-internet.png" alt="Sakura Internet"/></a></li>

<li class="span4"><a href="http://surfnet.nl" class="thumbnail"><img src="/images/surfnet.png" alt="SURFnet"/></a></li>

</ul>

<div style="text-align: center;"><a class="btn btn-success btn-lg" href="#sponsor">Become a Sponsor</a></div>

</div>

<hr/>

<div class="row-fluid">

<h1 id="about">About samlbits.org</h1>

<p><b>samlbits.org</b> is a community-driven effort to provide global availability to identity federation technical trust components - notably SAML metadata. We are currently in the process of establishing sites at key locations across the globe. Global availability of technical trust components is critical for interfederation: the process of connecting islands of local trust to form a global trust infrastructure.</p>

<h2 id="theproblem">The Problem</h2>

<p><b>samlbits.org</b> adds a cache- and global availability layer to the trust fabric of SAML-based identity federations. At scale, SAML-based identity federations often use SAML metadata to manage technical trust beteween federation members.</p><p>Making SAML metadata available 247 becomes critically important.</p>

<p>Since the trust model is typcally based on signing SAML metadata rather than on transport security, performance and availability can be improved by by adding a caching layer. <strong>This is where samlbits.org comes in.</strong> Using proven web-caching technology and geo-aware DNS borrowed from the pool.ntp.org project, samlbits.net turns a locally signed SAML metadata file or MDX endpoint into a globally cached, highly available resource.</p>

<h2 id="using">Using the CDN</h2>

<p><b>samlbits.org</b> assignes to each hosted resource a <em>CDN identifier</em> which can be used to reference the hosted site directly. For instance <em>edugain</em> is the CDN identifier for the eduGAIN MDS and so <a href="http://edugain.cdn.samlbits.net">http://edugain.cdn.samlbits.net</a> provides access to the eduGAIN MDS. In addition the CDN supports the <code>Host</code> header and serves the Kantara Trust Registry site when <code>Host: trust.kantarainitiative.org</code> is a request header. Use either mechanism or both together!</p>

<p>Send an email to <a href="mailto:[email protected]">leifj at mnt.se</a> to get your SAML metadata resource hosted by samlbits.org and listed in the table below:</p>

<table class="table table-striped table-bordered table-condensed">

<tr><th>CDN identifier</td><th>Description</th><th>CDN URI</th></tr>

<tr><td>edugain</td><td><a href="http://www.edugain.org">eduGAIN</a></td><td>http://edugain.cdn.samlbits.net</td></tr>

<tr><td>DiscoJuice</td><td><a href="http://discojuice.org">DiscoJuice</a></td><td>https://cdn.discojuice.org</td></tr>

<tr><td>CAF</td><td><a href="https://caf-shib2ops.ca/CoreServices/">CAF</a></td><td>http://caf.cdn.samlbits.net/CoreServices/</td></tr>

</table>

<h2 id="howitworks">How it all works</h2>

<p><b>samlbits.org</b> draws on ideas from the pool.ntp.org project to combines a simple distributed monitoring system combined with a geo-aware DNS server and an array of web caches. These components are located across multiple sites and there is no single point of failure.</p>

<h2 id="opensource">Open Source</h2>

<p><b>samlbits.org</b> runs completely on OpenSource software. Some components are developed by the project:

<ul>

<li><a href="http://github.com/samlbits">puppet modules & other tools</a></li>

<li><a href="http://github.com/leifj/python-dnslb">python-dnslb: the monitor-system used by samlbits.org</a></li>

<li><a href="http://pyff.io">pyFF: an MDX server</a></li>

</p>

</div>

<hr/>

<div class="row-fluid">

<h1 id="sponsor">Sponsor samlbits.org</h1>

<p><b>samlbits.org</b> is currently looking to establish sites in Asia, Africa, US West Coast and additional sites in Europe - sponsor the project by providing co-location facilities and/or server infrastructure. You can also sponsor by donating other resources to the project. The co-location facilities should be well connected to the Internet and need to have both ipv4 and ipv6 connectivity. Send an email to <a href="mailto:[email protected]">leifj at mnt.se</a> if you are willing and able to help.</p>

</div>

<hr/>

<div class="row-fluid">

<h1 id="contact">Contact</h1>

<ul class="unstyled">

<li>email: <a href="mailto:[email protected]">leifj at mnt.se</a></li>

<li>twitter: <a href="http://twitter.com/samlbits">@samlbits</a></li>

</ul>

</div>

<hr/>

<div class="footer">

<p>&copy; samlbits.org 2013</p>

</div>

</div> <!-- /container -->

<!-- Le javascript

<!-- Placed at the end of the document so the pages load faster -->

<script type="text/javascript" src="//maps.google.com/maps/api/js?sensor=true"></script>

<script type="text/javascript" src="//ajax.googleapis.com/ajax/libs/jquery/1.7/jquery.min.js"></script>

<script src="/js/jquery.ui.map.full.min.js"></script>

<script src="/bootstrap/js/bootstrap.min.js"></script>

<script type="text/javascript">

$(document).ready(function() {

var active_icon = new google.maps.MarkerImage("https://maps.google.com/mapfiles/marker_green.png");

var planning_icon = new google.maps.MarkerImage("https://maps.google.com/mapfiles/marker_yellow.png");

$('#map_canvas').gmap({'zoomControl': false,

'scrollwheel': false,

'mapTypeControl': false,

'scaleControl': false,

'panControl':false,

'streetViewControl':false}).bind('init', function() {

$.getJSON( '/sites.json' ).done(function(data) {

$.each( data.markers, function(i, marker) {

$('#map_canvas').gmap('addMarker', {

'position': new google.maps.LatLng(marker.latitude, marker.longitude),

'bounds': true,

'icon': marker.status == 'active' ? active_icon : planning_icon

}).click(function() {

$('#map_canvas').gmap('openInfoWindow', { 'content': marker.content }, this);

});

});

});

});

});

</script>

</body>