user oriented, competent,
easy to use, state of the art products
Striking advantage of open source software is the public availability of its source code. Everyone is free to use the code, change it and pass it on. This way, a huge international community of developers can work collaboratively and simultaneously on improvements and extensions. Most importantly, potential security holes in the software can be promptly detected and closed. This makes software released under an open source licence more flexible, productive and secure than proprietary ‘closed source’ software, the development of which lies in the hands of one single company.
Open source means independence: You can freely choose the external partner you want to entrust with implementing and adapting the software for you. Likewise, you can change your partnerships at any time. Finally, open source software is usually free of licence fees and thus also relieves your IT budget. DAASI International GmbH has always committed to the idea of open source and is at your service with more than 20 years of open source experience in both software development and support. Our own software is also licenced as open source (e.g. OpenRBAC and ALOIS).
Website of the Open Source Initiative
- It takes too long until new employees can use their e-mail account
- A former employee still has access to your systems
- You have to remember an individual password for every single application
- There are no defined processes for the creation of a user account, or only very complicated ones
- Your administrator or helpdesk is preoccupied with managing the huge number of user accounts (resetting forgotten passwords etc.)
All the above indicates that you have no Identity Management (IdM) in place yet: employee data and user accounts are stored redundantly in different databases and applications, where they have to be maintained separately.
Identity Management solves all these problems! Employee data will only have to be entered into your HR-system once.
DAASI’s Identity Management solutions will bring major improvements, such as:
- synchronised data exchange between applications and the meta directory
- automatic creation of user accounts (optionally with initial password)
- automatic provisioning of all specialist applications and authentication servers with up-to-date user data and account data
- minimal effort when employee data changes (e.g. change of name)
- immediate denial of access for ex-employees
IdM can be flexibly adapted to your requirements. By adopting IdM, you can evaluate, customise and consolidate your entire IT landscape. DAASI is happy to design and implement an individual solution for you, based on open source software. Also, our specially developed data connectors and provisioning software can be integrated here.
Peter Gietz: [Identity Management at German Universities](PDF)
Many IT resources (PCs, data storage, files, applications, websites etc.) in a company have to be protected from unauthorised access.
The rules regulating access control are either stored locally with the respective resource or centrally in a so-called Policy Decision Point. To simplify the system of rules, it makes sense to define a group of roles which each carry a fixed set of authorisations.
For the central administration of access rules, DAASI developed the software OpenRBAC, which ideally fits into service oriented architectures and adheres to important standards such as RBAC, XACML and LDAP. We would be happy to evaluate whether your IT landscape could also benefit from our versatile and flexibly addressable software solution.
More information at openrbac.de
Federated Identity Management is inter-organisational IdM and caters to the following requirements:
- Users of organisation A would like to access resources of organisation B
- Organisation B does not want to create and administrate new accounts for this purpose
- Organisation B is willing to grant access based on the assertion that users are members of organisation A
The OASIS standard SAML (Security Assertion Markup Language) specifies the technical means by which organisations can issue commitments on user authentication and authentication attributes securely within a network of trust. This way, high security standards and minimal administration efforts are allowed for.
To achieve this, DAASI employs the open source software Shibboleth, which implements the SAML standard. Apart from federated authentication, Shibboleth also supports single sign-on (a single log in authenticates the user for all connected applications).
In this process, the user’s data is transferred from his home organisation to the resource provider via secure communication channels, i.e. encrypted and digitally signed.
Over the years, DAASI has gained great experience in implementing Shibboleth: We have integrated several user administrations, have adapted applications (‘Shibbolisation’) and have designed and built the ‘Nds-AAI’, the Shibboleth-based university federation of Lower Saxony.
Using information technologies to gain new insights has a long tradition in science, also in the humanities, where such efforts are subsumed under the term eHumanities.
DAASI International specialises in this area as well and is connected to many important eHumanities projects. We have developed a thorough understanding of research interests in the humanities and can build upon years of expertise in designing and implementing suitable solutions.
We would be happy to cooperate with your research project or Digital Humanities related department, too.
DAASI International has participated in the following eHumanities projects:
Project DARIAH-DE: Design and implementation of an infrastructure for authentication and authorisation, development of a REST based interface for bit preservation.
Project TextGrid: Design of the basic Architecture, Middleware Implementation, Workflow System and User-Interface-Components.
Design and implementation of an indological database with web interface: Epic and Puranic Bibliography.