Student Access to Federal Loan Data and Other Online Student Services Presented by: Doug Falk National Student Clearinghouse.
Download ReportTranscript Student Access to Federal Loan Data and Other Online Student Services Presented by: Doug Falk National Student Clearinghouse.
Student Access to Federal Loan Data and Other Online Student Services Presented by: Doug Falk National Student Clearinghouse Agenda • • • • • 11/5/2015 Clearinghouse Overview Student Self-Service (SSS) SSS Challenges Shibboleth Implementation Shibboleth Challenges 2 What is the Clearinghouse? A non-profit organization serving as a centralized educational agent in fulfilling educational reporting needs 11/5/2015 3 Current Clearinghouse Participation Nationally • More than 3,200 collegiate institutions – Enrolling over 92% of all higher education students • More than 2,000 high schools 11/5/2015 4 Student Self-Service (SSS) Campus-based authentication with single sign-on to SSS Through SSS, institutions can enable their students to perform a wide range of enrollment verification activities via the Web for free, including: • Print enrollment certificates (which they can send to health insurers, housing providers and others) • View enrollment history • Check enrollment verifications that the Clearinghouse has provided to student service providers on their behalf • View student loan deferments • Link to real-time information on their student loans via Meteor 11/5/2015 5 Student Self-Service 11/5/2015 6 Student Self-Service 11/5/2015 7 Student Self-Service 11/5/2015 8 Student Self-Service 11/5/2015 9 Student Self-Service 11/5/2015 10 Student Self-Service Institution requirements: – Sign Clearinghouse SSS Agreement • Certify that they are in compliance with NIST electronic authentication guidelines for assurance level 1 (“standard” SSS access) • Optionally certify that they are in compliance with NIST electronic authentication guidelines for assurance level 2 (“enhanced” SSS access including Meteor) – Implement the Clearinghouse specified methods for server-to-server authentication – Provide proper authentication of students 11/5/2015 11 Student Self-Service 11/5/2015 12 SSS Challenges Currently, there are around 500 institutions using SSS. Current challenges include: • Requires custom coding at each institution • Disparate authentication methods deployed by institutions • Clearinghouse places a high level of trust with institutions to properly authenticate students • Clearinghouse uses a proprietary method for establishing sessions • Difficulty complying with NIST authentication guidelines • Institutional use of SSN as student identifier 11/5/2015 13 Shibboleth Implementation Implementing Shibboleth will provide: • • • • 11/5/2015 Easier implementation for participating InCommon institutions A robust, common framework for authentication and transitive trust A federation that governs rules for access and participation A system based on industry standards 14 Shibboleth Implementation Institution requirements: – Sign Clearinghouse SSS Agreement • Certify that they are in compliance with NIST electronic authentication guidelines for assurance level 1 (“standard” SSS access) • Optionally certify that they are in compliance with NIST electronic authentication guidelines for assurance level 2 (“enhanced” SSS access including Meteor) – Join InCommon Federation – Implement Shibboleth in accordance with InCommon specifications – Provide proper authentication of students 11/5/2015 15 Use Case 1: School First 11/5/2015 16 Use Case 2: NSC First 11/5/2015 17 Shibboleth Challenges Currently, the Clearinghouse is piloting the Shibboleth implementation with Stanford University: • Institution still must comply with NIST authentication guidelines • Clearinghouse looking at InCommon Bronze and Silver assurance levels • Institutional use of SSN as Shib Target Id • Target Id can be an institutional Student Id, however: • Clearinghouse follows PESC SchoolAssignedPersonID spec (20 characters) • Institutional desire to use an opaque ID (much longer that 20 characters) • 11/5/2015 Requires change to the Clearinghouse enrollment file extract (takes years for SIS providers to change) 18 Contact Doug Falk [email protected] (703) 742-4212 11/5/2015 19