Access and Identity Management for Libraries: Controlling Access to Online Information

Customers outside of North America (USA and Canada) should contact Facet Publishing for purchasing information.

Item Number
978-1-85604-588-9
Published
2013
Publisher
Facet Publishing, UK
Pages
272
Width
6"
Height
9"
Format
Softcover

Primary tabs

You don't need to be an ALA Member to purchase from the ALA Store, but you'll be asked to create an online account/profile during the checkout to proceed. This Web Account is for both Members and non-Members. Note that your ALA Member discount will be applied at the final step of the checkout process.

If you are Tax-Exempt, please verify that your account is currently set up as exempt before placing your order, as our new fulfillment center will need current documentation. Learn how to verify here.

  • Description
  • Table of Contents
  • About the authors

With the rapid increase in the use of electronic resources in libraries, managing access to online information is a constant challenge for librarians. Written by experts in the field, this book is the first to explain the principles behind access management, with coverage of the available technologies and how they work. Also included is an overview of federated access management technologies, such as Shibboleth, that have gained increasing international recognition in recent years. This book provides detailed case studies describing how access management is being implemented at organizational and national levels in the UK, USA, and Europe, providing a practical guide to the resources available to help plan, implement and operate access management in libraries. Key topics include:

  • What is access management and why libraries do it
  • Electronic resources: public and not so public
  • Principles and definitions of identity and access management
  • Current access management technologies
  • Authentication technologies
  • Authorization based on physical location
  • Authorization based on user identity or affiliation
  • Federated access: history, current position and future developments
  • Internet access provided by (or in) libraries
  • Library statistics
  • The business case for libraries

This is essential reading for all who need to understand the principles behind access management or implement a working system in their library.

  Foreword - Clifford Lynch 

1. What is access management, and why do libraries do it?

 Historical role of libraries in managing access to informationThe role of libraries in the 21st centuryThe history of access management of online information resourcesThe role of e-commerce in library access managementThe ‘birth' of access management principles – Clifford Lynch's white paper 

2. Electronic resources: public and not so public

 Managing access to electronic collectionsHow and where users may want to access e-resourcesWhat needs to be protected, and whyCommercially produced resources that need to be protectedPublicly available information that may also require access managementPublishers and licensing issuesLibrary management of licencesSummaryReferences 

3. Principles and definitions of identity and access management

 IntroductionManaging access? . . . or identities? . . . or both?The business relationshipsThe processes of identity and access managementIdentifying the person using a resource – or notObligations to protect personal data about usersSummarReferences 

4. Current access management technologies

 IP addressBarcode patternsProxy serversShared passwordsUser registration with publishersFederated accessSummary 

5. Authentication technologies

 ‘Something you know, something you have, or something you are'Authentication technologies overviewAuthentication by third partiesChoosing an authentication system 

6. Authorization based on physical location: how does the internet know where I am?

 IntroductionDomains and domain names(How) is all this governed?IP addressesIP spoofingBenefits and problems of using IP address-based licensingSummaryReferences 

7. Authorization based on user identity or affiliation with a library: who you are? or what you do?

 Basing access on identity, or on affiliation with a libraryRole-based authorizationMatching roles against licence conditionsBenefits of role-based authorizationSummaryReferences 

8. Federated access: history, current position and future developments

 Single sign-on and the origins of federated access managementThe development of standardsFederated access in academiaFuture of federated accessReferences 

9. How to choose access management and identity management products and services

 IntroductionIdentity management and access management solution capabilitiesEstablishing requirements with suppliersAsserting library requirements in a wider-scale system procurementImplementation optionsThe range of access and identity management productsConclusionsReferences 

10. Internet access provided by (or in) libraries

 IntroductionWired accessWireless accessPublic access issuesSummaryReferences 

11. Library statistics

 Why libraries collect electronic resource usage statisticsChallenges in collecting electronic resource usage dataHow libraries collect usage dataConcluding thoughtsReferences 

12. The business case for libraries

 IntroductionKey benefits of quality identity managementDesigning an IdM projectPutting together a business caseConclusionReferences and further reading 

Afterword

 References 

Appendix 1: Case studies

 Extending access management to business and community engagementactivities at Kidderminster College, UKMoving from Athens to Shibboleth at University College London, UKOnline reciprocal borrowing registration for Western Australian University LibrariesLibrary and IT collaboration: driving strategic improvements to identity and access management practices and capabilitiesManaging affiliated users with federated identity management at UNC-Chapel Hill, USATilburg University and the SURFfederatie, the NetherlandsDelivering access to resources in a joint academic and public library buildingSingle sign-on across the USMAI Consortium, USA 

Appendix 2: A White Paper on Authentication and Access Management Issues in Cross-organizational Use of Networked Information Resources.

Masha Garibyan

Simon McLeish is Resource Discovery Architect at the Bodleian Libraries, University of Oxford, UK, and previously worked at the London School of Economics and Political Science (LSE) and as an independent IT professional, specializing in Identity and Access Management.

Simon McLeish

Simon McLeish is Resource Discovery Architect at the Bodleian Libraries, University of Oxford, UK, and previously worked at the London School of Economics and Political Science (LSE) and as an independent IT professional, specializing in Identity and Access Management.

John Paschoud

John Paschoud has been an IT professional since 1972. As Projects Manager at the LSE Library he led a series of projects which identified and established the technologies for federated access that are now most widely used by academic libraries. As a consulting information systems engineer he now specializes mainly in government and education fields, and is a member of the Technical Advisory Group to the UK Access Management Federation for Education and Research.