[Eril-l] Loss of IP Authentication
Electronic Resources in Libraries discussion list
eril-l at lists.eril-l.org
Fri Apr 28 07:14:59 PDT 2023
Hi Randy,
I think over time there will continue to be several access methods that publishers support including IP authentication, SAML/SSO, OpenID Connect, and other schemes such as authorization tokens. I’m sure in five years there will be one or two we have not envisioned yet.
However, as the number of access methods grows, I suspect that will slow down the elimination of any of them. There is a long tail of publishers that don’t have the resources to support many authentication methods and usually, the default method is IP authentication.
This means that products like EZproxy will need to support a number of access methods while continuing to support IP authentication.
Best,
Sean
From: Eril-l <eril-l-bounces at lists.eril-l.org> on behalf of Electronic Resources in Libraries discussion list via Eril-l <eril-l at lists.eril-l.org>
Date: Tuesday, April 25, 2023 at 4:03 PM
To: Electronic Resources in Libraries discussion list <eril-l at lists.eril-l.org>
Subject: [External] Re: [Eril-l] Loss of IP Authentication
Thanks for bring up this topic. We had to start “auto” proxying all on campus links due to our institution adopting the Zscaler cloud firewall service which effectively routed all traffic outside our know IP range to our publishers.
In order to maintain that established IP authentication all traffic had to go through EZproxy to still appear starting from the range.
I feel at some point the platforms will also push for SSO solutions regardless of browser engine changes?
Thanks,
Randy Lancaster, ITIL
Applications Specialist
[cid:image002.png at 01D9778E.E5263C90]
Henry Ford Hospital / Sladen Library<https://henryford.libguides.com/sladen>
rlancas1 at hfhs.org<mailto:rlancas1 at hfhs.org>
Office: 313-916-2550
Direct: 313-916-3095
[Henry-Ford_FB_32x32pxls]<http://www.facebook.com/henryfordhealthsystem>[Henry-Ford_Twitter_32x32pxls]<http://www.twitter.com/henryfordnews>[instagram-logo_5]<http://www.instagram.com/henryfordhealthsystem>[114266_stieber_email-pinterest_5.16]<http://www.pinterest.com/henryfordhealth>[Henry-Ford_Youtube_32x32pxls]<http://www.youtube.com/henryfordtv>
From: Eril-l <eril-l-bounces at lists.eril-l.org> On Behalf Of Electronic Resources in Libraries discussion list via Eril-l
Sent: Tuesday, April 25, 2023 3:47 PM
To: Electronic Resources in Libraries discussion list <eril-l at lists.eril-l.org>
Subject: Re: [Eril-l] Loss of IP Authentication
Hello Mark and all, Today, the ALA published the following retraction to its post: https: //connect. ala. org/discussion/news-from-the-core-federated-authentication-committee-oclc-ezproxy-does-not-anticipate-impacts-to-users-from-browser-privacy-changes-1
Hello Mark and all,
Today, the ALA published the following retraction to its post: https://connect.ala.org/discussion/news-from-the-core-federated-authentication-committee-oclc-ezproxy-does-not-anticipate-impacts-to-users-from-browser-privacy-changes-1<https://urldefense.com/v3/__https:/connect.ala.org/discussion/news-from-the-core-federated-authentication-committee-oclc-ezproxy-does-not-anticipate-impacts-to-users-from-browser-privacy-changes-1__;!!PFzsKvxRBh-H!bqovdIAQLlBq1VqSd0TLNWM5KEDWa5PUsuyIgakc8MKh7AqBa_V-0E6dIdSSJKvNgOah0BzeOPWouTMuuB0$>
OCLC has been very involved in the upcoming browser changes related to authentication and IP addresses. As an advocate for libraries and scholarly resources, OCLC will continue to work with browser developers like Google and others mentioned in the referenced ALA article.
EZproxy remains the leading access method to connect users to e-content and keeps libraries in control of their data. Based on our work and analysis, EZproxy functionality will not be affected by these upcoming changes because the browser obfuscation of an IP address is not an issue for EZproxy-to-publisher functionality. Publishers will see the EZproxy IP address regardless of the browser IP address. However, if EZproxy has functionality based on the browser IP address, such as not proxying on campus users, that may be affected.
Please contact me if you have any questions!
Sean Duffy
--
Sean Duffy (he/him)
OCLC · Product Manager, EZproxy Analytics
Global Product Management
6565 Kilgour Place, Dublin, Ohio USA 43017
[OCLC]<https://urldefense.com/v3/__http:/www.oclc.org/home.en.html?cmpid=emailsig_logo__;!!PFzsKvxRBh-H!bqovdIAQLlBq1VqSd0TLNWM5KEDWa5PUsuyIgakc8MKh7AqBa_V-0E6dIdSSJKvNgOah0BzeOPWolpBRdvg$>
OCLC.org<https://urldefense.com/v3/__http:/www.oclc.org/home.en.html?cmpid=emailsig_link__;!!PFzsKvxRBh-H!bqovdIAQLlBq1VqSd0TLNWM5KEDWa5PUsuyIgakc8MKh7AqBa_V-0E6dIdSSJKvNgOah0BzeOPWowaT49OQ$> Blog<https://urldefense.com/v3/__http:/www.oclc.org/blog/main/?cmpid=emailsig_blog__;!!PFzsKvxRBh-H!bqovdIAQLlBq1VqSd0TLNWM5KEDWa5PUsuyIgakc8MKh7AqBa_V-0E6dIdSSJKvNgOah0BzeOPWon2ouYr4$> Facebook<https://urldefense.com/v3/__http:/www.facebook.com/pages/OCLC/20530435726__;!!PFzsKvxRBh-H!bqovdIAQLlBq1VqSd0TLNWM5KEDWa5PUsuyIgakc8MKh7AqBa_V-0E6dIdSSJKvNgOah0BzeOPWo08pUl2E$> Twitter<https://urldefense.com/v3/__http:/twitter.com/oclc__;!!PFzsKvxRBh-H!bqovdIAQLlBq1VqSd0TLNWM5KEDWa5PUsuyIgakc8MKh7AqBa_V-0E6dIdSSJKvNgOah0BzeOPWoJ8nqGRQ$> YouTube<https://urldefense.com/v3/__http:/www.youtube.com/OCLCvideo__;!!PFzsKvxRBh-H!bqovdIAQLlBq1VqSd0TLNWM5KEDWa5PUsuyIgakc8MKh7AqBa_V-0E6dIdSSJKvNgOah0BzeOPWo4tZmd10$>
From: Eril-l <eril-l-bounces at lists.eril-l.org<mailto:eril-l-bounces at lists.eril-l.org>> on behalf of Electronic Resources in Libraries discussion list via Eril-l <eril-l at lists.eril-l.org<mailto:eril-l at lists.eril-l.org>>
Date: Thursday, April 20, 2023 at 3:07 PM
To: eril-l at lists.eril-l.org<mailto:eril-l at lists.eril-l.org> <eril-l at lists.eril-l.org<mailto:eril-l at lists.eril-l.org>>
Subject: [External] [Eril-l] Loss of IP Authentication
Our science librarian recently shared this post with me. This is the first I have heard about this move toward eliminating IP authentication. Are others aware of this and if so, have you been developing plans and what are those plans?
https://connect.ala.org/discussion/news-from-the-ala-core-federated-authentication-committee-expect-big-changes-to-identity-authentication-over-the-next-few-years-1#bm80fa8e5e-7062-4417-baa1-5e1712a1ce5e<https://urldefense.com/v3/__https:/connect.ala.org/discussion/news-from-the-ala-core-federated-authentication-committee-expect-big-changes-to-identity-authentication-over-the-next-few-years-1*bm80fa8e5e-7062-4417-baa1-5e1712a1ce5e__;Iw!!PFzsKvxRBh-H!bqovdIAQLlBq1VqSd0TLNWM5KEDWa5PUsuyIgakc8MKh7AqBa_V-0E6dIdSSJKvNgOah0BzeOPWoyNBMHgE$>
Thanks
Mark
--
Mark Gooch
Collection Management Librarian
The College of Wooster Libraries
1140 Beall Ave.
Wooster, Ohio 44691
Phone: 330-263-2522
FAX: 330-263-2253
mgooch at wooster.edu<mailto:mgooch at wooster.edu>
________________________________
CONFIDENTIALITY NOTICE: This email contains information from the sender that may be CONFIDENTIAL, LEGALLY PRIVILEGED, PROPRIETARY or otherwise protected from disclosure. This email is intended for use only by the person or entity to whom it is addressed. If you are not the intended recipient, any use, disclosure, copying, distribution, printing, or any action taken in reliance on the contents of this email, is strictly prohibited. If you received this email in error, please contact the sending party by reply email, delete the email from your computer system and shred any paper copies.
Note to Patients: There are a number of risks you should consider before using e-mail to communicate with us. See our Privacy & Security page on www.henryford.com<http://www.henryford.com> for more detailed information as well as information concerning MyChart, our new patient portal. If you do not believe that our policy gives you the privacy and security protection you need, do not send e-mail or Internet communications to us.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.eril-l.org/pipermail/eril-l-eril-l.org/attachments/20230428/1449fd37/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 3277 bytes
Desc: image002.png
URL: <http://lists.eril-l.org/pipermail/eril-l-eril-l.org/attachments/20230428/1449fd37/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image003.jpg
Type: image/jpeg
Size: 11153 bytes
Desc: image003.jpg
URL: <http://lists.eril-l.org/pipermail/eril-l-eril-l.org/attachments/20230428/1449fd37/attachment.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image004.jpg
Type: image/jpeg
Size: 11473 bytes
Desc: image004.jpg
URL: <http://lists.eril-l.org/pipermail/eril-l-eril-l.org/attachments/20230428/1449fd37/attachment-0001.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image005.jpg
Type: image/jpeg
Size: 2488 bytes
Desc: image005.jpg
URL: <http://lists.eril-l.org/pipermail/eril-l-eril-l.org/attachments/20230428/1449fd37/attachment-0002.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image006.jpg
Type: image/jpeg
Size: 2537 bytes
Desc: image006.jpg
URL: <http://lists.eril-l.org/pipermail/eril-l-eril-l.org/attachments/20230428/1449fd37/attachment-0003.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image007.jpg
Type: image/jpeg
Size: 11557 bytes
Desc: image007.jpg
URL: <http://lists.eril-l.org/pipermail/eril-l-eril-l.org/attachments/20230428/1449fd37/attachment-0004.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image008.png
Type: image/png
Size: 21264 bytes
Desc: image008.png
URL: <http://lists.eril-l.org/pipermail/eril-l-eril-l.org/attachments/20230428/1449fd37/attachment-0001.png>
More information about the Eril-l
mailing list