A Virtual Organization (VO) is a group of individuals that have something in common, in example working on a project. Virtual Organization may span multiple real organizations, from multiple federations and multiple countries.

The VO Platform is the technology that enables a Service Provider to collect information about a VO from a single source.

The VO Platform has a web frontend that enables management of the virtual organizations Information Model, and also supports one or more Data Access Protocol for VO Services to be able to extract group information from the VO Platform.

General documents:

• Virtual Organizations
• SP-Centric Attribute Aggregation

Specific data access protocol descriptions:

• Description of Virtual Organizations (and SAML 2.0 AQ+Affiliation data access API) by Lukas)
• Data Access with SAML 2.0 AQ+Affiliation by Chad)

Working demos (SWITCH GMT):

• SWITCH VO Demo
• Proof of concept test report: Virtual Organizations with GMT integration
• Video VO PoC Demo Screencast
• How to configure Shibboleth as VO Identity Provider of a VO Platform
• How to configure Shibboleth as VO SP

Working demos (SimpleSAMLphp):

• SimpleSAMLphp VO Video Screencast
• Source code repository
• Document explaining the Virtual Organization Concept
• Try live VO Management - create your own VO - authenticate with Feide OpenIdP

Alternative Architecture Proposals:

• WAYF Attribute Collector Proposal

External Work On Virtual Organizations and Attribute Aggregation:

• Shintau- IdP-centric attribute aggregation
• COManage - VO implementation from Internet2
• VOMS - From the GRID community

Presentations:

• SWITCH SAML VO Platform approach using simple attribute aggregation