Experiences of applying advanced Grid authorisation infrastructures

Lecture Notes in Computer Science

Volumn 3470, Issue , 2005, Pages 265-274

  Sinnott, R O ^a   Stell, A J ^a   Chadwick, D W ^b   Otenko, O ^c  

^a UNIVERSITY OF GLASGOW   (United Kingdom)

^b UNIVERSITY OF KENT   (United Kingdom)

^c UNIVERSITY OF SALFORD   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER SOFTWARE; COMPUTER SUPPORTED COOPERATIVE WORK; DATA PRIVACY; SECURITY OF DATA;

AUTHORIZATION; GLOBAL GRID FORUM; GRID TECHNOLOGY; SECURITY MECHANISMS;

DISTRIBUTED COMPUTER SYSTEMS;

EID: 24944587318     PISSN: 03029743     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1007/11508380_28     Document Type: Conference Paper

References (33)

1. Johnston, W., Mudumbai, S., Thompson, M. Authorization and Attribute Certificates for Widely Distributed Access Control, IEEE 7th Int. Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises (http://www-itg.lbl.gov/security/Akenti/)
2. L Pearlman, et al., A Community Authorisation Service for Group Collaboration, in Proceedings of the IEEE 3rd International Workshop on Policies for Distributed Systems and Networks. 2002.
3. Lepro, R., Cardea: Dynamic Access Control in Distributed Systems, NASA Technical Report NAS-03-020, November 2003
4. Globus Grid Security Infrastructure (GSI), http://www-unix.globus.org/ toolkit/docs/3.2/gsi/index.html
5. D.W.Chadwick, A. Otenko, E.Ball, Role-based Access Control with X.509 Attribute Certificates, IEEE Internet Computing, March-April 2003, pp. 62-69.
6. D.W.Chadwick, A. Otenko, The PERMIS X.509 Role Based Privilege Management Infrastructure, Future Generation Computer Systems, 936 (2002) 1-13, December 2002. Elsevier Science BV.
7. Privilege and Role Management Infrastructure Standards Validation project www.permis.org
8. VOMS Architecture, European Datagrid Authorization Working group, 5 September 2002.
9. Steven Newhouse, Virtual Organisation Management, The London E-Science centre, http://www.lesc.ic.ac.uk/projects/oscar-g.html
10. BioMedical Research Informatics Delivered by Grid Enabled Services project (BRIDGES), www.nesc.ac.uk/hub/projects/bridges
11. Dynamic Virtual Organisations in e-Science Education project (DyVOSE), www.nesc.ac.uk/hub/projects/dyvose
12. Globus, http://www.globus.org
13. R. Housley, T. Polk, Planning for PKI: Best Practices Guide for Deploying Public Key Infrastructures, Wiley Computer Publishing, 2001.
14. ITU-T Recommendation X.509 (2001), ISO/IEC 9594-8: 2001, Information technology - Open Systems Interconnection - Public-Key and Attribute Certificate Frameworks.
15. JISC Authentication, Authorisation and Accounting (AAA) Programme Technologies for Information Environment Security (TIES), http://www.edina.ac. uk/projects/ties/ties_23-9.pdf.
16. th USENIX security symposium, Washington, 1999.
17. D. Chadwick, O. Otenko, A Comparison of the Akenti and PERMIS Authorization Infrastructures, in Ensuring Security in IT Infrastructures, Proceedings of ITI First International Conference on Information and Communications Technology (ICICT 2003) Cairo University, Ed. Mahmoud T El-Hadidi, p5-26, 2003
18. Conceptual AuthZ Framework and Classification (DOC) https://forge. gridforum.org/docman2/ViewCategory.php?group_id=55&category_id=458
19. A.J. Stell, Grid Security: An Evaluation of Authorisation Infrastructures for Grid Computing, MSc Dissertation, University of Glasgow, 2004.
20. ITU-T Rec. X.509 (2000) | ISO/IEC 9594-8. The Directory: Authentication Framework.
21. UK e-Science Certification Authority, www.grid-support.ac.uk
22. ITU-T Rec X.812 (1995) | ISO/IEC 10181-3:1996, Security Frameworks for open systems: Access control framework
23. V. Welch, F. Siebenlist, D. Chadwick, S. Meder, L. Pearlman, Use of SAML for OGSA Authorization, June 2004, https://forge.gridforum.org/projects/ogsa- authz
24. OASIS. Assertions and Protocol for the OASIS Security Assertion Markup Language (SAML) v1.1,. 2 September 2003, http://www.oasis-open.org/committees/ security/
25. Cardiovascular Functional Genomics project, http://www.brc.dcs.gla.ac.uk/ projects/cfg/
26. Open Grid Service Architecture - Data Access and Integration project (OGSA-DAI), www.ogsadai.org.uk
27. IBM Information Integrator, www.ibm.com
28. EMBL-EBI European Bioinformatics Institute, http://www.ebi.ac.uk/ensembl/
29. OpenSSL to create certificates, http://www.flatmtn.com/computer/Linux- SSLCertificates.html
30. Von Welch/Jennifer Schopf personal communications.
31. J. Jokl, J. Basney and M. Humphrey, Experiences using Bridge CAs for Grids, Proceedings of UK Workshop on Grid Security Practice - Oxford, July 2004
32. Virtual Organisations for Trials and Epidemiological Studies project (VOTES), www.nesc.ac.uk/hub/projects/votes
33. Shibboleth, http://shibboleth.internet2.edu/