Towards a unified Authentication and Aauthorization infrastructure for Grid Services: Implementing an enhanced OCSP Service Provider into GT4

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3545 LNCS, Issue , 2005, Pages 36-54

  Luna, Jesus ^a   Medina, Manel ^a   Manso, Oscar ^b  

^a UNIVERSITAT POLITÈCNICA DE CATALUNYA   (Spain)

^b CertiVeR   (Spain)

Author keywords

[No Author keywords available]

Indexed keywords

DISTRIBUTED COMPUTER SYSTEMS; PUBLIC POLICY; SECURITY OF DATA; SPECIFICATIONS;

GRID SERVICE; OGSA; PRE-WEB SERVICES; SECURITY FRAMEWORK;

WORLD WIDE WEB;

EID: 33646054861     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/11533733_3     Document Type: Conference Paper

References (26)

1. "The Physiology of the Grid: An Open Grid Services Architecture for Distributed Systems Integration". Foster, I., Kesselman, C., Nick, J. and Tuecke, S. Globus Project, 2002, http://www.globus.org/researcn/papers/ogsa.pdf
2. "The WS-Resource Framework". http://www.globus.org/wsrf/
3. "Globus Toolkit Version 4 Grid Security Infrastructure: A Standards Perspective". The Globus Security Team. Version 2. December 2004. http://www.globus.org/toolkit/docs/4.0/security/GT4-GSI-Overview.pdf
4. "A Logic of Authentication", Burrows, M., Abadi, M., and Needham, R. M. ACM Transactions on Computer Systems, vol. 8, no. 1, Feb 1990, pp. 18-36. A Formal Semantics for Evaluating Cryptographic Protocols p 14 http://citeseer.ist.psu.edu/burrows90logic.html
5. "Conceptual Grid Authorization Framework and Classification", R. Baker, L. Commans, A. McNab, M. Lorch, L. Ramakrishnan, K. Sarkar, and M. R. Thompson Global Grid Forum Working Group on Authorization Frameworks and Mechanisms. February 2003, http://www.ggf.org/Meetings/ggf7/drafts/authz01.pdf
6. "RFC 2904: AAA Authorization Framework". Vollbreeht J, et. al. August 2000.
7. "The Ponder policy specification language". N. Damianou, N. Dulay, E. Lupu, and M. Sloman. In Morris Sloman, editor, Proc. of Policy Worshop, 2001, Bristol UK, January 2001. http://citescer.ist.psu.edu/ damianou01ponder.html
8. "Use of SAML for OGSA Authorization". Von Welch, et. al. OGSA-Security Working Group, Global Grid Forum. Working document. February 2003. http://www.es.virginia.edu/~humphrey/ogsa-see-wg/
9. "A Community Authorization Service for Group Collaboration". Pearlman, L. et. al. Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02). IEEE Computer Society. 2002.
10. "Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V1.1". OASIS Security Services Technical Committee. Version 1.1. September 2003. http://www.oasis-open.org/committees/security/
11. "OGSA Authorization Requirements". Welch, Von. Et. al. OGSA-Authorization Working Group, Global Grid Forum. Working document. June 2003. https://forge.gridforum.org/projects/ogsa-authz/document/
12. "OASIS: DSS Profiles Discussion Document". Cruellas, Juan Carlos. et. al. Working Draft 02, February 2004. http://www.oasis-open.org/ committees/dss/
13. "ETSI TR 102 041: Electronic Signatures and Infrastructures (ESI); Signature Policies Report". ETSI ESI group. Version 1.1.1. February 2002. http://portal.etsi.org/esi/elsign.asp
14. "CertiVeR: Certificate Revocation and Validation Service", http://www.certiver.com
15. "A Java Commodity Grid Kit" Gregor von Laszewski, Ian Foster, Jarek Gawor, and Peter Lane, Concurrency and Computation: Practice and Experience, vol. 13, no. 8-9, pp. 643-662, 2001, http://www.cogkit.org/.
16. "Certificate-based Authorization Policy in a PKI Environment". M. Thompson, A. Essiari, S. Mudumbai. ACM Transactions on Information and System Security, (TISSEC), vol. 6, Issue 4, November 2003 pp: 566-588, http://dsd.lbl.gov/security/Akenti/Papers/
17. "Distributed Security Architectures - Providing security services for Grids". M. Thompson, et. al. Working Document. March 2004. http://dsd.lbl.gov/security/SciDac-DistSec-2pager04.pdf
18. "The PERMIS X.509 Role based privilege management infrastructure". David Chadwick, Alexander Otenko. 7th ACM Symposium on Access Control Models and Technologies (SACMAT 2002). June 2002. http://www.acm.org/sigs/sigsac/sacmat
19. "Experiences of Applying Advanced Grid Authorisation Infrastructures". R. O. Sinnott, A. J. Stell, D. W. Chadwick, O. Otenko. Accepted for the European Grid Conference (EGC2005), 14th-16th February 2005, Science Park Amsterdam, The Netherlands. http://labserv.nesc.gla.ac.uk/projccts/ dyvose/publicity/eGridFinalv4.pdf
20. "Shibboleth Overview and requirements". Steven Carmody. Shibboleth Working Group Overview and Requirements Document, February 2001. http://shibboleth.internet2.edu/docs/draft-internet2-shibboleth-requirements-01. html
21. "GridShib: A Policy Controlled Attribute Framework". http://grid.ncsa.uiuc.edu/GridShib/
22. "Cardea: Dynamic Access Control in Distributed Systems". NASA Advanced Supercomputing Division. Technical Report. November 2003. http://www.nas.nasa.gov/News/Techreports/2003/PDF/nas-03-020.pdf
23. "OASIS eXtensible Access Control Markup Language (XACML) 2.0". Tim Moses, et. al. Committee Draft 4. December 2004. http://www.oasis-open.org/ committees/xacml/
24. "VOMS, an Authorization System for Virtual Organizations". R. Alfieri,. et. al. Presented at the 1st European Across Grids Conference, Santiago de Compostela, Spain. February 2003. http://infnforge.cnaf.infn.it/ voms/VOMS-Santiago.pdf
25. "OCSP Requirements for Grids". Global Grid Forum, CA Operations Work Group. Working Document. February 2005. https://forge.gridforum.org/ projects/caops-wg
26. "ETSI TR 102 038: Electronic Signatures and Infrastructures (ESI); XML format for signature policies". ETSI ESI group. Version 1.1.1. April 2002. http://portal.etsi.org/esi/elsign.asp