Grid security work in 2006
This presentation is the property of its rightful owner.
Sponsored Links
1 / 5

Grid Security work in 2006 PowerPoint PPT Presentation


  • 80 Views
  • Uploaded on
  • Presentation posted in: General

Grid Security work in 2006. Andrew McNab Grid Security Research Fellow University of Manchester. December 2005. Security Group had started GridPP2 and JISC funded work GridSite had been taken up by several HEP / Grid projects for managing web pages

Download Presentation

Grid Security work in 2006

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -

Presentation Transcript


Grid security work in 2006

Grid Security work in 2006

Andrew McNab

Grid Security Research Fellow

University of Manchester


December 2005

December 2005

  • Security Group had started GridPP2 and JISC funded work

  • GridSite had been taken up by several HEP / Grid projects for managing web pages

  • GridSiteWiki in use by GridPP (New Scientist mention etc)

  • Big push was still to get GridSite into “programmatic” use.

  • GridSite web service hosting and delegation taken up by EGEE Workload Management

  • htcp bulk file transfers used by EGEE WMS

  • Had designed SiteCast file location system

21 December 2006

A.McNab – Grid Security


Gridsite

GridSite

  • GridSite is our key piece of grid security technology

  • Adds support for grid security “objects” to Apache web server

    • Identity certificates and GSI proxies

    • VOMS attribute certificates for group membership

    • GACL policy language

    • Credentials from Shibboleth

  • Allows Apache to host Web Services for Grids.

  • Library functions can be reused in other services

    • including GridSite proxy delegation used by EGEE

21 December 2006

A.McNab – Grid Security


New for 2006

“New for 2006”

  • EGEE File Transfer System has taken up GridSite delegation protocol and library for C/C++ components

  • SlashGrid resurrected and rewritten

    • provides an HTTP(S) network filesystem, with the option to use multicast to find replicas of files.

  • With Joseph, Shibboleth added to credentials framework

    • Distributed password-based authentication

    • NIST Level of Assurance added to policy language

  • Support for access control for 3rd party virtual “websites”

    • eg the Subversion version control system

21 December 2006

A.McNab – Grid Security


Summary

Summary

  • Continue to support GridPP website and Wiki

    • Also used by other Grid websites, and NGS Wiki

  • Continue to track agreed changes in delegation protocol, VOMS attributes etc and update library in response

  • EGEE FTS has adopted GridSite components

    • WMS continues to use GridSite to host services

  • SlashGrid bulk file storage system produced and being finalised

  • Shibboleth support added to GridSite framework

    • for when JISC uses Shibboleth to replace ATHENS

21 December 2006

A.McNab – Grid Security


  • Login