Shibboleth Access for Resources on the National Grid Service (SARoNGS)
The National Grid Service (NGS) provides access to compute and data resources for UK academics. Currently users are required to have an X.509 certificate from the UK e-Science Certification Authority (CA) or one of its international peers to access the NGS. The CA must satisfy the requirements for internationally agreed assurance levels and some users find the processes of obtaining and managing certificates difficult. Shibboleth, an implementation of federation identity-based authentication, has been widely deployed in academic environments in the UK. The SARoNGS project, was proposed to integrate the Shibboleth and X.509 based infrastructures, to deliver a production level service for accessing the NGS in a user-friendly way. This paper describes an architecture by which users are authenticated by the UK Access Management Federation to acquire low assurance credentials to access Grid resources on the NGS. Users can login to NGS resources via NGS Portal, using their local institutions authentication system.
shibboleth authentication authorization access control security
Xiao Dong Wang Claire Devereux Neil Geddes Mike Jones Jens Jensen Andrew Richards David Wallom Tiejun Ma Robert Frank David Spence Steven Young
STFC Daresbury Laboratory STFC Rutherford Appleton Laboratory Research Computing Service,Manchester University Oxford e-Research Centre,Oxford University
国际会议
The Fifth International Conference on Information Assurance and Security(第五届信息保障与安全国际会议)
西安
英文
338-341
2009-08-18(万方平台首次上网日期,不代表论文的发表时间)