Title :
Trust Issues in Shibboleth-Enabled Federated Grid Authentication and Authorization Infrastructures Supporting Multiple Grid Middleware
Author :
Grimm, Christian ; Groeper, Ralf ; Makedanz, Siegfried ; Pfeiffenberger, Hans ; Gietz, Peter ; Haase, Martin ; Schiffers, Michael ; Ziegler, Wolfgang
Author_Institution :
Leibniz Univ. Hannover, Hannover
Abstract :
In Germany\´s D-Grid project numerous grid communities are working together to develop a common overarching grid. One major aim of D-Grid is thus to integrate the existing grid deployments and make them interoperable. The major challenge in this endeavor lies in the heterogeneity of the current implementations: three grid middleware and different VO management approaches have to be orchestrated to achieve the intended interoperability. This paper presents some of the findings of the IVOM project regarding VO management technologies. Furthermore, options are discussed for making Shibboleth federations and VO management systems interoperable so that attributes from both sources can be used for authentication and authorization in grids. Finally two approaches, one using a so called "trust proxy" and one without trust proxying, are presented and support by current grid middleware is discussed.
Keywords :
authorisation; grid computing; message authentication; middleware; open systems; D-Grid project; Shibboleth-enabled federated grid authentication; VO management approaches; authorization infrastructures; grid interoperability; grid middleware; trust proxy; Authentication; Authorization; Communities; Grid computing; IP networks; Middleware; Project management; Scientific computing; Technology management; Web services;
Conference_Titel :
e-Science and Grid Computing, IEEE International Conference on
Conference_Location :
Bangalore
Print_ISBN :
978-0-7695-3064-2
DOI :
10.1109/E-SCIENCE.2007.80
