Plugging a scalable authentication framework into Shibboleth

Author

Zhang, N. ; Yao, L. ; Chin, J. ; Shi, Q. ; Nenadic, A. ; McNab, A. ; Rector, A. ; Goble, C.

Author_Institution

Sch. of Comput. Sci., Manchester Univ., UK

fYear

2005

fDate

13-15 June 2005

Firstpage

271

Lastpage

276

Abstract

In a VO (virtual organization) environment where services are provided and shared by dissimilar organizations from different administrative domains and are protected with dissimilar security policies and measures, there is a need for a flexible authentication framework that supports the use of various authentication tokens. The authentication strengths derived from these tokens should be fed into an access control decision making process. This paper reports our ongoing efforts in designing and implementing such a framework to facilitate multi-level and multi-factor authentication and authentication strength linked fine-grained access control in Shibboleth. The proof-of-concept prototype using a Java smart card is reported.

Keywords

authorisation; Java smart card; Shibboleth; access control decision making; authentication strength; authentication tokens; fine-grained access control; grid authentication; multifactor authentication; multilevel authentication; scalable authentication framework; security architecture; smart tokens; virtual organization; Access control; Access protocols; Authentication; Biometrics; Computer science; Computer security; Hospitals; Paramagnetic resonance; Protection; Q measurement; Grid authentication; security architecture; smart tokens.;

fLanguage

English

Publisher

ieee

Conference_Titel

Enabling Technologies: Infrastructure for Collaborative Enterprise, 2005. 14th IEEE International Workshops on

ISSN

1524-4547

Print_ISBN

0-7695-2362-5

Type

conf

DOI

10.1109/WETICE.2005.48

Filename

1566220