Single sign-on and authorization for dynamic virtual organizations
AuthorSinnott, R. O.; Ajayi, O.; Stell, A. J.; Watt, J.; JIANG, J.
Source TitleInternational Federation for Information Processing
Document TypeJournal Article
CitationsSinnott, R. O., Ajayi, O., Stell, A. J., Watt, J., & Jiang, J. (2006). Single sign-on and authorization for dynamic virtual organizations. International Federation for Information Processing, 224, 555-564.
Access StatusOpen Access
This is a pre-print of an article whose final and definitive form has been published in International Federation for Information Processing © 2006 Springer; the original publication is available at: http://www.springerlink.com
The vision of the Grid is to support the dynamic establishment and subsequent management of virtual organizations (VO). To achieve this presents many challenges for the Grid community with perhaps the greatest one being security. Whilst Public Key Infrastructures (PKI) provide a form of single sign-on through recognition of trusted certification authorities, they have numerous limitations. The Internet2 Shibboleth architecture and protocols provide an enabling technology overcoming some of the issues with PKIs however Shibboleth too suffers from various limitations that make its application for dynamic VO establishment and management difficult. In this paper we explore the limitations of PKIs and Shibboleth and present an infrastructure that incorporates single sign-on with advanced authorization of federated security infrastructures and yet is seamless and targeted to the needs of end users. We explore this infrastructure through an educational case study at the National e-Science Centre (NeSC) at the University of Glasgow and Edinburgh.
KeywordsGrid infrastructure; security; Grid community
- Click on "Export Reference in RIS Format" and choose "open with... Endnote".
- Click on "Export Reference in RIS Format". Login to Refworks, go to References => Import References