Single sign-on and authorization for dynamic virtual organizations
Citations
Altmetric
Date
2006Source Title
International Federation for Information ProcessingPublisher
SpringerMetadata
Show full item recordDocument Type
Journal ArticleCitations
Sinnott, R. O., Ajayi, O., Stell, A. J., Watt, J., & Jiang, J. (2006). Single sign-on and authorization for dynamic virtual organizations. International Federation for Information Processing, 224, 555-564.Access Status
Open AccessDescription
This is a pre-print of an article whose final and definitive form has been published in International Federation for Information Processing © 2006 Springer; the original publication is available at: http://www.springerlink.com
Abstract
The vision of the Grid is to support the dynamic establishment and subsequent management of virtual organizations (VO). To achieve this presents many challenges for the Grid community with perhaps the greatest one being security. Whilst Public Key Infrastructures (PKI) provide a form of single sign-on through recognition of trusted certification authorities, they have numerous limitations. The Internet2 Shibboleth architecture and protocols provide an enabling technology overcoming some of the issues with PKIs however Shibboleth too suffers from various limitations that make its application for dynamic VO establishment and management difficult. In this paper we explore the limitations of PKIs and Shibboleth and present an infrastructure that incorporates single sign-on with advanced authorization of federated security infrastructures and yet is seamless and targeted to the needs of end users. We explore this infrastructure through an educational case study at the National e-Science Centre (NeSC) at the University of Glasgow and Edinburgh.
Keywords
Grid infrastructure; security; Grid communityExport Reference in RIS Format