e-Science logo Nesc logo
 
 
About NeSC
e-Science Institute
e-Science Hub
TOE
Contacts
e-Science Events
Resources
Newsroom
Presentations & Lectures
Technical Papers
Global Grid Links
Projects
UK e-Science Centres
UK e-Science Teams
Career Opportunities
Bibliographic Database
 

 

Paper ID: 2479

A Shibboleth-Protected Privilege Management Infrastructure for e-Science Education
Watt,J. Ajayi,O. Jiang,J. Koetsier,J. Sinnott,J.

Appeared in: to appear in 6th International Symposium on Cluster Computing and the Grid, CCGrid2006, May 2006, Singapore.
Page Numbers:
Publisher: N/A
Year: 2006
ISBN/ISSN:
Contributing Organisation(s):
Field of Science: e-Science

URL: http://www.nesc.ac.uk/papers/staff/CLAG06-final.pdf

Abstract: Simplifying access to and usage of large scale compute resources via the Grid is of critical importance to encourage the uptake of e-Research. Security is one aspect that needs to be made as simple as possible for end users. The ESP-Grid and DyVOSE projects at the National e-Science Centre (NeSC) at the University of Glasgow are investigating security technologies which will make the end-user experience of using the Grid easier and more secure. In this paper we outline how simplified (from the user experience) authentication and authorization of users are achieved through single usernames and passwords at users’ home institutions. This infrastructure, which will be applied in the second year of the Grid Computing module part of the advanced MSc in Computing Science at the University of Glasgow, combines Grid portal technology, the Internet2 Shibboleth Federated Access Control infrastructure, and the PERMIS Role-Based Access Control technology. Through this infrastructure inter-institutional teaching can be supported where secure access to federated resources is made possible between sites. A key aspect of the work we describe here is the ability to support dynamic delegation of authority whereby local/remote administrators are able to dynamically assign meaningful privileges to remote/local users respectively in a trusted manner thus allowing for the dynamic establishment of virtual organizations with fine grained security at their heart.

Keywords: Security, Education, Shibboleth


BIB DOC HTM HTML PDF PPT PS RTF TEX TXT ZIP




 

Last Updated: 22 Jun 12 11:02
This is an archived website, preserved and hosted by the School of Physics and Astronomy at the University of Edinburgh. The School of Physics and Astronomy takes no responsibility for the content, accuracy or freshness of this website. Please email webmaster [at] ph [dot] ed [dot] ac [dot] uk for enquiries about this archive.