An Architecture for Authorization in Grids using Shibboleth and VOMS

Authors:
Ralf Groeper;Christian Grimm;Stefan Piger;Jan Wiebelitz
Affiliations:
Hanover, Germany;Hanover, Germany;Hanover, Germany;Hanover, Germany
Venue:
EUROMICRO '07 Proceedings of the 33rd EUROMICRO Conference on Software Engineering and Advanced Applications
Year:
2007

Citing 0
Cited 2

Secure token passing at application level

Future Generation Computer Systems
Assured resource sharing in Grid environments

International Journal of Information and Computer Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Shibboleth-based federations emerge in numerous countries, especially in the academic sector. Leveraging these federations for authentication and authorization purposes in Grid computing is one aim of current research. In this paper an architecture for delivering attributes managed by both, Shibboleth IdPs and VOMS, to Grid resources for authentication and authorization purposes is presented. Special focus lies on linking web-based Shibboleth federations with the X.509 certificate-based grid security infrastructure by using a short lived certificate service as a trust-proxy between these worlds.