Fermilab Computing Division

CS Document 4516-v1

Evolution of Identity Management in OSG

Document #:
Document type:
Submitted by:
Mine Altunay
Updated by:
Mine Altunay
Document Created:
31 Oct 2011, 10:04
Contents Revised:
31 Oct 2011, 10:04
Metadata Revised:
31 Oct 2011, 10:04
Viewable by:
  • Public document
Modifiable by:

Quick Links:
Latest Version

Identity management infrastructure has been a key work area for the Open Science Grid (OSG) security team for the past year. The progress of web-based authentication protocols such as openID, SAML, and scientific federations such as InCommon, prompted OSG to evaluate its current identity management infrastructure and propose ways to incorporate new protocols and methods.
For the couple of years we have been working on documenting and then improving the user experience. Our identity roadmap has evolved. In one next step we are working closely with the ESNET DOE Grids CA group on the future
for the main US x509 CA. We are now starting a pilot project using a commercial CA, DigiCert CA, which is currently undergoing IGTF accreditation for user and host certificates. We then plan to investigate multiple back end services from a new OSG front-end service to enable integration and support of the new technologies and mechanisms needed by our users. We are participating in the cross-agency MAGIC forum to look at a high level at some of these futures.

In this talk, we will present our ideas and activities and speculate on the future.

Files in Document:
Identity Management OSG
Associated with Events:
CHEP 2012 held on 21 May 2012 in New York, New York
DocDB Home ]  [ Search ] [ Authors ] [ Events ] [ Topics ]

DocDB Version 8.8.9, contact Document Database Administrators