Fermilab Computing Division

CS Document 4663-v1

Status of the Adoption of a SAML-XACML Profile for Authorization Interoperability across Grid Middleware

Document #:
CS-doc-4663-v1
Document type:
Presentation
Submitted by:
Gabriele Garzoglio
Updated by:
Gabriele Garzoglio
Document Created:
16 Feb 2012, 14:11
Contents Revised:
16 Feb 2012, 14:11
Metadata Revised:
16 Feb 2012, 14:11
Viewable by:
  • Public document
Modifiable by:

Quick Links:
Latest Version

Other Versions:
Abstract:
The Authorization Interoperability activity was initiated in 2006 to foster interoperability between middleware and authorization infrastructures deployed in the Open Science Grid (OSG) and the Enabling Grids for E-sciencE (EGEE) projects. This activity delivered a common authorization protocol and a set of libraries that implement that protocol. Authorization "calls-out" based on this protocol have been integrated with the common Gird middleware (Globus Gatekeeper, GridFTP, dCache, BeStMAN, etc.) and site authorization services (LCAS/LCMAPS, GUMS, SAZ). As the infrastructure gets deployed to more and more sites on the OSG, the implementation is being tuned to surpass an authorization rate of 100 Hz. Such a rate is sufficient to support the peak needs of large Grid sites, such as Fermilab.
The profile committee has recently introduced its first extension since 2008. This experience demonstrated how the change management process of the profile and its implementation could be run successfully. This process will be put to the test as the committee will discuss the upcoming requests to include Cloud Computing authorization in the profile.
Associated with Events:
ISGC 2012 held on 26 Feb 2012 in Academica Sinica, Taipai, Taiwan
DocDB Home ]  [ Search ] [ Authors ] [ Events ] [ Topics ]

DocDB Version 8.8.9, contact Document Database Administrators