Attributes and VOs: Extending the UNICORE Authorisation Capabilities

  • Arash Faroughi
  • Roozbeh Faroughi
  • Philipp Wieder
  • Wolfgang Ziegler
Conference paper

DOI: 10.1007/978-3-540-78474-6_16

Part of the Lecture Notes in Computer Science book series (LNCS, volume 4854)
Cite this paper as:
Faroughi A., Faroughi R., Wieder P., Ziegler W. (2008) Attributes and VOs: Extending the UNICORE Authorisation Capabilities. In: Bougé L. et al. (eds) Euro-Par 2007 Workshops: Parallel Processing. Euro-Par 2007. Lecture Notes in Computer Science, vol 4854. Springer, Berlin, Heidelberg

Abstract

Reliable authentication and authorisation are crucial for both service providers and their customers, where the former want to protect their resources from unauthorised access and fraudulent use while their customers want to be sure unauthorised access to their data is prevented. In Grid environments Virtual Organisations (VO) have been adopted as a means to organise and control access to resources and data based on roles that are assigned to users. Moreover, attribute based authorisation has emerged providing a decentralised approach with better scalability. Up to now UNICORE authentication and authorisation is based on X.509 certificates only. In this paper we will present two approaches to integrate both role or attribute based authorisation using VOMS and attribute based authorisation using Shibboleth into UNICORE.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2008

Authors and Affiliations

  • Arash Faroughi
    • 1
  • Roozbeh Faroughi
    • 1
  • Philipp Wieder
    • 2
  • Wolfgang Ziegler
    • 1
  1. 1.Department of BioinformaticsFraunhofer Institute SCAISankt AugustinGermany
  2. 2.Central Institute for Applied MathematicsResearch Centre JülichJülichGermany

Personalised recommendations