Trust Issues in Shibboleth-Enabled Federated Grid Authentication and Authorization Infrastructures Supporting Multiple Grid Middleware
Third IEEE International Conference on e-Science and Grid Computing (e-Science 2007) (2007)
Dec. 10, 2007 to Dec. 13, 2007
In Germany's D-Grid project numerous Grid communities are working together to develop a common overarching Grid. One major aim of D-Grid is thus to integrate the existing Grid deployments and make them interoperable. The major challenge in this endeavor lies in the heterogeneity of the current implementations: Three Grid middleware and different VO management approaches have to be orchestrated to achieve the intended interoperability. This paper presents some of the findings of the IVOM project regarding VO management technologies. Furthermore, options are discussed for making Shibboleth federations and VO management systems interoperable so that attributes from both sources can be used for authentication and authorization in Grids. Finally two approaches, one using a so called "trust proxy" and one without trust proxying, are presented and support by current Grid middleware is discussed.
W. Ziegler et al., "Trust Issues in Shibboleth-Enabled Federated Grid Authentication and Authorization Infrastructures Supporting Multiple Grid Middleware," Third IEEE International Conference on e-Science and Grid Computing (e-Science 2007)(ESCIENCE), Bangalore, India, 2007, pp. 569-576.