Difference: SecurityHome (1 vs. 8)

Revision 82022-01-04 - PatrickDowler

 
META TOPICPARENT name="IvoaGridAndWebServices"

IVOA Grid & Web Services: Security

Contents


Overview

Though our data may have zero commercial value (according to Jim Gray), we are still concerned about who can access them and ensuring that they and the services that we provide are not exploited for nefarious purposes. However, users don't care about protocols and standards - they care about better experience with enhanced privacy and security. We require simple to use, robust, and scalable solutions to the issues of authentication (who am I), authorization (what can I do) and delegation (how do I allow someone else to do something on my behalf) that work with all kinds of services and applications that the VO offers.

Access control

The ability to control who has access to resources and what operations are permitted is a common task across the IVOA.

Added:
>
>
Prototype work on using HTTP headers to convey authentication: SSO_next
 

Specification

<--  
-->

Revision 72020-06-02 - GiulianoTaffoni

 
META TOPICPARENT name="IvoaGridAndWebServices"
Changed:
<
<

IVOA Grid & Web Services: Security

>
>

IVOA Grid & Web Services: Security

 
Changed:
<
<
Contents
>
>
Contents
 


Added:
>
>
 

Overview

Added:
>
>
 Though our data may have zero commercial value (according to Jim Gray), we are still concerned about who can access them and ensuring that they and the services that we provide are not exploited for nefarious purposes. However, users don't care about protocols and standards - they care about better experience with enhanced privacy and security. We require simple to use, robust, and scalable solutions to the issues of authentication (who am I), authorization (what can I do) and delegation (how do I allow someone else to do something on my behalf) that work with all kinds of services and applications that the VO offers.
Changed:
<
<

Single-Sign-On (SSO)

Single sign-on authentication means that you login once to a VO site or service and can then access any other VO site or service without repeating the authentication process. Conventional wisdom is that this should be done with digital signatures, but the standards for these signatures allow many different approaches. A specification for the authentication mechanisms that the VO should use is now an IVOA Recommendation.
>
>
Added:
>
>
Access control
 
Changed:
<
<

Specification

>
>
The ability to control who has access to resources and what operations are permitted is a common task across the IVOA.
Deleted:
<
<
The next aspects of the security infrastructure to consider are the delegation mechanism and community services and trust model:
 
Deleted:
<
<

Discussion

History

Related material

Access control

The ability to control who has access to resources and what operations are permitted is a common task across the IVOA.
 

Specification

Changed:
<
<
>
>
Deleted:
<
<

 
Deleted:
<
<

Revision 62012-06-26 - root

 
META TOPICPARENT name="IvoaGridAndWebServices"

IVOA Grid & Web Services: Security

Contents


Overview

Though our data may have zero commercial value (according to Jim Gray), we are still concerned about who can access them and ensuring that they and the services that we provide are not exploited for nefarious purposes. However, users don't care about protocols and standards - they care about better experience with enhanced privacy and security. We require simple to use, robust, and scalable solutions to the issues of authentication (who am I), authorization (what can I do) and delegation (how do I allow someone else to do something on my behalf) that work with all kinds of services and applications that the VO offers.

Single-Sign-On (SSO)

Single sign-on authentication means that you login once to a VO site or service and can then access any other VO site or service without repeating the authentication process. Conventional wisdom is that this should be done with digital signatures, but the standards for these signatures allow many different approaches. A specification for the authentication mechanisms that the VO should use is now an IVOA Recommendation.

Specification

The next aspects of the security infrastructure to consider are the delegation mechanism and community services and trust model:

Changed:
<
<
>
>
 

Discussion

History

Changed:
<
<
>
>
 
Changed:
<
<
>
>
 

Related material

Changed:
<
<
>
>
 

Access control

The ability to control who has access to resources and what operations are permitted is a common task across the IVOA.

Specification

Changed:
<
<
>
>
 

Revision 52008-07-17 - MatthewGraham

 
META TOPICPARENT name="IvoaGridAndWebServices"

IVOA Grid & Web Services: Security

Contents


Overview

Though our data may have zero commercial value (according to Jim Gray), we are still concerned about who can access them and ensuring that they and the services that we provide are not exploited for nefarious purposes. However, users don't care about protocols and standards - they care about better experience with enhanced privacy and security. We require simple to use, robust, and scalable solutions to the issues of authentication (who am I), authorization (what can I do) and delegation (how do I allow someone else to do something on my behalf) that work with all kinds of services and applications that the VO offers.

Single-Sign-On (SSO)

Single sign-on authentication means that you login once to a VO site or service and can then access any other VO site or service without repeating the authentication process. Conventional wisdom is that this should be done with digital signatures, but the standards for these signatures allow many different approaches. A specification for the authentication mechanisms that the VO should use is now an IVOA Recommendation.

Specification

The next aspects of the security infrastructure to consider are the delegation mechanism and community services and trust model:
Changed:
<
<
>
>
 

Discussion

History

Added:
>
>
 

Related material

Access control

The ability to control who has access to resources and what operations are permitted is a common task across the IVOA.

Specification


<--  
-->

Revision 42008-05-09 - MatthewGraham

 
META TOPICPARENT name="IvoaGridAndWebServices"

IVOA Grid & Web Services: Security

Contents


Overview

Though our data may have zero commercial value (according to Jim Gray), we are still concerned about who can access them and ensuring that they and the services that we provide are not exploited for nefarious purposes. However, users don't care about protocols and standards - they care about better experience with enhanced privacy and security. We require simple to use, robust, and scalable solutions to the issues of authentication (who am I), authorization (what can I do) and delegation (how do I allow someone else to do something on my behalf) that work with all kinds of services and applications that the VO offers.

Single-Sign-On (SSO)

Single sign-on authentication means that you login once to a VO site or service and can then access any other VO site or service without repeating the authentication process. Conventional wisdom is that this should be done with digital signatures, but the standards for these signatures allow many different approaches. A specification for the authentication mechanisms that the VO should use is now an IVOA Recommendation.

Specification

The next aspects of the security infrastructure to consider are the delegation mechanism and community services and trust model:

Discussion

History

Related material

Added:
>
>

Access control

The ability to control who has access to resources and what operations are permitted is a common task across the IVOA.

Specification

 
<--  
-->

Revision 32008-05-08 - MatthewGraham

 
META TOPICPARENT name="IvoaGridAndWebServices"

IVOA Grid & Web Services: Security

Contents


Overview

Though our data may have zero commercial value (according to Jim Gray), we are still concerned about who can access them and ensuring that they and the services that we provide are not exploited for nefarious purposes. However, users don't care about protocols and standards - they care about better experience with enhanced privacy and security. We require simple to use, robust, and scalable solutions to the issues of authentication (who am I), authorization (what can I do) and delegation (how do I allow someone else to do something on my behalf) that work with all kinds of services and applications that the VO offers.

Single-Sign-On (SSO)

Single sign-on authentication means that you login once to a VO site or service and can then access any other VO site or service without repeating the authentication process. Conventional wisdom is that this should be done with digital signatures, but the standards for these signatures allow many different approaches. A specification for the authentication mechanisms that the VO should use is now an IVOA Recommendation.

Specification

The next aspects of the security infrastructure to consider are the delegation mechanism and community services and trust model:
Changed:
<
<
>
>
 

Discussion

History

Changed:
<
<
>
>
 

Related material

Changed:
<
<
>
>
 


<--  
-->

Revision 22008-04-25 - MatthewGraham

 
META TOPICPARENT name="IvoaGridAndWebServices"
Deleted:
<
<

 

IVOA Grid & Web Services: Security

Contents


Overview

Though our data may have zero commercial value (according to Jim Gray), we are still concerned about who can access them and ensuring that they and the services that we provide are not exploited for nefarious purposes. However, users don't care about protocols and standards - they care about better experience with enhanced privacy and security. We require simple to use, robust, and scalable solutions to the issues of authentication (who am I), authorization (what can I do) and delegation (how do I allow someone else to do something on my behalf) that work with all kinds of services and applications that the VO offers.

Single-Sign-On (SSO)

Single sign-on authentication means that you login once to a VO site or service and can then access any other VO site or service without repeating the authentication process. Conventional wisdom is that this should be done with digital signatures, but the standards for these signatures allow many different approaches. A specification for the authentication mechanisms that the VO should use is now an IVOA Recommendation.

Specification

The next aspects of the security infrastructure to consider are the delegation mechanism and community services and trust model:

Discussion

History

Related material


<--  
-->

Revision 12008-04-25 - MatthewGraham

 
META TOPICPARENT name="IvoaGridAndWebServices"

IVOA Grid & Web Services: Security

Contents


Overview

Though our data may have zero commercial value (according to Jim Gray), we are still concerned about who can access them and ensuring that they and the services that we provide are not exploited for nefarious purposes. However, users don't care about protocols and standards - they care about better experience with enhanced privacy and security. We require simple to use, robust, and scalable solutions to the issues of authentication (who am I), authorization (what can I do) and delegation (how do I allow someone else to do something on my behalf) that work with all kinds of services and applications that the VO offers.

Single-Sign-On (SSO)

Single sign-on authentication means that you login once to a VO site or service and can then access any other VO site or service without repeating the authentication process. Conventional wisdom is that this should be done with digital signatures, but the standards for these signatures allow many different approaches. A specification for the authentication mechanisms that the VO should use is now an IVOA Recommendation.

Specification

The next aspects of the security infrastructure to consider are the delegation mechanism and community services and trust model:

Discussion

History

Related material


<--  
-->
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © 2008-2024 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback