IVOA Web>IvoaEvents>InterOpNov2025>SessionDetails (2025-11-15, DaveMorris)

DSP Sessions:

15th November 2025 9:00-10:30 CET

Location	Time
Washington DC, USA	Sat, 15 Nov 2025 at 4:00 AM
UTC, Time Zone	Sat, 15 Nov 2025 at 8:00 AM
Bristol, United Kingdom	Sat, 15 Nov 2025 at 8:00 AM
Beijing, China	Sat, 15 Nov 2025 at 4:00 PM
Paris, France	Sat, 15 Nov 2025 at 9:00 AM
Perth, Australia	Sat, 15 Nov 2025 at 4:00 PM
Victoria, Canada	Sat, 15 Nov 2025 at 00:00 AM

[ back to main programme page]

Wednesday November 15 @09:00 CET: Wichernhaus "nadir"
Speaker	Title	Time	Abstract	Material
Dave Morris	Defining service interfaces with OpenAPI: Lessons for Machine-Readable IVOA Standards	15' 9:00-9:15	A report on our experiences defining a complex data model and service API using OpenAPI. What worked, what didn't, and where to go next	pdf
Sara Bertocco	Discussion: ExecutionBroker in Context: Lessons from Distributed Workflow Execution	15' 9:20-9:35	ExecutionBroker defines a protocol for offering and managing workflow executions or interactive sessions across distributed and federated systems, such as those in the IVOA. In this talk, we place ExecutionBroker in its context, we examine experiences from related efforts, execution queues, and interface translations. We discuss how these examples inform best practices, highlight common challenges in distributed workflow execution, and draw lessons that can guide the ongoing development and adoption of ExecutionBroker within the IVOA ecosystem.	pdf
Mark Taylor	AuthVO Document Status	15' 9:35-9:50	The AuthVO document describes how VO services can advertise authentication methods to VO clients, especially non-browser clients. We briefly recap its content, presented at the last Interop, and note minor changes since then. The main unsolved issue with the current draft is support for OAuth 2.0-based authentication. We introduce the problem and outline progress so far in addressing it.	pdf
Jesus Salgado	Security Challenges in AuthVO: Managing Authorization Across Methods	15' 09:50-10:05	AuthVO defines multiple authorisation methods to support secure access to IVOA services in distributed environments. This talk examines the security challenges across these methods, including bearer tokens, delegated credentials, and other approaches standardised in AuthVO. We highlight practical considerations for token issuance, lifetimes, revocation, and secure handling. The session aims to provide guidance for ensuring robust, interoperable security while adopting the full range of AuthVO authorisation mechanisms.	googlePresentation pdf
All	AuthVO Security and Standardization: Open Discussion and Brainstorming	25' 10:05-10:30	This session invites the community to explore security aspects of AuthVO and reflect on the standard as a whole. Topics for discussion include emerging threats, best practices for secure implementation, potential improvements to authorization methods, and strategies for broader adoption across IVOA services. The goal is to foster an open exchange of ideas, share experiences, and identify priorities for strengthening both the security and usability of AuthVO in the distributed virtual observatory ecosystem.

Notetakers: Collaborative

notes: _( live notes, should expire around end of 2026_)

Attachments

Topic attachments
I	Attachment	History	Action	Size	Date	Who	Comment
pdf	authvo.pdf	r1	manage	93.4 K	2025-11-14 - 08:21	MarkTaylor
pdf	20251115-IVOA-OpenAPI.pdf	r1	manage	976.1 K	2025-11-15 - 07:36	DaveMorris	OpenAPI for IVOA
pdf	ExecutionBroker_in_Context_InteropGorlitz_Nov_2025.pdf	r1	manage	1466.1 K	2025-11-15 - 07:41	SaraBertocco	pdf
pdf	SalgadoIVOADSPNov2025.pdf	r1	manage	1564.0 K	2025-11-14 - 21:24	JesusSalgado

Topic revision: r13 - 2025-11-15 - DaveMorris

IVOA

Log in or Register

IVOA.net
Wiki Home
WebChanges
WebTopicList
WebStatistics

Twiki Meta & Help
IVOA
Know
Main
Sandbox
TWiki

TWiki intro
TWiki tutorial
User registration
Notify me

Working Groups

Interest Groups

Time Domain

Committees

Stds&Procs

www.ivoa.net
Documents
Events
Members
XML Schema