Premium
The GridSite Web/Grid security system
Author(s) -
McNab Andrew
Publication year - 2005
Publication title -
software: practice and experience
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.437
H-Index - 70
eISSN - 1097-024X
pISSN - 0038-0644
DOI - 10.1002/spe.690
Subject(s) - computer science , interoperability , computer security , authorization , architecture , grid , service (business) , authentication (law) , world wide web , access control , web service , database , business , art , geometry , mathematics , marketing , visual arts
This paper describes the architecture of the GridSite system, which adds support for several Grid security protocols to the Apache Web server platform. These include the Globus GSI authentication system, Grid Access Control Language (GACL) access policy files, and Distinguished Name (DN) List and Virtual Organization Membership Service (VOMS) group memberships. Particular emphasis is placed on how the architecture of GridSite has evolved during the past 3 years, how this has been influenced by operational experience with production systems, and how the project has led to new developments, such as GACL. Finally, a description is given of how GridSite has been made to interoperate with other deployed security systems, both as producers and consumers of GridSite's authorization information. Copyright © 2005 John Wiley & Sons, Ltd.