Version 2 (modified by ots, 10 years ago)

--

Security or rights management information

Objective

Minimal information that should be provided by the client to allow the service to known who is trying to use it to ensure the protection of shared resources.

Motivation

Scenary: Dynamic access control & secure management over federated resources.

  • Resources protection: software (services, WFs, …) availability, computational resources (CPU, storage, …); data access restrictions
  • Protection / Sharing of proprietary data (in a persistence system).
  • Scheduling: priority based system.

Security services enforce access control policies at all levels to provide secure authentication and communication over an open network.

State of the art

  • Systems: Kerberos / GAS ...

Discussion space

  • Authorization levels
  • Interchanging protocols (formats)
  • Authentication protocols
  • WFs concerns
  • Profiling offer deployment (specific to the user rights)

Attachments