= Security or rights management information = == Objective == Minimal information that should be provided by the client to allow the service to known who is trying to use it to ensure '''the protection of shared resources'''. == Motivation == Scenary: Dynamic access control & secure management over federated resources. * '''Resources protection:''' software (services, WFs, …) availability, computational resources (CPU, storage, …); data access restrictions * '''Protection / Sharing of proprietary data''' (in a persistence system). * '''Scheduling''': priority based system. Security services enforce access control policies at all levels to provide secure authentication and communication over an open network. == State of the art == * Systems: Kerberos / GAS ... == Discussion space == Authorization levels Interchanging protocols (formats) Authentication protocols WFs concerns Profiling offer deployment (specific to the user rights)