ePubs

The open archive for STFC research publications

Full Record Details

Persistent URL	http://purl.org/net/epubs/work/35214
Record Status	Checked
Record Id	35214
Title	NERC Data Grid Authorisation Architecture
Contributors	N Bennett (CCLRC Daresbury Lab.), R Cramer (BODC), S Kondapalli (BODC), R Lowry (BODC), G Drinkwater (CCLRC Daresbury Lab.), M Gutierrez (British Atmospheric Data Centre), P Kershaw (BADC), K Kleese van Dam (CCLRC Daresbury Lab.), A Manandhar (CCLRC Daresbury Lab.), K O'Neill (CCLRC Daresbury Lab.), S Sufi (CCLRC Daresbury Lab.), A Woolf (CCLRC Daresbury Lab.), S Latham (BADC), B Lawrence (BADC), A Stephens (BADC)
Abstract	The NERC Data Grid (NDG) uses RFC3820 proxy certificates for user Authentication. This paper focuses on the additional Token-based Authorisation mechanism used. Authorisation is required by NDG when users wish to access data or detailed metadata at many institutions. NDG users are allocated an Authorisation Token by their home institution that encapsulates details such as the issuing body, the user's data access roles and the token's expiry date. This token is an XML file, digitally signed using the XML-Security standard. The token can be used to access other data providers that have a relevant trust agreement with the user's own institution.
Organisation	CCLRC , ESC , NDG , ESC-DMG
Keywords	token , trust , role , XML , security , authorisation
Funding Information
Related Research Object(s):
Licence Information:
Language	English (EN)

Type	Details	URI(s)	Local file(s)	Year
Presentation	Presented at UK e-Science All Hands Meeting 2005, Nottingham, England, 19-22 Sep 2005.	http://www.allhan…dings/papers/476.pdf		2005