1 / 6

Jim Basney NCSA Marty Humphrey University of Virginia

Integration of the MyProxy Online Credential Repository into the NSF Middleware Initiative Software Infrastructure. Jim Basney NCSA Marty Humphrey University of Virginia. MyProxy. Provides a repository for Grid (GSI) proxy credentials

Download Presentation

Jim Basney NCSA Marty Humphrey University of Virginia

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Integration of theMyProxy Online Credential Repository into the NSF Middleware Initiative Software Infrastructure Jim BasneyNCSA Marty HumphreyUniversity of Virginia National Computational Science

  2. MyProxy • Provides a repository for Grid (GSI) proxy credentials • Per-credential policy controls how the credential can be retrieved • Uses • Retrieve a proxy credential on demand from any machine without distributing long-term credentials • Delegate a proxy credential without modifying existing protocols (example: https to Grid portals) • Allow monitored, controlled renewal of delegated proxy credentials rather than delegating long-lived proxy credentials directly National Computational Science

  3. MyProxy MyProxy Server Upload Proxy Fetch Proxy Web Portal Login Fetch Proxy Renew Proxy Renew Proxy Scheduler SubmitJobs SubmitJobs Grid Resources National Computational Science

  4. MyProxy Status • Initially developed at NCSA in 2000 by Jason Novotny and Von Welch for delegating credentials to Grid portals • Updated to support per-credential authorization, direct retrieval, renewal, and Globus 2.0 in the last year • Latest version available from http://www.ncsa.uiuc.edu/Divisions/ACES/MyProxy/ • NMI supporting continued NCSA/UVA development July 2002 - June 2004 National Computational Science

  5. NMI Deliverables: Year 1 • Prepare for NMI distribution • Support multiple credentials per user • Provide a thread-safe C API library • Integrate with Condor-G • Support Kerberos authentication and storing Kerberos credentials • Support audit functions National Computational Science

  6. NMI Deliverables: Year 2 • Submit OGSA-compliant protocol draft for credential retrieval services (a.k.a. token services) to GGF • Provide an OGSA-compliant protocol implementation • Develop and implement an authorization framework for credential repositories • Develop mechanisms to reduce complexity for users managing multiple credentials National Computational Science

More Related