1 / 6

NASA SensorWeb AIP-5 Kick-off User Authentication & Licensing

NASA SensorWeb AIP-5 Kick-off User Authentication & Licensing. Pat Cappelaere Vightel Stu Frye SGT Dan Mandl GSFC Karen Moe GSFC. Why Interest in Authentication?. Satellite Tasking Request Accountability

dreama
Download Presentation

NASA SensorWeb AIP-5 Kick-off User Authentication & Licensing

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. NASA SensorWebAIP-5 Kick-offUser Authentication & Licensing Pat Cappelaere Vightel Stu Frye SGT Dan Mandl GSFC Karen Moe GSFC

  2. Why Interest in Authentication? • Satellite Tasking Request Accountability • Distributed User Access Control & Permissions Management (User Attribute Exchange or AX) • Single Sign-on Across Many Services • Limited Digital Rights & Data Access • Web Services Protection

  3. Experience • Distributed Identity Service using OpenID • Support for Multiple Organizations • OpenID / OAuth Hybrid Protocol for Delegation of User Authority to Workflows • Two-Factor Authentication using Symantec Validation and ID Protection Service

  4. Present Issues • More Adoption of OpenID with Other Disaster Organizations • SOAP WS* security incompatibility • Integration of Digital Rights Management • Radarsat2 Raw/Processed Data example • In progress (one-click license acceptance) • Full NASA Acceptance • [Implemented outside NASA on JOYENT leased servers as prototype]

  5. Achievements • Two Factor Authentication • Single Sign-on • User Attribute Exchange • Distributed ID Management Across Organizations • Delegation of User Authority to Workflows • REST API – Simple to implement • Fairly low cost ~$1500/year • Hoping to complete Digital Rights Management

  6. Hopes • Secure Disaster Data Delivery Network • OpenID/Oauth • BitTorrent (aka GeoTorrents) • Acceptable Digital Rights Management

More Related