The open archive for STFC research publications
Full Record Details
NERC Data Grid Authorisation Architecture
ND Bennett (CCLRC Daresbury Lab.)
The NERC Data Grid (NDG) uses RFC3820 proxy certificates for user Authentication. This paper focuses on the additional Token-based Authorisation mechanism used. Authorisation is required by NDG when users wish to access data or detailed metadata at many institutions. NDG users are allocated an Authorisation Token by their home institution that encapsulates details such as the issuing body, the user¿s data access roles and the token¿s expiry date. This token is an XML file, digitally signed using the XML-Security standard. The token can be used to access other data providers that have a relevant trust agreement with the user¿s own institution.
authorisation security proxy certificate token delegation role roles trust XML
UK e-Science All Hands Meeting 2005 (AHM05)(2005).
Showing record 1 of 1
Login to Add and Manage Publications
Terms & conditions
Science and Technology Facilities Council
Switchboard: 01793 442000