23/09/10 14:39:31 (10 years ago)

Preparing 2.0.0 release for NDG Security

1 edited


  • TI12-security/trunk/NDGSecurity/python/ndg_security/setup.py

    r6628 r7510  
    2222NDG Security is the security system for the UK Natural Environment Research 
    2323Council funded NERC DataGrid.  NDG Security has been developed to  
    24 provide users with seamless access to secured resources across NDG  
     24provide users with seamless federated access to secured resources across NDG  
    2525participating organisations whilst at the same time providing an underlying  
    2626system which is easy to deploy around organisation's pre-existing systems.  
    27 NDG Security is designed around a Role Based Access Control mechanism. Cross  
    28 organisational access to resources is enabled through bilateral trust  
    29 agreements between participating organisations expressed through a system for  
    30 single sign and role mapping. 
    32 NDG Security employs a web services based architecture enabling different  
    33 combinations of components to be deployed according to a participating site's  
    34 needs and requirements.  Resources are secured using a system of Policy 
    35 Enforcement Point (Gatekeeper) and Policy Decision Point components.  An  
    36 Attribute Authority provides a service to query a given users attributes used 
    37 for gaining access to resources.  Session Manager and MyProxy services can be  
    38 used for management of credentials.  NDG Security supports OpenID for Single 
    39 Sign On and can integrate into both web based and non-web based application  
    40 client interfaces. 
     28Over the past two years the system has been developed in collaboration with the  
     29US DoE funded Earth System Grid project for the ESG Federation an infrastructure 
     30under development in support of CMIP5 (Coupled Model Intercomparison Project  
     31Phase 5), a framework for a co-ordinated set of climate model experiments  
     32which will input into the forthcoming 5th IPCC Assessment Report. 
     34NDG and ESG use a common access control architecture.  OpenID and MyProxy are  
     35used to support single sign on for browser based and HTTP rich client based  
     36applications respectively.  SAML is used for attribute query and authorisation 
     37decision interfaces.  XACML is used as the policy engine.  NDG Security has been 
     38re-engineered to use a filter based architecture based on WSGI enabling other  
     39Python WSGI based applications to be protected in a flexible manner without the  
     40need to modify application code. 
    4343    name =                      'ndg_security', 
    44     version =                   '1.5.1', 
     44    version =                   '2.0.0', 
    4545    description =               'NERC DataGrid Security Utilities', 
    4646    long_description =          _longDescription, 
Note: See TracChangeset for help on using the changeset viewer.