Changes between Version 6 and Version 7 of T12_Security


Ignore:
Timestamp:
03/08/06 12:12:14 (13 years ago)
Author:
lawrence
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • T12_Security

    v6 v7  
    1 = NDG Security = 
     1= Security = 
    22 
    3 Is about access control: authentication and authorisation. This package  provides software infrastructure to support controlled access to NDG-A and B metadata and data and to provide access logging. 
     3This page reflects issues and discussions associated with both the [http://ndg.nerc.ac.uk NDG] and the [http://dews.org.uk DEWS] projects. 
    44 
    5 NDG security allows data providers to restrict access to detailed metadata and data according to their own criteria. (i.e. so that data providers can respect IPR or licensing constraints and if appropriate develop their own charging regimes, although 
    6 anything and everything to do with charging per se is out of scope for NDG). 
     5This activity provides a software infrastructure to provide controlled access to resources, and logging of such access (in the case of NDG, DEWS uses another infrastructure for logging). 
    76 
    8 To support the information required to show usage of services, and potentially form the basis of charging structures should they be appropriate. 
     7Although it applies in both DEWS and NDG, hereafter we will call the security infrastructure discussed here NDG-security, to distinguish it from other security paradigms and infrastructures. 
     8 
     9Current (as of August, 2006 issues) are being discussed at [wiki:Security0607]! 
     10 
     11= Older Material, may be moved = 
    912 
    1013 
    11 === Product components === 
    12  
    13  1. Underlying library (!SecLibrary) 
    14  1. Software package which deploys an Attribute Authority as a web service. (SecAA) 
    15  1. Software package that provides a simple certificate authority and myproxy server which can be used to produce lightweight certificates. (SecCA) 
    16  1. Web service package to allow controlled access to a resource given the role protecting the resource and user credentials. (!SecControl) 
    17  1. NDG session manager functionality (!SecSession) 
    18  1. NDG wallet functionality. (!SecWallet) 
    19  1. Logging Web Service (database or file based, with web service interface). (!SecLog) 
    20  
    21  
    22 == Key Integration Milestones == 
     14==== Original NDG2 Key Integration Milestones ==== 
    2315 
    2416 1. Initiation Stage (Sept-Dec 2005): Completed. NDG 1 Security is a working prototype installed at BADC and BODC.