Presentation is loading. Please wait.

Presentation is loading. Please wait.

Author - Title- Date - n° 1 Partner Logo Authentication John Gordon GridPP 2 nd May 2002.

Published byJonathan Ramshaw Modified over 9 years ago

Similar presentations

Presentation on theme: "Author - Title- Date - n° 1 Partner Logo Authentication John Gordon GridPP 2 nd May 2002."— Presentation transcript:

1 Author - Title- Date - n° 1 Partner Logo Authentication John Gordon GridPP 2 nd May 2002

2 John Gordon - DataGrid Workshop, Frascati, Oct 2001 2 Certificate Authorities u RAL has run a CA for UKHEP since October 2000 u CLRC GSC runs a prototype CA for the UK eScience Core Programme n You can use it now  CLRC is developing ‘ The UK e-Science CA’ u The UK e-Science CA will issue personal, server, and service certificates

3 John Gordon - DataGrid Workshop, Frascati, Oct 2001 3 Personal : /C=UK/O=eScience/OU= /L= /CN= u The CN should be a personal name, not a role, i.e. "Joe Bloggs“ rather than "postmaster" or "RA". u The OU is the UK e-Science project of the Registration Authority, not (necessarily) the project that the user belongs to. u Similarly, L is the locality of the RA. u For personal certificates, we keep the email address provided by the user, and this is the only personal information we keep, and it is not made public.

4 John Gordon - DataGrid Workshop, Frascati, Oct 2001 4 Server certificates : /C=UK/O=eScience/OU= /L= /CN= /Email= u Here fqdn is a Fully Qualified Domain Name, Email is an email address of a contact person, a person who is responsible for that host u (this email address is publically available, but that's the same with DNS for example, the host's DNS entry will also have an email address).

5 John Gordon - DataGrid Workshop, Frascati, Oct 2001 5 Service certificates : u Are the same as server certificates. Except the CN is u.../CN= / /Email= u and service is the IANA assigned name for the service (not sure yet if we allow for non-standard port-numbers, probably we should but it's not in there yet).

6 John Gordon - DataGrid Workshop, Frascati, Oct 2001 6 u For further details, consult u http://www.grid-support.ac.uk/ca/interim_procedure.html u Service numbers: u http://www.iana.org/assignments/port-numbers u (yes, gsiftp is in there)

7 John Gordon - DataGrid Workshop, Frascati, Oct 2001 7 Authorisation u Important to separate this from Authentication u Certificates above say nothing about membership of projects or VOs u Working with Globus on Community Authorisation Service (CAS) u Current authorisation by gridmapfile (Andrew McNab)

Download ppt "Author - Title- Date - n° 1 Partner Logo Authentication John Gordon GridPP 2 nd May 2002."

Similar presentations

Robots Jens Jensen, STFC RAL GridNet2/ UK e-Science CA /NGS/GridPP/

Robots Jens Jensen, STFC RAL GridNet2/ UK e-Science CA /NGS/GridPP/
24-May-01D.P.Kelsey, GridPP WG E: Security1 GridPP Work Group E Security Development David Kelsey CLRC/RAL, UK

24-May-01D.P.Kelsey, GridPP WG E: Security1 GridPP Work Group E Security Development David Kelsey CLRC/RAL, UK
DataGrid is a project funded by the European Union CHEP 2003 – 24-28 March 2003 – Grid-based access control – n° 1 Grid-based access control for Unix environments,

DataGrid is a project funded by the European Union CHEP 2003 – March 2003 – Grid-based access control – n° 1 Grid-based access control for Unix environments,
5-Dec-02D.P.Kelsey, GridPP Security1 GridPP Security UK Security Workshop 5-6 Dec 2002, NeSC David Kelsey CLRC/RAL, UK

5-Dec-02D.P.Kelsey, GridPP Security1 GridPP Security UK Security Workshop 5-6 Dec 2002, NeSC David Kelsey CLRC/RAL, UK
Partner Logo UK GridPP Testbed Rollout John Gordon GridPP 3rd Collaboration Meeting Cambridge 15th February 2002.

Partner Logo UK GridPP Testbed Rollout John Gordon GridPP 3rd Collaboration Meeting Cambridge 15th February 2002.
29 June 2006 GridSite - www.gridsite.org - Andrew McNabwww.gridsite.org VOMS and VOs Andrew McNab University of Manchester.

29 June 2006 GridSite Andrew McNabwww.gridsite.org VOMS and VOs Andrew McNab University of Manchester.
The National Grid Service Mike Mineter.

The National Grid Service Mike Mineter.
Digital Certificate Operation in a Complex Environment Matthew J. Dovey Oxford University Computing Services.

Digital Certificate Operation in a Complex Environment Matthew J. Dovey Oxford University Computing Services.
Support: Certificates and Helpdesks Andrew Richards (GSC/NGS) – CCLRC, RAL.

Support: Certificates and Helpdesks Andrew Richards (GSC/NGS) – CCLRC, RAL.
18 April 2002 e-Science Architectural Roadmap Open Meeting 1 Support for the UK e-Science Roadmap David Boyd UK Grid Support Centre CLRC e-Science Centre.

18 April 2002 e-Science Architectural Roadmap Open Meeting 1 Support for the UK e-Science Roadmap David Boyd UK Grid Support Centre CLRC e-Science Centre.
4 December 2002 Grid Resource Access Workshop, NeSC 1 Managing Access to Resources on the Grid David Boyd CLRC e-Science Centre

4 December 2002 Grid Resource Access Workshop, NeSC 1 Managing Access to Resources on the Grid David Boyd CLRC e-Science Centre
02/07/03 Grid Support Centre 1 UK Grid Support Centre Alistair Mills CLRC e-Science Centre

02/07/03 Grid Support Centre 1 UK Grid Support Centre Alistair Mills CLRC e-Science Centre
Andrew McNab - Manchester HEP - 22 April 2002 EU DataGrid Testbed EU DataGrid Software releases Testbed 1 Job Lifecycle Authorisation at your site More.

Andrew McNab - Manchester HEP - 22 April 2002 EU DataGrid Testbed EU DataGrid Software releases Testbed 1 Job Lifecycle Authorisation at your site More.
22-Apr-02D.P.Kelsey, Security, UKHEP Sysman1 Grid Security 22 Apr 2002 UK HEP Sysman Meeting David Kelsey CLRC/RAL, UK

22-Apr-02D.P.Kelsey, Security, UKHEP Sysman1 Grid Security 22 Apr 2002 UK HEP Sysman Meeting David Kelsey CLRC/RAL, UK
Andrew McNab - Manchester HEP - 2 May 2002 Testbed and Authorisation EU DataGrid Testbed 1 Job Lifecycle Software releases Authorisation at your site Grid/Web.

Andrew McNab - Manchester HEP - 2 May 2002 Testbed and Authorisation EU DataGrid Testbed 1 Job Lifecycle Software releases Authorisation at your site Grid/Web.
Andrew McNab - Manchester HEP - 22 April 2002 EU DataGrid Testbed EU DataGrid Software releases Testbed 1 Job Lifecycle Authorisation at your site More.

Andrew McNab - Manchester HEP - 22 April 2002 EU DataGrid Testbed EU DataGrid Software releases Testbed 1 Job Lifecycle Authorisation at your site More.
11-Dec-01D.P.Kelsey, Authentication1 Authentication 11 Dec 2001 David Kelsey CLRC/RAL, UK

11-Dec-01D.P.Kelsey, Authentication1 Authentication 11 Dec 2001 David Kelsey CLRC/RAL, UK
Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester

Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester
INFORMATION SYSTEMS SERVICES UNIVERSITY OF LEEDS Presentation to the UK e-Science Grid Workshop ‘Managing Access to Resources on the Grid’ e-Science Institute,

INFORMATION SYSTEMS SERVICES UNIVERSITY OF LEEDS Presentation to the UK e-Science Grid Workshop ‘Managing Access to Resources on the Grid’ e-Science Institute,
Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April 2006 www.opensciencegrid.org.

Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April

Similar presentations

Ads by Google