Presentation at TF-aace workshop in Spocp update Presentation at TF-aace workshop in Malaga 2003-11-20 by Roland Hedberg roland@it.su.se
For those who hasn't heard about Spocp before Spocp is a generalised rule based authorisation service Spocp is based on a simple but very powerful policy language ( S-expressions ) Through backends Spocp can use external resources during its rule evaluation. Spocp is built to support network based applications Can be used in pull, agent or push sequence AA
To be a Standard or not What defines an open standard ? Presently not a 'standard' by any definition Will probably be placed on the IETF standards track
So what has happened on the software horizon since last ? Slight changes to the protocol Server changes Backends as dynamic modules Backends can return dynamic 'blobs' 'blobs' can be Mime typed C, Java and Perl client libraries A couple of new backends Cert, sql, regexp, system, spocp Multiple 'server' implementations REBOL (only sketched ) Java
Deployment Karolinska Institutet,Stockholm Stockholms Universitet Identity and role management systems uPortal Stockholms Universitet Apache and uPortal ssh/rsh Umeå Universitet Apache Delegation chains RIPE
Tickets S-expressions passed around in kerberos tickets Spocp tickets Give your friend one Buy one at the shop around the corner
The project Website: http://www.spocp.org Mailing list: discuss@spocp.org CVS: soon Building a lasting organization