John,
As is often the case in this business, the technology will turn out to be reasonably straight-forward, with many different ways of doing things. The problem will, I think, be mainly one of persuading entities, such as IdPs, to participate and services to trust whatever we decide to use. Policies, levels of assurance, procedures for user registration etc will all play a major part.
Cheers
Dave
------------------------------------------------
Dr David Kelsey
Particle Physics Department
Rutherford Appleton Laboratory
Chilton, DIDCOT, OX11 0QX, UK
e-mail: [log in to unmask]
Tel: [+44](0)1235 445746 (direct)
Fax: [+44](0)1235 446733
------------------------------------------------
> -----Original Message-----
> From: Testbed Support for GridPP member institutes [mailto:TB-
> [log in to unmask]] On Behalf Of John Kewley
> Sent: 15 November 2012 15:03
> To: [log in to unmask]
> Subject: Re: GDB 14th Nov 2012
>
> I didn't find any of the chaps presenting at the Prague workshop who had
> heard of SARoNGS even though it had been presented a few times already
> at EGI Conferences.
>
> Jens and I are looking at setting up a workshop on these things at the next
> conference in Manchester.
>
> JK
>
> > -----Original Message-----
> > From: Testbed Support for GridPP member institutes [mailto:TB-
> > [log in to unmask]] On Behalf Of John Gordon
> > Sent: Thursday, November 15, 2012 2:42 PM
> > To: [log in to unmask]
> > Subject: Re: GDB 14th Nov 2012
> >
> > Dave, SARoNGS is very similar to STS. I despaired that EMI went off
> > and wrote it without any attempt at collaboration. The usual story:-(
> >
> > > -----Original Message-----
> > > From: Testbed Support for GridPP member institutes [mailto:TB-
> > > [log in to unmask]] On Behalf Of David Kelsey
> > > Sent: 15 November 2012 14:31
> > > To: [log in to unmask]
> > > Subject: Re: GDB 14th Nov 2012
> > >
> > > Ewan, John,
> > >
> > > I am a member of the WLCG Federated IdM pilot project. People are
> > > fully aware that there is lots of technology for translating
> > > institute credentials into certificates, such as SARoNGS. The aim
> > > for the pilot is to have something which does fit in with IGTF
> > > profiles (either a current one or a new one).
> > >
> > > Another important feature is that it must have a CLI and not be web-
> > > portal based. This needs the IdPs to support SAML ECP profile (and
> > > today many do not).
> > >
> > > Does SARoNGS have a command-line interface?
> > >
> > > Cheers
> > > Dave
> > >
> > > ------------------------------------------------
> > > Dr David Kelsey
> > > Particle Physics Department
> > > Rutherford Appleton Laboratory
> > > Chilton, DIDCOT, OX11 0QX, UK
> > >
> > > e-mail: [log in to unmask]
> > > Tel: [+44](0)1235 445746 (direct)
> > > Fax: [+44](0)1235 446733
> > > ------------------------------------------------
> > >
> > >
> > > > -----Original Message-----
> > > > From: Testbed Support for GridPP member institutes [mailto:TB-
> > > > [log in to unmask]] On Behalf Of John Kewley
> > > > Sent: 15 November 2012 14:20
> > > > To: [log in to unmask]
> > > > Subject: Re: GDB 14th Nov 2012
> > > >
> > > > > ...
> > > > > Security Working Group update
> > > > > ============================
> > > > >
> > > > > There are two strands to this - 'tracability', on which there's
> > > been
> > > > > little progress, but Roman asked for more effort from interested
> > > > > people, and the 'identity federation pilot' which sounds a lot
> > > > > like CERN are planning to build something like SARoNGS. It might
> > > > > be as
> > > well
> > > > > if someone who actually knows about SARoNGS could get in touch
> > > > > to
> > > point
> > > > out that we already did.
> > > >
> > > > Who were the people talking about this Ewan?
> > > >
> > > > Quite a few people have built something similar to SARoNGS, but
> > > > there
> > > is no
> > > > worldwide acceptance of them as (like SARoNGS) they don't neatly
> > > > fit
> > > into
> > > > one of the current IGTF profiles. We are in contact with some of
> > > these
> > > > groups, but it would be good to know who were talking to GDB about
> > > it.
> > > >
> > > > Cheers
> > > >
> > > > JK
> > > > --
> > > > Scanned by iCritical.
> > > --
> > > Scanned by iCritical.
> > --
> > Scanned by iCritical.
> --
> Scanned by iCritical.
--
Scanned by iCritical.
|