ACM Digital Library home
ACM home
Advanced Search
10.1145/2016741.2016776acmotherconferencesArticle/Chapter ViewAbstractPublication PagestgConference Proceedingsconference-collections
research-article

An OAuth service for issuing certificates to science gateways for TeraGrid users

Authors Info & Claims
TG '11: Proceedings of the 2011 TeraGrid Conference: Extreme Digital DiscoveryJuly 2011 Article No.: 32Pages 1–6https://doi.org/10.1145/2016741.2016776
Online:18 July 2011Publication History
  • 12citation
  • 225
  • Downloads
Metrics
Total Citations12
Total Downloads225
Last 12 Months5
Last 6 weeks2
TG '11: Proceedings of the 2011 TeraGrid Conference: Extreme Digital Discovery
An OAuth service for issuing certificates to science gateways for TeraGrid users
Pages 1–6
PreviousChapterNextChapter

ABSTRACT

In this paper, we present a TeraGrid OAuth service, integrated with the TeraGrid User Portal and TeraGrid MyProxy service, that provides certificates to science gateways. The OAuth service eliminates the need for TeraGrid users to disclose their TeraGrid passwords to science gateways when accessing their individual TeraGrid accounts via gateway interfaces. Instead, TeraGrid users authenticate at the TeraGrid User Portal to approve issuance of a certificate by MyProxy to the science gateway they are using. We present the design and implementation of the TeraGrid OAuth service, describe the underlying network protocol, and discuss design decisions and security considerations we made while developing the service in consultation with TeraGrid working groups and staff.

References

  1. E. Hammer-Lahav (ed.). The OAuth 1.0 Protocol. IETF RFC 5849 (Informational), April 2010. http://tools.ietf.org/html/rfc5849Google ScholarGoogle Scholar
  2. E. Rescorla (ed.). HTTP Over TLS. IETF RFC 2818 (Informational), May 2000. http://tools.ietf.org/html/rfc2818 Google ScholarGoogle ScholarDigital LibraryDigital Library
  3. Jim Basney, Marty Humphrey, and Von Welch. The MyProxy Online Credential Repository. Software: Practice and Experience, Volume 35, Issue 9, July 2005, pages 801-816. http://dx.doi.org/10.1002/spe.688 Google ScholarGoogle ScholarDigital LibraryDigital Library
  4. Jim Basney, Terry Fleury, and Von Welch. Federated Login to TeraGrid. 9th Symposium on Identity and Trust on the Internet (IDtrust), Gaithersburg, MD, April 2010. http://dx.doi.org/10.1145/1750389.1750391 Google ScholarGoogle ScholarDigital LibraryDigital Library
  5. Jim Basney, Von Welch, and Nancy Wilkins-Diehr. TeraGrid Science Gateway AAAA Model: Implementation and Lessons Learned. TeraGrid Conference, August 2010. http://dx.doi.org/10.1145/1838574.1838576 Google ScholarGoogle ScholarDigital LibraryDigital Library
  6. Joseph A. Insley, Ti Leggett, and Michael E. Papka. Using Dynamic Accounts to Enable Access to Advanced Resources through Science Gateways. Grid Computing Environments Workshop, 2009. http://dx.doi.org/10.1145/1658260.1658279 Google ScholarGoogle ScholarDigital LibraryDigital Library
  7. Marlon Pierce, Suresh Marru, Wenjun Wu, Gopi Kandaswami, Gregor von Laszewski, Rion Dooley, Maytal Dahan, Nancy Wilkins-Diehr, and Mary Thomas. Open Grid Computing Environments. TeraGrid Conference, June 2009.Google ScholarGoogle Scholar
  8. Marlon Pierce, Xiaoming Gao, Sangmi Pallickara, Zhenhua Guo, Geoffrey Fox. The QuakeSim Portal and Services: New Approaches to Science Gateway Development Techniques. Concurrency and Computation: Practice and Experience, 22: 1732--1749. http://dx.doi.org/10.1002/cpe.1528 Google ScholarGoogle ScholarDigital LibraryDigital Library
  9. Nancy Wilkins-Diehr, Dennis Gannon, Gerhard Klimeck, Scott Oster, and Sudhakar Pamidighantam. TeraGrid Science Gateways and Their Impact on Science. IEEE Computer 41(11): 32--41 (2008). http://dx.doi.org/10.1109/MC.2008.470 Google ScholarGoogle ScholarDigital LibraryDigital Library
  10. Nancy Wilkins-Diehr (ed.). Science Gateways: Common Community Interfaces to Grid Resources. Concurrency and Computation: Practice and Experience, 19(6): 743--749 (2007). http://dx.doi.org/10.1002/cpe.1098 Google ScholarGoogle ScholarDigital LibraryDigital Library
  11. Nancy Wilkins-Diehr and Thomas Soddemann. Science Gateway, Portal and Other Community Interfaces to High End Resources. ACM/IEEE Conference on Supercomputing (SC '06), 2006. http://dx.doi.org/10.1145/1188455.1188472 Google ScholarGoogle ScholarDigital LibraryDigital Library
  12. T. Dierks and E. Rescorla (eds.). The Transport Layer Security (TLS) Protocol. IETF RFC 5246 (Standards Track), August 2008. http://tools.ietf.org/html/rfc5246Google ScholarGoogle Scholar
  13. Von Welch, Jim Barlow, James Basney, Doru Marcusiu and Nancy Wilkins-Diehr. A AAAA Model to Support Science Gateways with Community Accounts. Concurrency and Computation: Practice and Experience, 2006. http://dx.doi.org/10.1002/cpe.1081 Google ScholarGoogle ScholarDigital LibraryDigital Library
  14. Wenjun Wu, M. E. Papka, R. Stevens. Toward an OpenSocial Life Science Gateway. Grid Computing Environments Workshop, November 2008. http://dx.doi.org/10.1109/GCE.2008.4738450Google ScholarGoogle ScholarCross RefCross Ref
  15. Wenjun Wu, Thomas Uram, Michael Wilde, Mark Hereld, and Michael E. Papka. Accelerating Science Gateway Development with Web 2.0 and Swift. TeraGrid Conference, August 2010. http://dx.doi.org/10.1145/1838574.1838597 Google ScholarGoogle ScholarDigital LibraryDigital Library
  16. Zhenhua Guo, Raminderjeet Singh, and Marlon Pierce. Building the PolarGrid Portal Using Web 2.0 and OpenSocial. Grid Computing Environments Workshop, 2009. http://dx.doi.org/10.1145/1658260.1658267 Google ScholarGoogle ScholarDigital LibraryDigital Library

Index Terms

  1. An OAuth service for issuing certificates to science gateways for TeraGrid users

    Comments

    Login options

    Check if you have access through your login credentials or your institution to get full access on this article.

    Sign in

    Full Access

    Get this Publication

    • Published in

      ACM Other conferences cover image
      TG '11: Proceedings of the 2011 TeraGrid Conference: Extreme Digital Discovery
      July 2011
      256 pages
      ISBN:9781450308885
      DOI:10.1145/2016741

      Copyright © 2011 ACM

      Publisher

      Association for Computing Machinery

      New York, NY, United States

      Publication History

      • Online: 18 July 2011

      Permissions

      Request permissions about this article.

      Request Permissions

      Author Tags

      Qualifiers

      • research-article

    PDF Format

    View or Download as a PDF file.

    PDF

    eReader

    View online with eReader.

    eReader
    View Table of Contents
    About Cookies On This Site

    We use cookies to ensure that we give you the best experience on our website.

    Learn more

    Got it!