KIT | KIT-Bibliothek | Impressum
DOI: 10.1007/978-3-642-38750-0_35

Federating HPC access via SAML: Towards a plug-and-play solution

Köhler, J.; Simon, M.; Nussbaumer, M.; Hartenstein, H.

Many potential users hesitate to use HPC resources due to sometimes complex procedures that are necessary to get access. Furthermore, HPC providers need up-to-date identity information to make correct access control decisions. Federated identity management addresses both issues by enforcing access control based on the users' familiar accounts at their home organizations. SAML-based federations consisting of home organizations and web-services are already established, but the integration of non web-based services such as HPC resources is not trivial due to the absence of a browser as a user client or missing trust between web-portals and HPC resources. In this paper, we propose a concept that enables non web-based services to join SAML-based federations. From the service's point-of-view, our approach is transparent and appears to be a local LDAP directory. From the federations point-of-view, our approach can be integrated like an ordinary SAML service provider. Due to this separation of concerns, integration effort is considerably reduced. Furthermore, we will show how our approach can be extended to enable federated access to semi-t ... mehr

Zugehörige Institution(en) am KIT Institut für Telematik (TM)
Steinbuch Centre for Computing (SCC)
Publikationstyp Proceedingsbeitrag
Jahr 2013
Sprache Englisch
Identifikator ISBN: 978-3-642-38749-4
ISSN: 0302-9743
KITopen ID: 1000034370
Erschienen in 28th International Supercomputing Conference on Supercomputing, ISC 2013; Leipzig; Germany; 16 June 2013 through 20 June 201
Verlag Springer, Berlin/ Heidelberg
Seiten 462-473
Serie Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) ; 7905
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft KITopen Landing Page