KIT | KIT-Bibliothek | Impressum

Unlocking data: Federated identity with LSDMA and dCache

Millar, A.P.; Behrmann, G.; Bernardt, C.; Fuhrmann, P.; Hardt, M.; Hayrapetyan, A.; Litvintsev, D.; Mkrtchyan, T.; Rossi, A.; Schwank, K.

Abstract (englisch):
X.509, the dominant identity system from grid computing, has proved unpopular for many user communities. More popular alternatives generally assume the user is interacting via their web-browser. Such alternatives allow a user to authenticate with many services with the same credentials (user-name and password). They also allow users from different organisations form collaborations quickly and simply.

Scientists generally require that their custom analysis software has direct access to the data. Such direct access is not currently supported by alternatives to X.509, as they require the use of a web-browser.

Various approaches to solve this issue are being investigated as part of the Large Scale Data Management and Analysis (LSDMA) project, a German funded national R&D project. These involve dynamic credential translation (creating an X.509 credential) to allow backwards compatibility in addition to direct SAML- and OpenID Connect-based authentication.

We present a summary of the current state of art and the current status of the federated identity work funded by the LSDMA project along with the future road map.


Zugehörige Institution(en) am KIT Steinbuch Centre for Computing (SCC)
Publikationstyp Zeitschriftenaufsatz
Jahr 2015
Sprache Englisch
Identifikator DOI: 10.1088/1742-6596/664/4/042037
ISSN: 1742-6588, 1742-6596
URN: urn:nbn:de:swb:90-557966
KITopen ID: 1000055796
HGF-Programm 46.12.02; LK 01
Erschienen in Journal of physics / Conference Series
Band 664
Heft 4
Seiten 042037/1-4
Bemerkung zur Veröffentlichung 21st International Conference on Computing in High Energy and Nuclear Physics (CHEP 2015), Okinawa, J, April 13-17,2015
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft KITopen Landing Page