Von Welch vwelch@ncsa.uiuc.edu Emerging NCSA Security R&D NSF CyberSecurity Summit September 28th, 2004 Von Welch vwelch@ncsa.uiuc.edu.

Slides:



Advertisements
Similar presentations
National Center for Supercomputing Applications MyProxy and NVO or Web SSO for Grid Portals GlobusWorld 2006 Washington, DC, USA September 12, 2006 Mike.
Advertisements

MyProxy Jim Basney Senior Research Scientist NCSA
MyProxy: A Multi-Purpose Grid Authentication Service
GridShib: Campus/Grid RBAC Integration GGF15 Workshop: Leveraging Site Infrastructure for Multi-Site Grids October 3th, 2005 Von Welch
Grid Security. Typical Grid Scenario Users Resources.
National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.
National Center for Supercomputing Applications MyProxy and GSISSH Update Von Welch National Center for Supercomputing Applications University of Illinois.
Attributes, Anonymity, and Access: Shibboleth and Globus Integration to Facilitate Grid Collaboration 4th Annual PKI R&D Workshop Tom Barton, Kate Keahey,
Single Sign-On for Java Web Start Applications Using MyProxy Terry Fleury, Jim Basney, and Von Welch November 3, 2006.
NSF Middleware Initiative: GridShib Tom Barton University of Chicago.
© Copyright MX Logic, Inc. All rights reserved. 1 Strictly Confidential MX LOGIC CORPORATE OVERVIEW MARCH 2005.
MyProxy NMI Integration Jim Basney, NCSA Marty Humphrey, University of Virginia
May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.
GridShib: Grid-Shibboleth Integration (Identity Federation and Grids) April 11, 2005 Von Welch
National Computational Science National Center for Supercomputing Applications National Computational Science MyProxy: An Online Credential Repository.
MITHRIL: Adaptable Security for Survivability in Collaborative Computing Sites NCSA: Von Welch, Jim Basney, Himanshu Khurana NRL CCS: Ken Hornstein PNNL:
Distributed Web Security for Science Gateways Jim Basney In collaboration with: Rion Dooley Jeff Gaynor
Ganesh Kirti Roger Sullivan Oracle Corporation “This presentation is for informational purposes only and may not be incorporated into a contract or agreement.”
SC06 – Powerful Beyond Imagination Tampa, FL Nov 14, 2006 Scaling TeraGrid Access: A Roadmap (Testbed) for Federated Identity Management for a Large Cyberinfrastructure.
MITHRIL: Adaptable Security for Survivability in Collaborative Computing Sites Jim Basney, Patrick Flanigan, Himanshu Khurana, Joe Muggli, Meenal Pant,
NCSA CyberSecurity Research and Development
GridShib Grid-Shibboleth Integration Von Welch, Tom Barton, Kate Keahey, Frank Siebenlist GlobusWORLD 2005.
U.S. Department of Agriculture eGovernment Program August 14, 2003 eAuthentication Agency Application Pre-Design Meeting eGovernment Program.
Grid Security Issues Shelestov Andrii Space Research Institute NASU-NSAU, Ukraine.
National Computational Science National Center for Supercomputing Applications National Computational Science NCSA-IPG Collaboration Projects Overview.
GridShib: Grid/Shibboleth Interoperability September 14, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey, Raj Kettimuthu, Tom Scavo, Frank Siebenlist,
NSF Middleware Initiative Renee Woodten Frost Assistant Director, Middleware Initiatives Internet2 NSF Middleware Initiative.
GridShib and MyProxy Grid Credential Management and Identity Federation Von Welch NCSA
ShibGrid: Shibboleth access to the UK National Grid Service University of Oxford and STFC.
Federated Environments and Incident Response: The Worst of Both Worlds? A TeraGrid Perspective Jim Basney Senior Research Scientist National Center for.
Shibboleth Akylbek Zhumabayev September Agenda Introduction Related Standards: SAML, WS-Trust, WS-Federation Overview: Shibboleth, GSI, GridShib.
Tutorial: Building Science Gateways TeraGrid 08 Tom Scavo, Jim Basney, Terry Fleury, Von Welch National Center for Supercomputing.
Kerberos and Identity Federations Daniel Kouřil, Luděk Matyska, Michal Procházka, Tomáš Kubina AFS & Kerberos Best Practices Worshop 2008.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Security Token Service Valéry Tschopp - SWITCH.
Identity Federation and Attribute-based Authorization through the Globus Toolkit, Shibboleth, GridShib, and MyProxy Tom Barton 1, Jim Basney 2, Tim Freeman.
NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.
GridShib: Campus/Grid RBAC Integration Penn State Grid Computing Workshop August 5th, 2005 Von Welch
GRID Overview Internet2 Member Meeting Spring 2003 Sandra Redman Information Technology and Systems Center and Information Technology Research Center National.
Gridshib-tech-overview-dec051 GridShib A Technical Overview Tom Scavo NCSA.
Grid, Web services and Taverna Machiel Jansen Richard Holland.
Tools for Grid/Campus Integration: GridShib and MyProxy Internet2 Advanced Camp July 1, 2005 Von Welch
Need for Security Control access to servicesControl access to services Ensure confidentialityEnsure confidentiality Guard against attacksGuard against.
February, TRANSCEND SHIRO-CAS INTEGRATION ANALYSIS.
GridShib Grid-Shibboleth Integration An Overview Von Welch
National Computational Science National Center for Supercomputing Applications National Computational Science Integration of the MyProxy Online Credential.
Part V Electronic Commerce Security Online Security Issues Overview Managing Risk Computer Security Classifications. Security.
GSI: Security On Teragrid A Introduction To Security In Cyberinfrastructure By Dru Sepulveda.
Security CET September 27, 2006 GGF Security for Open Science Project Lead PI - Deb Agarwal, Lawrence Berkeley National Laboratory - Lawrence Berkeley.
The GRIDS Center, part of the NSF Middleware Initiative Grid Security Overview presented by Von Welch National Center for Supercomputing.
Gridshib-intro-dec051 GridShib An Introduction Tom Scavo NCSA.
SELS: A Secure List Service Himanshu Khurana, Adam Slagell, Rafael Bonilla NCSA, University of Illinois Appeared in the ACM Symposium of Applied.
University of Illinois at Urbana-Champaign National Center for Supercomputing Applications GridShib Grid/Shibboleth Interoperability
2NCSA/University of Illinois
LIGO Identity and Access Management
Grid Security.
Security for Open Science
MyProxy and NVO or Web SSO for Grid Portals
NCSA CyberSecurity Research and Development
Shibboleth for Non-Web-Based Applications: GridShib
NSF Middleware Initiative: GridShib
GridShib: Grid/Shibboleth Integration Update GGF 18 Shibboleth Developers BoF September 10-11, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey,
MyProxy Integration with PubCookie
TeraGrid 08 The Third Annual TeraGrid Conference
TeraGrid 08 Tom Scavo, Jim Basney , Terry Fleury, Von Welch
Federated Environments and Incident Response: The Worst of Both Worlds
A Grid Authorization Model for Science Gateways
TeraGrid Identity Federation Testbed Update I2MM April 25, 2007
NSF Middleware Initiative: GridShib
Presentation transcript:

Von Welch vwelch@ncsa.uiuc.edu Emerging NCSA Security R&D NSF CyberSecurity Summit September 28th, 2004 Von Welch vwelch@ncsa.uiuc.edu

About this presentation Overview of a number of technologies being developed by a number of groups at NCSA Seeking to find consumers, foster communication and collaboration Purpose is to give quick overview of each project to spur interest Please contact myself or project lead/PI listed for a given project for more information Sep 27, 2004 NCSA Emerging Security R&D

NCSA Emerging Security R&D National Center for Advanced Secure Systems Research ONR-funded multi-organization security R&D center led by NCSA Partners include University of Illinois at Urbana-Champaign, Battelle Pacific Northwest Division, InfoAssure Inc., the University of Tennessee, and the Naval Postgraduate School http://www.ncassr.org Sep 27, 2004 NCSA Emerging Security R&D

NCSA Emerging Security R&D Security R&D Projects ONR-funded Technology Research Education Commercialization Center http://www.trecc.org NSF Middleware Initiative http://www.nsf-middleware.org/ Sep 27, 2004 NCSA Emerging Security R&D

MAIDS: Mining Alarming Incidents in Data Streams Datamining applied to streams MAIDS is aimed to: Discover changes, trends and evolution characteristics in data streams Construct clusters and classification models from data streams Explore frequent patterns and similarities among data streams MAIDS is being applied to NCSA’s network flow data in order to be trained to automatically detect incidents Contact: Michael Welge welge@ncsa.uiuc.edu Sep 27, 2004 NCSA Emerging Security R&D

NCSA Emerging Security R&D SIFT Security Incident Fusion Tool (SIFT) Framework and tools for combination of flow and log data from multiple sources and coherent visualization Software available from: http://www.ncassr.org/projects/sift/ Contact: Bill Yurcik (yurcik@ncsa.uiuc.edu) Sep 27, 2004 NCSA Emerging Security R&D

NCSA Emerging Security R&D SELS: A Secure Email List Service Contact: Himanshu Khurana hkhurana@ncsa.uiuc.edu Mail List Security Confidentiality: Solution using proxy encryption techniques whereby the plaintext is not exposed at list server; instead, list server simply transforms encrypted messages Integrity and authentication: Solution using digital signatures where certificate validation is provided by list server Anti-spamming: Solution using digital signatures and HMACs where list server discards any message not sent by a valid subscriber Prototype (Java) Email client plugins for JavaMail and Eudora currently being developed Evaluating available list server software for plugin development Sep 27, 2004 NCSA Emerging Security R&D Himanshu Khurana

MyProxy: Grid Credential Management Stores Grid X.509 credentials Retrieval through SASL/PAM allows for authentication via OTP, password, Kerberos Allows bridging between authentication domains Contact: Jim Basney (jbasney@ncsa.uiuc.edu) MyProxy OTP, Krb5, Password X.509 Grid Credential Sep 27, 2004 NCSA Emerging Security R&D

Grid-Shib: Grid-Shibboleth Integration Integration of Internet2’s Shibboleth with Globus Toolkit Funded by NSF NMI program Allow for use of Shibboleth-served attributes in Grid authorization Allow leveraging of Shibboleth software and deployments to support Grids Utilizing Web Services security standards (SAML) Contact: Von Welch (vwelch@ncsa.uiuc.edu) Sep 27, 2004 NCSA Emerging Security R&D

NCSA Emerging Security R&D Other activities Software-defined radio policy enforcement Von Welch (vwelch@ncsa.uiuc.edu) Security Middleware for sensors Himanshu Khurana (hkurana@ncsa.uiuc.edu) Secure Grid Laboratory Testbed for deployment and testing Randy Butler (rbutler@ncsa.uiuc.edu) Sep 27, 2004 NCSA Emerging Security R&D

NCSA Emerging Security R&D For more information http://www.ncassr.org Or contact me for routing vwelch@ncsa.uiuc.edu Sep 27, 2004 NCSA Emerging Security R&D

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.