Author - Title- Date - n° 1 Partner Logo Authentication John Gordon GridPP 2 nd May 2002.

Slides:

Advertisements

Similar presentations

Robots Jens Jensen, STFC RAL GridNet2/ UK e-Science CA /NGS/GridPP/

Advertisements

24-May-01D.P.Kelsey, GridPP WG E: Security1 GridPP Work Group E Security Development David Kelsey CLRC/RAL, UK

DataGrid is a project funded by the European Union CHEP 2003 – March 2003 – Grid-based access control – n° 1 Grid-based access control for Unix environments,

5-Dec-02D.P.Kelsey, GridPP Security1 GridPP Security UK Security Workshop 5-6 Dec 2002, NeSC David Kelsey CLRC/RAL, UK

Partner Logo UK GridPP Testbed Rollout John Gordon GridPP 3rd Collaboration Meeting Cambridge 15th February 2002.

29 June 2006 GridSite Andrew McNabwww.gridsite.org VOMS and VOs Andrew McNab University of Manchester.

The National Grid Service Mike Mineter.

Digital Certificate Operation in a Complex Environment Matthew J. Dovey Oxford University Computing Services.

Support: Certificates and Helpdesks Andrew Richards (GSC/NGS) – CCLRC, RAL.

18 April 2002 e-Science Architectural Roadmap Open Meeting 1 Support for the UK e-Science Roadmap David Boyd UK Grid Support Centre CLRC e-Science Centre.

4 December 2002 Grid Resource Access Workshop, NeSC 1 Managing Access to Resources on the Grid David Boyd CLRC e-Science Centre

02/07/03 Grid Support Centre 1 UK Grid Support Centre Alistair Mills CLRC e-Science Centre

Andrew McNab - Manchester HEP - 22 April 2002 EU DataGrid Testbed EU DataGrid Software releases Testbed 1 Job Lifecycle Authorisation at your site More.

22-Apr-02D.P.Kelsey, Security, UKHEP Sysman1 Grid Security 22 Apr 2002 UK HEP Sysman Meeting David Kelsey CLRC/RAL, UK

Andrew McNab - Manchester HEP - 2 May 2002 Testbed and Authorisation EU DataGrid Testbed 1 Job Lifecycle Software releases Authorisation at your site Grid/Web.

Andrew McNab - Manchester HEP - 22 April 2002 EU DataGrid Testbed EU DataGrid Software releases Testbed 1 Job Lifecycle Authorisation at your site More.

11-Dec-01D.P.Kelsey, Authentication1 Authentication 11 Dec 2001 David Kelsey CLRC/RAL, UK

Andrew McNab - EDG Access Control - 14 Jan 2003 EU DataGrid security with GSI and Globus Andrew McNab University of Manchester

INFORMATION SYSTEMS SERVICES UNIVERSITY OF LEEDS Presentation to the UK e-Science Grid Workshop ‘Managing Access to Resources on the Grid’ e-Science Institute,

Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April

20 March 2007 VOMS etc Andrew McNabwww.gridsite.org VOMS etc Andrew McNab University of Manchester.

Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April 2006.

Andrew McNab - Manchester HEP - 6 November Old version of website was maintained from Unix command line => needed (gsi)ssh access.

30-Jan-03D.P.Kelsey, GridPP Security1 Security GridPP6 30 Jan 2003 Coseners House David Kelsey CLRC/RAL, UK

AustrianGrid, LCG & more Reinhard Bischof HPC-Seminar April 8 th 2005.

Security Mechanisms The European DataGrid Project Team

Joining the Grid Andrew McNab. 28 March 2006Andrew McNab – Joining the Grid Outline ● LCG – the grid you're joining ● Related projects ● Getting a certificate.

UK GRID Firewall Workshop Matthew J. Dovey Technical Manager Oxford e-Science Centre.

Andrew McNab - Manchester HEP - 26 June 2001 WG-H / Support status Packaging / RPM’s UK + EU DG CA’s central grid-users file grid “ping”

GRID Centralized management of the Globus grid-mapfile Carlo Rocca INFN, Catania.

Tweaking the Certificate Lifecycle for the UK eScience CA John Kewley NGS Support Centre Manager & Service Manager for the UK e-Science CA

CILogon OSG CA Mine Altunay Jim Basney TAGPMA Meeting Pittsburgh May 27, 2015.

VOMS Alessandra Forti HEP Sysman meeting April 2005.

9-May-02D.P.Kelsey, Security Plans, GridPP41 Security: Plans 9 May 2002 GridPP4 meeting, Manchester David Kelsey CLRC/RAL, UK

Authorization Package for TB1 Authorization Working Group Third DataGrid Project Conference 3-5 October 2001, Frascati.

Supporting further and higher education The Akenti Authorisation System Alan Robiette, JISC Development Group.

TITLE. WELCOME Company Logo Your Host Mike Harbour.

3-Nov-00D.P.Kelsey, HEPiX, JLAB1 Certificates for DataGRID David Kelsey CLRC/RAL, UK

HEPSYSMAN UCL, 26 Nov 2002Jens G Jensen, CLRC/RAL UK e-Science Certification Authority Status and Deployment.

GridPP Presentation to AstroGrid 13 December 2001 Steve Lloyd Queen Mary University of London.

3-Jul-02D.P.Kelsey, Security1 Security meetings Report to EDG PTB 3 Jul 2002 David Kelsey CLRC/RAL, UK

Security Mechanisms The European DataGrid Project Team

CertWizard: a New Certificate Tool for the UK NGI User Community John Kewley ( ), Jens Jensen, David Meredith and Akay Okcun 16/11/20151EGI.

Oxford University e-Science Centre 1 Managing Access 4 Dec Managing Access to Resources on the Grid 4 December 2002.

Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien.

9-Oct-03D.P.Kelsey, LCG-GDB-Security1 LCG/GDB Security (Report from the LCG Security Group) FNAL 9 October 2003 David Kelsey CCLRC/RAL, UK

Summary of AAAA Information David Kelsey Infrastructure Policy Group, Singapore, 15 Sep 2008.

Andrew McNabSecurity Middleware, GridPP8, 23 Sept 2003Slide 1 Security Middleware Andrew McNab High Energy Physics University of Manchester.

INFSO-RI Enabling Grids for E-sciencE EGEE Induction Grid training for users, Institute of Physics Belgrade, Serbia Sep. 19, 2008.

Andrew McNabGrid in 2002, Manchester HEP, 7 Jan 2003Slide 1 Grid Work in 2002 Andrew McNab High Energy Physics University of Manchester.

2-Sep-02D.P.Kelsey, WP6 CA, Budapest1 WP6 CA report Budapest 2 Sep 2002 David Kelsey CLRC/RAL, UK

GRID Centralized Management of the Globus grid-mapfile Carlo Rocca, INFN Catania.

Last update 21/01/ :05 LCG 1Maria Dimou- cern-it-gd Current LCG User Registration, VO management and Authorisation Procedures VOMS workshop

Security Policy Update WLCG GDB CERN, 14 May 2008 David Kelsey STFC/RAL

The NGS Support Centre Katie Weeks. NGS Support Centre SLD Many areas to NGS Support Centre –SLD defines supported areas including: Certification Authority.

The National Grid Service Mike Mineter.

8-Mar-01D.P.Kelsey, Certificates, WP6, Amsterdam1 WP6: Certificates for DataGrid Testbeds David Kelsey CLRC/RAL, UK

LHCb Grid MeetingLiverpool, UK GRID Activities Glenn Patrick Not particularly knowledgeable-just based on attending 3 meetings.  UK-HEP.

10-May-01D.P.Kelsey, WP6 Security1 Certificates/Authorisation for DataGrid Testbeds David Kelsey CLRC/RAL, UK

EGEE is a project funded by the European Union under contract IST New VO Integration Fabio Hernandez ROC Managers Workshop,

11-May-01D.P.Kelsey, Security Update1 GRID Security Update David Kelsey CLRC/RAL, UK

Summary of Poznan EUGridPMA32 September EUGridPMA Poznan 2014 meeting – 2 David Groep – Welcome back at PSNC.

Academia Sinica Grid Computing Certification Authority F2F interview (Malaysia )

Jens Jensen EU Grid PMA, Berlin Jan 2015

CONTACT: <name>, Mobile: <number>,

UK GridPP Tier-1/A Centre at CLRC

CRC exercises Not happy with the way the document for testbed architecture is progressing More a collection of contributions from the mware groups rather.

Tweaking the Certificate Lifecycle for the UK eScience CA

Presentation Title Here

Your logo here.

Presentation transcript:

Author - Title- Date - n° 1 Partner Logo Authentication John Gordon GridPP 2 nd May 2002

John Gordon - DataGrid Workshop, Frascati, Oct Certificate Authorities u RAL has run a CA for UKHEP since October 2000 u CLRC GSC runs a prototype CA for the UK eScience Core Programme n You can use it now  CLRC is developing ‘ The UK e-Science CA’ u The UK e-Science CA will issue personal, server, and service certificates

John Gordon - DataGrid Workshop, Frascati, Oct Personal : /C=UK/O=eScience/OU= /L= /CN= u The CN should be a personal name, not a role, i.e. "Joe Bloggs“ rather than "postmaster" or "RA". u The OU is the UK e-Science project of the Registration Authority, not (necessarily) the project that the user belongs to. u Similarly, L is the locality of the RA. u For personal certificates, we keep the address provided by the user, and this is the only personal information we keep, and it is not made public.

John Gordon - DataGrid Workshop, Frascati, Oct Server certificates : /C=UK/O=eScience/OU= /L= /CN= / = u Here fqdn is a Fully Qualified Domain Name, is an address of a contact person, a person who is responsible for that host u (this address is publically available, but that's the same with DNS for example, the host's DNS entry will also have an address).

John Gordon - DataGrid Workshop, Frascati, Oct Service certificates : u Are the same as server certificates. Except the CN is u.../CN= / / = u and service is the IANA assigned name for the service (not sure yet if we allow for non-standard port-numbers, probably we should but it's not in there yet).

John Gordon - DataGrid Workshop, Frascati, Oct u For further details, consult u u Service numbers: u u (yes, gsiftp is in there)

John Gordon - DataGrid Workshop, Frascati, Oct Authorisation u Important to separate this from Authentication u Certificates above say nothing about membership of projects or VOs u Working with Globus on Community Authorisation Service (CAS) u Current authorisation by gridmapfile (Andrew McNab)