Gridshell Security Master Project Akylbek Zhumabayev Rochester Institute of Technology.

Slides:

Advertisements

Similar presentations

Gridshell Web Services Akylbek Zhumabayev. Content Gridshell Architecture Gridshell Mediator Gridshell Client Gridshell Full Picture Security Patterns.

Advertisements

Unissons nos Talents T O G E T H E RT A L E N T E D 1 Web Services Security – Challenges & Trends Magan Pal Singh Technical Architect, Sopra Group

0 Web Service Security JongSu Bae. 1  Introduction 2. Web Service Security 3. Web Service Security Mechanism 4. Tool Support 5. Q&A  Contents.

Secure Systems Research Group - FAU 1 Web Services Products and Tools Ingrid Buckley Dept. of Computer Science and Engineering Florida Atlantic University.

WS-Security TC Christopher Kaler Kelvin Lawrence.

Content provided under the terms and conditions of the Eclipse Public License Version Eclipse Foundation - Kathy Chan.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.

Reliable Messaging in the Real World Paul Fremantle Co-chair, OASIS WS-RX TC VP and Founder, WSO2 Inc OASIS Adoption Forum Ditton Manor, October 29 th.

Latest techniques and Applications in Interprocess Communication and Coordination Xiaoou Zhang.

Will Darby April  What is Federated Security  Example Implementations  Security Assertion Markup Language (SAML) Overview  Alternative.

CSC-8530: Distributed Systems Christopher Salembier 28-Oct-2009.

Web Services Security Multimedia Information Engineering Lab. Yoon-Sik Yoo.

Web Service Security CSCI5931 Web Security Instructor: Dr. T. Andrew Yang Student: Jue Wang.

Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies.

Realisation of SOA using Web Services Advanced WS Adomas Svirskas Vilnius University December 2005.

Prashanth Kumar Muthoju

Module 13: WCF Receive Adapters. Overview Lesson 1: Introduction to WCF Receive Adapters Lesson 2: Configuring a WCF Receive Adapter Lesson 3: Using the.

Secure Systems Research Group - FAU Web Services Standards Presented by Keiko Hashizume.

By Justin Thompson. What is SOAP? Originally stood for Simple Object Access Protocol Created by vendors from Microsoft, Lotus, IBM, and others Protocol.

Nikola Dudar Program Manager Microsoft Corporation Session Code: DTL 311.

Web Service Standards, Security & Management Chris Peiris

Strategy Directorate Web Services Technologies Diane McDonald, Strathclyde University Institutional Web Managers.

Web Services and HL7v3 in IHE profiles Vassil Peytchev Epic.

Session 1194 JBuilder 2005 Web Services Designer Ravi Kumar Principal Engineer Borland.

Enterprise Identity Steve Plank – Microsoft Ivor Bright – Charteris Dave Nesbitt – Oxford Computer Group.

OiCoN 2007Madeira Island Automotive Industry Action Group (AIAG)  Automotive Industry ‘Vertical’ for North American Supply Chain Founded by.

Web Services Security Standards Overview for the Non-Specialist Hal Lockhart Office of the CTO BEA Systems.

Presentation: SOAP/WS in a distributed object framework, Application Servers & AXIS SOAP.

An Alternative to WSRF and WS-Notification: WS-Transfer, WS-Eventing, and WS-Enumeration Marvin Theimer Windows Server High Performance Computing Group.

Herndon, VA October 12, 2006 Navigating Web Services Standards NIST Special Publication

17 March 2008 © 2008 The University of Edinburgh, European Microsoft Innovation Center and University of Southampton IT Innovation Centre 1 NextGRID Security.

Random Logic l Forum.NET l Web Services Enhancements for Microsoft.NET (WSE) Forum.NET ● October 4th, 2006.

Shibboleth Akylbek Zhumabayev September Agenda Introduction Related Standards: SAML, WS-Trust, WS-Federation Overview: Shibboleth, GSI, GridShib.

Secure Systems Research Group - FAU Patterns for Web Services Security Standards Presented by Keiko Hashizume.

Web Services Security and Further References Presented by Ashraf Memon Presented by Ashraf Memon.

Semantic Web Technologies Research Topics and Projects discussion Brief Readings Discussion Research Presentations.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Security Token Service Valéry Tschopp - SWITCH.

All Rights Reserved Copyright © 2005,Hitachi.Ltd. Experience of implementing NETCONF over SOAP ( draft-iijima-netconf-soap-implementation-01) Monday, November.

Grid Security: Authentication Most Grids rely on a Public Key Infrastructure system for issuing credentials. Users are issued long term public and private.

Prabath Siriwardena – Software Architect, WSO2. Patterns Standards Implementations Plan for the session.

Shibboleth Akylbek Zhumabayev September Agenda Introduction Description WS Standards WS-Federation Picture Grid Security GridShib References 2.

© 2004 IBM Corporation ICSOC2004 Panel Discussion: Grid Systems: What is needed from web service standards? Jeffrey Frey IBM.

Business Goal-Driven Optimization of Business Process in EERP James Wei Guo, eBridge China Symon Chang, BEA Systems Inc. April 29, 2008 Copyright © 2008.

Advanced Java Session 10 New York University School of Continuing and Professional Studies.

Secure Web Services Akylbek Zhumabayev Rochester Institute of Technologies.

Web Services Security Mike Shaw Architectural Engineer.

1 WS-Security Yosi Taguri Microsoft Israel

August 3, 2004WSRP Technical Committee WSRP v2 leveraging WS-Security 1. Motivation 2. WS-Securtiy Roadmap and Status 3. WSRP Use Cases 4. Strawman/Issues.

August 3, 2004WSRP Technical Committee WSRP v2 leveraging WS-Security Discussion 1. WS-* Standards 2. WS-Securtiy Interop&Implementations 3. Customer demands.

ESRIN, 15 July 2009 Slide 1 Web Service Security support in the SSE Toolbox HMA-T Phase 2 FP 14 December 2009 S. Gianfranceschi, Intecs.

OWASP Web Services Project

Liang Fang, Dennis Gannon Indiana University Frank Siebenlist

Presentation transcript:

Gridshell Security Master Project Akylbek Zhumabayev Rochester Institute of Technology

Agenda Problem Statement Approach to solution Grid and Gridshell Web Service Security Standards Solution

Problem Statement Security solution for gridshell:  Easy setup and configuration of client  Integrated with grid systems  Supports all security dimensions  Can be applied to popular web platform  Scalable: nodes, layers  Optimized for better performance  Reliable: message delivery, QoS

Approach to Solution Solution – specification for developers Examples of implementation Based on technologies considered secure Designed on open security standards Web Services – solution platform Combination of transport and message security

Grid  HPC nodes  Middleware HPC Server Client

Gridshell  Teragrid  Simple API  Features Grid 1 Grid 3 Grid 2 Gridshell Web Service Client

Web Service (WS) Proved platform for distributed systems Popular XML-based web technology WS Client SOAP Transport Layer Message

Transport security context Security Cryptography Security Context WS Client SOAP Grid Message security context Transport security context Message security context Access Control Trust Delegation Access Control Trust Delegation

Security Standards for WS XML XML Signature (W3C) XML Encryption (W3C) SOAP WS-Addressing (W3C) WS-Security (OASIS) Resource Trust Secure Context Policy SAML Kerberos REL X.509 WS-SecureConversation (IBM) XACML (OASIS) RBAC (NIST) EPAL (IBM) WS-Policy (W3C) WS-Security Policy (OASIS) WS-Trust (OASIS) XKMS (W3C) WS-Federation (IBM) IDFF Shibboleth Reliability WS-Reliable Messaging (OASIS) WS-Reliability (OASIS) U/P

Popular WS Solutions 1.Microsoft WCF 2.Sun Metro 3.Apache Axis2 4.Apache CXF 5.IBM WebSphere 6.BEA WebLogic 7.WSO2 WSF

WS-* Stack XML XML Signature XML Encryption SOAP WS-Addressing WS-Security Resource Trust Secure Context Policy SAML Kerberos (1,2) REL X.509 WS-SecureConversation (1,2,3) XACML RBAC EPAL WS-Policy (1,2,4) WS-Security Policy (1,2) WS-Trust (1,2,3) XKMS WS-Federation IDFF Shibboleth Reliability WS-Reliable Messaging WS-Reliability (2) U/P Implemented in all solutionsPartially implementedNot implemented

GSI Grid Community did much in security field Security standard for grid systems Supports some open security standards

Solution Common specifications Platform-dependent specifications Gridshell modules Security dimensions Performance Client security infrastructure Third-party products

Examples Microsoft WCF Sun Metro + Apache