Download
1 / 3
30 likes | 154 Vues
This report by Mika Silander details current activities aimed at improving authorization and authentication within the Spitfire framework. Key areas of focus include validating certificates, addressing issues with the Java Certification Path API (JCPAPI), and implementing CRL checks. Additionally, the report outlines future collaboration with Liberty Alliance for federated solutions in authorization and highlights ongoing efforts to replace IAIK certificate manipulation with improved methods. Scalability questions regarding OCSP in the EDG environment are also discussed.
E N D
Security Group WP2 Report by Mika Silander (E-mail: Akos.Frohner@cern.ch)
Current Activity Improving the authorization in Spitfire • validating certs (authentication) • JDK 1.4 Java Certification Path API (JCPAPI) – needs workarounds • CRL checks (...) • other Spitfire specific issues • mapping to roles (authorization) • mapping table in a local DB
Future Plans • collaboration with Liberty Alliance www.projectliberty.org ?federated solutions for AA by industry • replacing IAIK cert manipulation in Java CoG-> cooperation w Jarek Novotny • Online Credential Status Protocol (OCSP) • will it scale in EDG? • other solution, e.g. mailing list/news? • CAS – Java client lib/servlet, if there is interest
