Version 4 (modified by 12 years ago) (diff) | ,
---|
Authorization
Wed, 1500-1630
Organizers: Steve Schwab and Ted Faber, USC/ISI
Dial In: 866-453-5550 ; Participant pin: 6513886#
GENI aggregates currently use signed XML credentials to make authorization decisions. At GEC10 we began a one year effort to evaluate ABAC assertions as a more flexible basis for GENI authorization. This meeting will seek agreement on a vocabulary for ABAC assertions and policies, and then surface outstanding issues and concerns or other work that must be addressed before the community can decide whether to adopt ABAC. We will also review the status of integrating ABAC in existing control frameworks and aggregates.
Agenda
- Steve Schwab - Intro and overview (5 minutes)
- Ted Faber on a draft authorization vocabulary and sample policies (20 mins with ~10 of discussion)
- Jeff Chase (remotely) on Accountability and Authorization (20 mins with ~10 of discussion)
- David Cheperdak his efforts to integrate ABAC into PlanetLab (10 mins with ~5 for questions)
- Ben Warren on IF-MAP: a security driven pub-sub standard protocol, and its use cases within GENI (10 minutes with ~5 for questions)
Attachments (8)
-
GEC12-auth.ppt (7.8 MB) - added by 12 years ago.
Jeff Chase's slides
-
GEC12-chase-auth.pdf (8.1 MB) - added by 12 years ago.
Jeff Chase's slides (pdf)
-
GEC 12 Auth-Overview-GSAT-Schwab.ppt (196.0 KB) - added by 12 years ago.
Steve Schwab's Authorization Session Overview Slides
-
GEC 12 Auth-Overview-GSAT-Schwab.pdf (124.3 KB) - added by 12 years ago.
Steve Schwab's Authorization Session Overview Slides (as PDF)
-
vocabulary.pdf (171.0 KB) - added by 12 years ago.
authorization slides
-
GEC-12 ABAC Presentation - Final.pdf (840.0 KB) - added by 12 years ago.
David Cheperdak's slides as pdf
-
IF-MAP GEC12.pdf (5.1 MB) - added by 12 years ago.
Richard Kagan's slides on IF-MAP and GENI (pdf)
-
IF-MAP GEC12.ppt (8.3 MB) - added by 12 years ago.
Richard Kagan's slides on IF-MAP and GENI (ppt)