[[PageOutline]] = LEFA Project Status Report = Period: January 2010 - March 2010 == I. Major accomplishments == Extenstive disussions with ORCA on integration of Shibboleth. Constructed simple Shibboleth demos showing desktop client accessing Shibboleth protected resource; code shared with ORCA. === A. Milestones achieved === === B. Deliverables made === Developed and circulated a draft of "Federated * in GENI". == II. Description of work performed during last quarter == === A. Activities and findings === * Extensive discussions with Jeff Chase, Vicraj Thomas, and Steven Schwab exploring how two different security models -- GENI and Shibboleth -- can be combined. * Construction of simple Shibboleth demos showing desktop client accessing Shibboleth protected resource; code shared with ORCA. * Arrange to construct Shibboleth SP in the ORCA lab, using the Duke Shibboleth IDP. * Discussion of how to leverage existing campus middleware infrastructure (authN and groups/authZ) to address GENI use cases. * Develop plan for more extensive demo of Shib + ORCA at GEC 7 * Various discussions with GENI security team (Steve Schwab) * Worked with GENI ORCA cluster on inclusion of Shibboleth in their architecture; began developing an integrated campus-GENI demo for GEC8 * Joined control framework working group * Engaged with Stephen Schwab and Cobham on Spiral 2 and 3 security architectures * Met with GENI PO to discuss addition points of collaboration * Participated in GEC 7 * Started discussion on moving the conversation forward to authorization and the possible use of COmanage and Grouper in creating and storing attributes. === B. Project participants === Steven Carmody [[BR]] Ken Klingenstein === C. Publications (individual and organizational) === Developed and circulated a draft of "Federated * in GENI" === D. Outreach activities === === E. Collaborations === ORCA control framework. === F. Other Contributions ===