= TIED - Trial Integration Environment Based on DETER = == QPR 31 Mar 2010 == == Introduction == This quarter members of the TIED project advanced their work on Attribute Based Access Control (ABAC) both technically and internally among GENI researchers, drove GENI interface discussions on both ABAC and the GENIAPI, and furthered our international collaboration with our Japanese counterparts. == Major Accomplishments == * ABAC/GENI Integration * Published [http://groups.geni.net/geni/attachment/wiki/TIED/abac_geniapi-1.0.tgz Reference code] and [http://groups.geni.net/geni/attachment/wiki/TIED/ABAC_GENIAPIv1.2.pdf Documentation] for integrating ABAC with the GENIAPI AM. * ABAC 0.1.3 is being integrated with the standard GENI Integration Release v 3.1 * Published [http://groups.geni.net/geni/attachment/wiki/TIED/GENI_ABAC_rules.tgz machine-readable ABAC encoding] of the current GENIAPI models, and wrote [http://groups.geni.net/geni/attachment/wiki/TIED/ABAC_Rules_v1.2.pdf detailed documentation] for the same. * Documentation is a jumping on point for users who have not been following authorization discussions closely * Encoding uses running code to demonstrate practicality of the implementation * With Steve Schwab, we worked with GPO personnel to forge a consensus and forward path on ABAC integration for GENI at GEC10 * ABAC Development * Demonstrated the ABAC credential browser at GEC10 * Browser development resulted in a second, interoperable ABAC implementation in native Java that is being taken up by the ORCA project. * Included in ABAC 0.1.3, in the GENI Integration release v3.1 * Other GENI Interface deisgn * Published and discussed a draft on the Future of the Slice manager interface. * Discussed with key members of the design group and released to the Control Framework list * Japan Collaboration * Mike Ryan spent several weeks in Japan educating users on the TIED model and learning about their testbed models * Work underway to federate the two testbeds