EditWYSIWYGAttachPrintable
r1 - 18 Apr 2006 - 16:21:00 - DanieleTuriYou are here: myGrid wiki >  Medical Web  > SecurityAndAuthentication

Security

  • User sends LSID ref and credentials to the Access Point
  • Access Point returns data and metadata or denies access as follows:
    1. the credentials are passed to a User Directory
    2. the User Directory passes the corresponding user to the Authorization Authority
    3. the Authorization Authority returns the user attributes in the form of a (possibly signed) SAML assertion
    4. this assertion, together with the lsid and its corresponding metadata are passed to the Policy Enforcement Point (PEP)
    5. the PEP uses these three inputs to form an XACML request that is passed to a Policy Decision Point (PDP) that is preloaded with an XACML Policy Set.
    6. the PDP evaluates the request against its policy set and returns an XACML response to the PEP
    7. the PEP decodes the response and either allows data/metadata to be returned to the user or denies access.

architecture.png

Edit | WYSIWYG | Attach | Printable | Raw View | Backlinks: Web, All Webs | History: r1 | More topic actions
Medical
key Log In or Register

Users Groups Index Search Changes Notifications Statistics Preferences Webs Bioinformatics Know Main Medical Mygrid Ontologyinfrastructue Papers Portal TWiki Technologies Bioinformatics Know Main Medical Mygrid Ontologyinfrastructue Papers Portal TWiki Technologies porn free porn
 
Powered by myGrid wiki
This site is powered by the TWiki collaboration platformCopyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding myGrid wiki? Send feedback