This is a static archive of the previous Open Grid Forum GridForge content management system saved from host forge.ogf.org file /sf/go/projects.pgi-wg/discussion.meetings.topc4265 at Sun, 06 Nov 2022 11:28:03 GMT SourceForge : Post
Home Projects Search
User Password Logins Disabled Help

Project Home
Tracker
Documents
Tasks
Source Code
Discussions
File Releases
Wiki
Project Admin
Project: pgi-wg     Discussion > Meetings > Meeting on 2009-04-03, 16:00 (CET) Notes > List of Posts
Forum Topic - Meeting on 2009-04-03, 16:00 (CET) Notes: (1 Item)
View:  as 
 
Update
 
Johannes Watzl
04/06/2009 8:45 PM
post6116
Meeting on 2009-04-03, 16:00 (CET) Notes
(1) MWSG Outcome and report
security guys are working on different level
pgi is very much welcomed

three plumbings about authentication
GSI yes-net discussion
Errors in openSSL
-> get rid of GSI plumbing
other implementations should not follow it

Etienne:
got the info that formatof X.509 is different between GSI, RFC
not understood by VOMS
proxy format problem
Morris:
we should get rid of GSI longterm
NAREGI voted against
not hte message level authentication
two plumbings for authorization
outcome of differnet deployments
cant' put an extension in full X.509
Etienne:
no attribute on the fly
only by creating proxy
Morris:
add attr. cert. to cert. but it is the not inside the extension

discussion about attribute encoding
no comments yet
focus on getting authz, authn defined
Etienne:
two completely different types of X.509 certs
is it possible to perform delegation with RFC complian proxy?
Morris:
openSSL -> find out how delegation works then
contact ARC people, mailing list

information plumbing
GLUE 1.3 --> GLUE 2.0
all agree on GLUE
Etienne:
EDGeS: will implement transf. from GLUE 1.3 <-> GLUE 2.0

David:
Extension of GridBS project
Morris:
parallel plumbing
precisely defined sec.

(2) Matrix
on GridForge
discussion
on transport layer, security already defined
Etienne:
X.509 cred. column: which version is ist? --> refine

David:
security on which service
Morris:
not only for BES
valuable for different implementations
some imlementations: same container
some implementations: different container

(3) Abbreviation list
CAOPS, EGEE: Moreno will provide info

Etienne:
to all others: please verify the descriptions

(4) Next steps in security
-> email thread
plumbings concept
nailing down what we have
security guyes are working on long term interop.

(5) Message Level AuthN?
-> email thread
OGSA-Authz
Moreno:
Geneva Execution Service
contains wishlist (informal considered useful in Geneva meeting)
title of doc: GES
- all middlewares must be considered
- not final doc
people should read the doc and propose comments
Morris:
deadline?
moreno:
maybe telecon for discusson of GES strawman: next Wednesday 4pm 

expects:
people have opportunity to read and comment the doc
own requirements from others
-> include in next version
hopefully feedback from the others
link the BES to pgi spec. security
David:
3.4 first of the boxes
where does the number of combinations come from?
table would be good
should have Globus, OSG on board

(6) AOBMeeting on 2009-03-27, 16:00 (CET) Agenda

 
Return
 

The Open Grid Forum Contact Webmaster | Report a problem | GridForge Help
This is a static archive of the previous Open Grid Forum GridForge content management system saved from host forge.ogf.org file /sf/go/projects.pgi-wg/discussion.meetings.topc4265 at Sun, 06 Nov 2022 11:28:03 GMT