A collaboration between EGEE, the OSG VO Services project, Globus, and Condor
Goal of the Authorization Interoperability activity is providing interoperability between middleware and authorization infrastructures. This is achieved by agreeing on and implementing an authorization protocol common to OSG VO services, EGEE, Globus, and Condor.
This protocol is used by Policy Enforcement Points (PEP), i.e. resource gateways, to interact with Policy Decision Points (PDP), i.e. repository of authorization policies. For each access request, the PDP informs the PEP on whether access is granted or denied and, what obligations need to be enforced if access if granted. Obligations are used as a mechanism to restrict privileges at Grid resources.
This work was started in Oct 2006 as a collaborative effort between the OSG VO Services Project, EGEE, Globus, and Condor.
Documents and Presentations
Last update: Aug 14h 2008