University of Kent - The UK's European University

University of Kent - Home

Gold award for Kent in Teaching Excellence Framework TEF

About
Planning and strategy
Strategy: Kent 2025

UK's European university

Annual review and reports

How we operate
Committees
Governance
Constitution

Regulations

Charity information

Modern Slavery Act Transparency Statement

People
Vice-Chancellor

Executive Group

Principal officers

Honorary graduates

Departments
Schools and faculties

Professional services

External services

Complete A-Z

More about Kent
Career Opportunities

Essential Kent

Eastern ARC

Regional impact

Community relations

Events and what's on
Full calendar

Undergraduate term dates

Gulbenkian
Research
Excellence at Kent
Latest research news

REF 2021

Research impact

Expertise

Publications

Public engagement

Departments/people
Find a Kent expert

Schools and faculties

Research Services

Innovation & Enterprise

Graduate School

Academic/research jobs

Research degrees
Search courses

Research degrees

How to apply

Postgraduate funding

Graduate school
Courses
Undergraduate courses
Search courses
How to apply
Fees and funding
Undergraduate courses 2023
Search courses
How to apply
Fees and funding
Study abroad
Go abroad

Postgraduate courses
Search courses

How to apply

Research degrees

Taught courses

Fees and funding

Part-time and short courses
Online prospectus

Summer schools

International
Foundation (IFP)
Pre-sessional English

Short-term programmes

Visit Kent
Open Days

Applicant Days

Informal visits

Kent around the world

Useful links
Accommodation

Fees and funding

Scholarships

Locations

Information for...
International students

Parents and family

Applicants

New students
Locations
UK locations
Canterbury

Medway
Tonbridge

Validated institutions

European centres
Brussels

Paris

Other locations
Exchanges with over 100 overseas universities
International
Courses
Study and work abroad

Double-degrees

Short-term study options

'International' courses

Erasmus exchanges

International students
Study at Kent

Application process

When you arrive

International Partnerships
Worldwide partnerships

International exchanges

Alumni groups/networks

Contacts
International Recruitment

International Partnerships

English & world languages

Strategy & reputation
International impact

World-leading research

UK's European university

Maps
International impact

International Research Impact

Campus locations
Business
International expertise
Business services

Collaborative projects
Consultancy
Facilities
Employability points

Courses
Undergraduate

Postgraduate

Part-time (undergraduate)

Executive education

Contacts
Careers & Employability Service

Innovation & Enterprise

Kent Business School

Conferences and functions

Sports centre and facilities
News
News Centre
Latest stories
Expert comment
Press office
Social media
RSS feeds

Students and staff
Student news
Staff news
Campus transport news
IT service alerts
Submit a story
Alumni
Lasting connections...
Alumni and friends

News

Events

Community

Alumni groups

Former staff

Useful links
Telephone Campaign

Congregations

Honorary graduates

Discount on fees

Alumni scholarships

Online giftshop
Giving
Major projects
Kent Law Campaign

Kent Opportunity Fund

Hong Kong & China Portal

Ways to give
Telephone Campaign

Online

By post or phone

Other options..

School of Computing

Search

School of Computing

GridShib and PERMIS Integration

D.W. Chadwick, A. Novikov, and A. Otenko

Campus-Wide Information Systems, 23(4):182-196, October 2006.

Abstract

This paper describes the results of our recent GridShibPERMIS project to provide policy-driven role-based access control decision making to Grid jobs, in which the user�s attributes are provided by a Shibboleth Identity Provider (IdP). The goal of the project is to integrate the identity-federation and attribute-assignment functions of Shibboleth with the policy- based enforcement function of PERMIS, in order to provide a flexible fine-grained authorisation system for Grid jobs running under Globus Toolkit v4. This was done by taking the GT4-Shibboleth integration performed in the United States with the PERMIS infrastructure built in the United Kingdom, and developing a GridShibPERMIS Context Handler. This allows for interoperability between GridShib and PERMIS by providing the required attribute extraction, conversion and transfer functions. As a result, the GridShibPERMIS project integrates the advantages of both Shibboleth cross-organisation identity federation and PERMIS policy-driven role-based access control and represents a new avenue of policy-based authorisation for Grids. The paper provides a brief overview of the technologies involved: GT4, Shibboleth and PERMIS, and presents how the three are combined to provide an efficient and simple fine- grained authorisation mechanism, having low implementation costs. The paper concludes with the lessons learned and plans for the future.

Download publication 512 kbytes (PDF)

Bibtex Record

@article{2530,
author = {{D.W.} {C}hadwick and {A.} {N}ovikov and {A.} {O}tenko},
title = {{G}rid{S}hib and {PERMIS} {I}ntegration},
month = {October},
year = {2006},
pages = {182-196},
keywords = {determinacy analysis, Craig interpolants},
note = {},
doi = {},
url = {http://www.cs.kent.ac.uk/pubs/2006/2530},
    publication_type = {article},
    submission_id = {4570_1179406143},
    ISSN = {1065-0741},
    journal = {Campus-Wide Information Systems},
    volume = {23},
    number = {4},
}

School of Computing, University of Kent, Canterbury, Kent, CT2 7NF

Enquiries: +44 (0)1227 824180 or contact us.

Last Updated: 21/03/2014

© University of Kent - Contact | Feedback | Legal | FOI | Cookies