EDG Java Security
Home
Replication
Security
Spitfire
Optimization
Security Task
Security Home
Members
Documentation
WIKI Collaboration Area
Downloads
Mailing list
Components
EDG Java Security
Trust Manager
Authorization Manager
Authorization Wrappers
AdminGUI for Authorization Manager
VOMS
CVS repository

The WP2 Security Task provides secure access to Java-based Web Services. The edg-java-security module consists of two major parts:

Trust Manager

The Trust Manager authenticates the identity of a grid client on the base of its X.509 certificate. The Trust Manager is a replacement of the default Tomcat implementation of the SSLServerSocketFactory. It extends the original Java class with additional features in order to:

  • validate certificate chains containing Globus Proxy Certificates
  • validate certificate chains against Certificate Revocation Lists (CRLs)

Implementation details and descriptions can be found here.

 

Authorization Framework

The Authorization Framework provides the definition and implementation of:

  • one Authorization Manager for coarse-grained authorization of grid clients; authorization decisions are taken on the basis of the X.509 certificate handed over by the client
  • two thin wrappers around the Authorization Manager, to integrate authorization functionality into Java servlets and web services
  • one web interface for the administration of the information stored in the Authorization Manager

     
The European Organization for Nuclear Research
Feedback and questions concerning this site should be directed to hep-proj-grid-data-mgt-security@listbox.cern.ch Last updated May 16, 2003