|
Working Group name ------------------ OGSA Security (OGSA-Sec)
Chairs ------ Nataraj (Raj) Nagaratnam, IBM (natarajn@us.ibm.com) Marty Humphrey, University of Virginia (humphrey@cs.virginia.edu)
Area, Area Directors: --------------------- GGF Security Area; Directors: Steve Tuecke, ANL, (tuecke@mcs.anl.gov) and Marty Humphrey, University of Virginia (humphrey@cs.virginia.edu)
Description of working group: -----------------------------
The Open Grid Services Architecture (OGSA) is a proposed Grid service architecture based on the integration of Grid and Web Services concepts and technologies. At this time, the only existing GGF activity directly related to the development and standardization of the OGSA architecture is the Open Grid Services Infrastructure (OGSI) WG. While the OGSI WG has acknowledged/discussed security-related issues, the focus of the OGSI WG is on the OGSI-compliant service definition/discovery/invocation, and not directly on the security issues or ramifications.
The purpose of the OGSA Security WG (OGSA-Sec) is to enumerate and address the Grid Security requirements in the context of the OGSA. Given OGSA leverages Web services, the OGSA Security architecture will leverage the Web services security foundations published in the WS-Security specification [1] and under the context of the Web Services Security Roadmap published in April, 2002 [2]. OGSA-Sec will closely monitor the related efforts in other standards bodies (e.g., OASIS); there is no intention of duplicating the efforts within other standards bodies.
The primary outcome of the OGSA Security WG will be two documents:
[1] "The Security Architecture for Open Grid Services": This document will describe a security architecture intended to be consistent with the security model that is currently being defined for the Web Services framework used to realize OGSA's service-oriented architecture.
[2] "OGSA Security Roadmap": This document is a roadmap enumerating a set of proposed specifications to be defined in the Global Grid Forum in order to ensure interoperable implementations of the OGSA Security Architecture.
A secondary outcome, arguably of equal importance to the two documents, will be the creation of new GGF WGs to address "gaps" identified as a result of creation of the "OGSA Security Roadmap".
All efforts within this group will be synergistic with the efforts within the Web Services community, including but not restricted to the relevant efforts in OASIS and W3C.
Schedule: ---------
Sept 2002 Creation of OGSA Security WG Oct 2002 First drafts of both documents Mar 2003 New version of both drafts June 2003 Last call on "Security Architecture" paper; New version of "Roadmap" paper
References: -----------
[1] "Web Services Security (WS-Security)" http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnglobs pec/html/ws-security.asp
[2] "Security in a Web Services World: A Proposed Architecture and Roadmap" http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnwssec ur/html/securitywhitepaper.asp
Marty Humphrey Assistant Professor Computer Science Department University of Virginia
|