[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [ggf-ogsa-sec-wg] FW: Request for Comments (PDF Version)

To: Marty Humphrey <humphrey@cs.virginia.edu>
Subject: Re: [ggf-ogsa-sec-wg] FW: Request for Comments (PDF Version)
From: Brian E Carpenter <brian@hursley.ibm.com>
Date: Tue, 08 Oct 2002 13:41:31 +0200
Cc: ogsa-sec-wg@gridforum.org
Organization: IBM
References: <000b01c26eb8$761c28f0$80438f80@roger>
Sender: owner-ogsa-sec-wg@gridforum.org

This isn't an IBM conspiracy but I do agree with Magdalen.
One possible way of staging security reqts, at least viewed from
an industrial deployment view, is
 Stage 1: the single-enterprise scenario (what some people call an intragrid)
 Stage 2: the inter-enterprise scenario (extragrid)
 Stage 3: the general case (intergrid). 
The issues of trust relationships, PKI, and security assertions 
get progressively harder as you go through these three stages.

This may seem a bit odd in the research community which probably
thinks it's in Stage 3 already, but the reality I think is nearer
Stage 1.5. As somebody pointed out recently, establishing trust
relationships etc is a major headache in setting up a grid
and I think we will need to analyse that in terms of technical
requirements for the stages mentioned above.

  Brian

Marty Humphrey wrote:
> 
> And I am forwarding this to the OGSA SEC WG for any comments....
> Note that the document to which Ian and Magdalen refer can be found at:
> http://www-unix.gridforum.org/mail_archive/ogsa-wg/pdf00000.pdf
> 
> Marty Humphrey
> Assistant Professor
> Computer Science Department
> University of Virginia
> 
> -----Original Message-----
> From: owner-ogsa-wg@gridforum.org [mailto:owner-ogsa-wg@gridforum.org]
> On Behalf Of Ian Foster
> Sent: Monday, October 07, 2002 1:28 PM
> To: ogsa-wg@gridforum.org
> Subject: Fwd: Request for Comments (PDF Version)
> 
> I am forwarding these comments from Magdalen Leung, which make a lot of
> sense to me.
> 
> >Subject: Fwd: Request for Comments (PDF Version)
> >To: foster@mcs.anl.gov
> >X-Mailer: Lotus Notes Release 5.0.7  March 21, 2001
> >From: Magdalen Leung <cmleung@us.ibm.com>
> >Date: Fri, 4 Oct 2002 11:47:52 -0400
> >
> >Ian, I have read your OGSA roadmap draft and I would like to share my
> thoughts
> >with you.
> >
> >I believe your draft covers a lot of bases and a lot of the right
> >ingredients. I have also read "The Security Architecture for Open Grid
> >Services" and "OGSA Security Roadmap".
> >
> >OGSA evolution is going to take a few steps before it is functionally
> >complete. At the same time, we do not want to wait until all
> architectures
> >are finalized. I am struggling to understand how these new standards
> and
> >technologies can be materialized in a coordinated fashion with
> incremental
> >customer value.
> >
> >I like to suggest that the OGSA roadmap to provide a staged
> architecture
> >plan or steps so that any company can decide to support stage 1 or
> stage 2
> >or stage whatever in a timely fashion and at the same time to provide
> >reasonable interoperability among different implementations of OGSA
> >architectures. For example, the 25 specifications identified in the
> OGSA
> >Security Roadmap, what are the key specifications that would facilitate
> a
> >viable OGSA stage 1 delivery?
> >
> >Magdalen Leung
> >zSeries Software Design, Poughkeepsie, NY
> >  Phone:  8-295-6683 or 845-435-6683    Fax: 8-295-7029 or 845-435-7029
> >
> >  Email: cmleung@us.ibm.com

Follow-Ups:
- [ggf-ogsa-sec-wg] inter-domain requirements
  - From: Brian E Carpenter <brian@hursley.ibm.com>

References:
- [ggf-ogsa-sec-wg] FW: Request for Comments (PDF Version)
  - From: "Marty Humphrey" <humphrey@cs.virginia.edu>

Prev by Date: [ggf-ogsa-sec-wg] FW: Request for Comments (PDF Version)
Next by Date: [ggf-ogsa-sec-wg] Here's the list of security-related activities at GGF6
Prev by thread: [ggf-ogsa-sec-wg] FW: Request for Comments (PDF Version)
Next by thread: [ggf-ogsa-sec-wg] inter-domain requirements
Index(es):
- Date
- Thread