AIP-5_Securityx - GeoViQua

fortnecessityusefulΛογισμικό & κατασκευή λογ/κού

14 Δεκ 2013 (πριν από 3 χρόνια και 3 μήνες)

97 εμφανίσεις

NASA SensorWeb

AIP
-
5 Kick
-
off

User Authentication & Licensing

Pat Cappelaere Vightel

Stu Frye SGT

Dan
Mandl

GSFC

Karen Moe GSFC

1

Why Interest in Authentication?


Satellite Tasking Request Accountability


Distributed User Access Control & Permissions
Management (User Attribute Exchange or AX)


Single Sign
-
on
A
cross
M
any Services


Limited Digital Rights & Data Access


Web Services Protection

2

Experience


Distributed Identity Service using
OpenID


Support for Multiple
O
rganizations


OpenID

/
OAuth

Hybrid Protocol for
Delegation of User Authority to
Workflows


Two
-
Factor Authentication using
Symantec Validation and ID
Protection Service

3

Present Issues


More Adoption of
OpenID

with Other Disaster
Organizations


SOAP WS* security incompatibility


Integration of Digital Rights Management


Radarsat2 Raw/Processed Data example


In progress (one
-
click license acceptance)


Full NASA Acceptance


[Implemented outside NASA on JOYENT leased
servers as prototype]

4

Achievements


Two Factor Authentication


Single Sign
-
on


User Attribute Exchange


Distributed ID Management Across Organizations


Delegation of User Authority to Workflows


REST API


Simple to implement


Fairly low cost ~$1500/year


Hoping to complete Digital Rights Management

5

Hopes


Secure Disaster Data Delivery Network


OpenID
/
Oauth


BitTorrent

(aka
GeoTorrents
)


Acceptable Digital Rights Management

6