19–25 Oct 2024
Europe/Zurich timezone

Preliminary findings and recommendations from the Token Trust and Traceability Working Group.

22 Oct 2024, 16:33
18m
Room 2.B (Conference Room)

Room 2.B (Conference Room)

Talk Track 4 - Distributed Computing Parallel (Track 4)

Speaker

Matt Doidge (Lancaster University (GB))

Description

Created in 2023, the Token Trust and Traceability Working Group (TTT) was formed in order to answer questions of policy and best practice with the ongoing move from X.509 and VOMS proxy certificates to token-based solutions as the primary authorisation and authentication method in grid environments. With a remit to act in an investigatory and advisory capacity alongside other working groups in the token space, the TTT is composed of a broad variety of stakeholders to provide a breadth of experience and viewpoints. The requirements of grid sites, users, identity providers and virtual organisations to be able to trace workflows remain largely the same in a token paradigm as when using X.509 certificates, while tokens provide a new set of challenges, requiring a rethink and restructure of the policies and processes that were defined with just X.509 and VOMS in mind.

After providing an overview of the current status of the token trust landscape we will detail the initial findings, future plans and recommendations to be made by the TTT. This will include best practice for sites and identity providers, suggestions for token development, and methodologies for tracing token usage by system administrators within common grid middleware stacks.

Primary authors

Dr David Crooks (UKRI STFC) David Kelsey (Science and Technology Facilities Council STFC (GB)) Linda Ann Cornwall Maarten Litmaath (CERN) Marcus Hardt (KIT) Matt Doidge (Lancaster University (GB)) Dr Mischa Sallé (NWO-I Nikhef) Mr Tom Dack

Co-author

Presentation materials