Files in this item



application/pdfThomas_Hayes.pdf (229kB)
(no description provided)PDF


Title:Federated identity management systems for cyberinfrastructure: SAML vs. PKIX
Author(s):Hayes, Thomas
Advisor(s):Bobba, Rakesh; Basney, Jim
Department / Program:Computer Science
Discipline:Computer Science
Degree Granting Institution:University of Illinois at Urbana-Champaign
Subject(s):federated identity
grid computing
Abstract:In scientific infrastructures researchers accessing computing and other resources (e.g., instruments, data) across institutional boundaries rely on federated identity management systems. Multiple competing technologies are in use for this purpose, including Security Assertion Markup Language (SAML) and Public Key Infrastructure with X.509 Certificates (PKIX). These systems have found favor in different scientific computing communities but it is unclear what the difference in preference is based upon. In this study we discuss the security, usability, privacy and trust model assumptions of SAML and PKIX systems for researchers authenticating to grid computing systems across multiple domains. We provide a comparison of these systems to highlight where they provide equivalent functionality and where one technology is superior.
Issue Date:2014-05-30
Rights Information:Copyright 2014 Thomas Hayes
Date Available in IDEALS:2014-05-30
Date Deposited:2014-05

This item appears in the following Collection(s)

Item Statistics