[GRIDRPC-WG] Security Consideration section

Eddy Caron Eddy.Caron at ens-lyon.fr
Tue Mar 29 03:53:06 CDT 2011 

Dear all,

Last step we must add a security consideration section as mentioned by Greg :

> De : "Greg Newby" <newby at arsc.edu>
> Date : 28 mars 2011 08:15:48 HAEC
> À : Eddy Caron <Eddy.Caron at ens-lyon.fr>

...
"Unfortunately nobody noticed earlier that you had not included a
security considerations section.  This is one of the requirements --
take a look at GFD #152 for discussion & example.  I'm sorry for
not pointing this out when the document was originally submitted."
...

See www.ggf.org/documents/GFD.152.pdf for all information. 

I checked in the last SAGA-API document (because we are close to the behavior) and I propose the following update from the Andre's paragraph to be compliant to the GridRPC document.

Security Considerations

As the GRPC API is to be implemented on different types of Grid (and Cloud) middleware, it does not specify a single security model, but rather provides hooks to interface to various security models.
A GRPC implementation is considered secure if and only if it fully supports (i.e. implements) the security models of the middleware layers it builds upon, and neither provides any (intentional or unintentional) means to by-pass these security models, nor weakens these security models’ policies in any way.
The implementations of advert services (the “backend” services to this API), need to take security concerns into account, because such a service might cause leaks of user (meta) data beyond the runtime of the applications using this API. This is the same risk as with storage and file systems, to which the GRPC Data Management core API provides an API. Unlike with established file systems, however, the risks associated with advert services might be less obvious to their implementors.

Andre can I use your text as based ? No strong copyright on it ? :-)

If someone from the GridRPC-WG have some remarks, constraints  or additional information, let me know or update the CVS. 

Best Regards,
Eddy 
----------------------------------------------------------------------------------------------
Eddy Caron. Mcf ENS Lyon 
ENS Lyon - LIP - Projet GRAAL 
46 Allee d'Italie, 69364 Lyon Cedex 07, France
E-Mail : Eddy.Caron at ens-lyon.fr
[ Tel : 04.37.28.76.46 ][ Web page : http://graal.ens-lyon.fr/~ecaron ]
------------------------------------------------------------------------------------------------

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.ogf.org/pipermail/gridrpc-wg/attachments/20110329/736b610c/attachment.html

More information about the gridrpc-wg mailing list