[security-area] Agenda for GGF16 Authorization workshop - 16th Feb 2006

Tue Feb 14 10:04:06 CST 2006

Dear all,

Here is the final agenda for Thursday's GGF16 Authorization workshop.
We look forward to your participation.

David Kelsey

------------------------------------------------
Dr David Kelsey
Particle Physics Department
Rutherford Appleton Laboratory
Chilton, DIDCOT, OX11 0QX, UK

e-mail: D.P.Kelsey at rl.ac.uk
Tel: [+44](0)1235 445746 (direct)
Fax: [+44](0)1235 446733
------------------------------------------------

GGF16
Thursday, Feb 16 2006

Title: Grid Authorization - Interoperability Here & Now  (Workshop)

Abstract:

This workshop will consider short-term (now and next two years) Grid
Authorization and Policy implementations, requirements and issues. It
will investigate what improvements can be made to encourage and
facilitate interoperability between Grid operational infrastructures. It
will also consider lessons learned from today's implementations for the
Grid security standards activities in GGF for the longer-term future.
The workshop will highlight the Life Science perspective with
requirements from the biomed VO in EGEE and in the overall biomedical
community. 

Location: Kozani

Background:

Much effort has been put into the work on Grid Authentication,
culminating in the successful launch at GGF15 of the International Grid
Trust Federation (IGTF). The work of IGTF and its three regional Policy
Management Authorities ensures that Grid Users can obtain a single
electronic identity (X.509 certificate) and use this on any Grid
infrastructure which has decided to use the CA's from IGTF. Grid
Authorization is much less mature. Many large-scale application
communities (VOs) are global in nature and have the need to access
multiple Grid infrastructures. While Authentication is performed at the
employing institute level, the Authorization (AuthZ) assertions need to
be controlled at the VO level. The VO (global) policy assertions then
need to be combined with local (site-level) policy specifications before
an Authorization decision can be made and enforced. There is a very
important requirement for interoperability in AuthZ between Grids in
terms of protocols and evaluation of the AuthZ/Policy assertions so that
different implementations can interwork and reach the same AuthZ
decisions. 

----------------------------------------------------------------------------

Agenda - Session 1 - Thursday 16th February 2006
10.30-12.00 Grid Authorization - Interoperability Here & Now - #1
(Chair - Åke Edlund)

10.30-10.35    Welcome, introduction and aims of the workshop (David Kelsey)
10.35-11.00    The LHC experiments (particle physics) AuthZ requirements (David Kelsey)
11.00-11.25    The Biomed/EGEE AuthZ requirements (Christophe Blanchet/Rémi Mollon)
11.25-11.50    AuthZ in Open Science Grid (Bob Cowles)
11.50-12.00    Discussion

----------------------------------------------------------------------------

Agenda - Session 2 - Thursday 16th February 2006
13.30-15.00     Grid Authorization - Interoperability Here & Now - #2
(Chair: David Kelsey)

Panel presentations & discussion - AuthZ interoperability issues and plans

Von Welch           	TeraGrid/OSG interoperation issues
David Groep         	EGEE framework and local PDP's
Jens Jensen             Data management AuthZ
Yuri Demchenko      	GAAA/GT4 gap analysis
Christos Kanellopoulos  Ideas on interoperation/interoperability
Olle Mulmo		      Future plans and directions (for GGF)

leading into general discussion - recommendations for short-term and mid-term direction

----------------------------------------------------------------------------

Organizing Committee

Christophe Blanchet	(CNRS IBCP and EGEE biomed VO deputy)
Vincent Breton		(CNRS and EGEE Director of Applications activity)
Bob Cowles			(SLAC and OSG Security co-chair)
Ake Edlund			(KTH and EGEE Director of Security)
David Groep			(NIKHEF and IGTF chair)
David Kelsey		(CCLRC and LCG/EGEE JSPG chair)		
Olle Mulmo			(KTH and GGF Security Area Director)			
Dane Skow			(FNAL and GGF Security Area Director)
Von Welch			(NCSA and Globus Alliance)