Flexible and Extendable Mechanism Enabling Secure Access to E-Infrastructures and Storage of Confidential Data for the GridSpace2 Virtual Laboratory

  • Home /
  • Publications /
  • Flexible and Extendable Mechanism Enabling Secure Access to E-Infrastructures and Storage of Confidential Data for the GridSpace2 Virtual Laboratory

Flexible and Extendable Mechanism Enabling Secure Access to E-Infrastructures and Storage of Confidential Data for the GridSpace2 Virtual Laboratory

Jan Meizner, Eryk Ciepiela, Piotr Nowakowski, Joanna Kocot, Maciej Malawski, Marian Bubak

In Marian Bubak, Tomasz Szepieniec & Kazimierz Wiatr: Building a National Distributed E-Infrastructure–PL-Grid: Scientific and Technical Achievements. 6 89--101. Berlin, Heidelberg: Springer https://doi.org/10.1007/978-3-642-28267-6_7. ISBN: 978-3-642-28267-6

This paper describes the security framework used by the GridSpace2 platform. The framework needs to restrict access to the Experiment Workbench to authorized users only as well as enable scientists to use multiple resources – computers (such as clusters, grids and clouds) and data, like e.g. relational database management systems (RDBMSes). The paper analyzes the appropriate technologies, details the proposed solution and summarizes the results of our research and development of flexible and extensible security solutions for scientists who need transparent access to heterogeneous compute and data resources. Additionally, as part of this paper, a wallet mechanism is described which enables secure storage of arbitrary confidential data such as credentials for external services.