Single Sign-On in a Grid Portal

Single Sign-On in a Grid Portal - 1 Chapter 12 Single...

Info iconThis preview shows pages 1–3. Sign up to view the full content.

View Full Document Right Arrow Icon
Chapter 12 Single Sign-On in a Grid Portal Ramil V. Manansala Summary Single Sign-On (SSO) is a practical requirement for software applications, which rely on distributed, networked services requiring authentication. SSO is as much a convenient feature for users as it is a security concern for application designers. The security requirement becomes critical in institutions that adhere to HIPPA regulations. In this chapter, we discuss SSO as it applies to a grid portal using remote computational resources and grid storage, which contain Personal Health Information (PHI). We cover the implementation of Public Key Infrastructure(PKI) to meet HIPPA security requirements such as authentication, confidentiality, nonrepudiation, and dataintegrity. Furthermore, we discuss the different technologies in PKI that solves these security concerns with respect to protecting research data and make SSO possible in the grid environment at the Biomedical Informatics Research Network (BIRN). Key words: Single sign-on, PKI, BIRN, Gridsphere, MyProxy, GAMA As more software applications become more web-based, require- ments for finding better solutions to securing these applications become important. Services of different varieties found on the web have increased over the years. The flux of these service-oriented sites has cultivated a need for identity providers to support Sin- gle Sign-On (SSO) mechanism to all these disparate applications on the Internet. SSO’s end goal is to provide convenience as well as security. Users only need to type in their username and password once on one system and are able to use other services without having to expose their secret combination again. This “login once work anywhere feature” is convenient and avoids keeping track of multiple secret combinations for different servers. 1. Introduction Vadim Astakhov (ed.), Biomedical Informatics, Methods in Molecular Biology, vol. 569 DOI 10.1007/978-1-59745-524-4_12, © Humana Press, a part of Springer Science + Business Media, LLC 2009 239 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
240 Manansala It prevents possible breach of security when people start writing their information down on Post-It notes. This chapter focuses on providing insights on how the Bio- medical Informatics Research Network (BIRN) uses the Public Key Infrastructure (PKI) to adhere to the National Institute of Health’s mandate of adhering to the Health Insurance Privacy and Portability Act (HIPPA) regulations. As a research institu- tion working on sensitive patients’ data, BIRN must protect the pri- vacy of its research subjects. Data considered as Personal Health Information (PHI) should be kept private. BIRN has achieved these requirements by utilizing security infrastructure based on standards while adapting leading-edge open source technologies. Specifically, BIRN has implemented a secure SSO mechanism
Background image of page 2
Image of page 3
This is the end of the preview. Sign up to access the rest of the document.

This note was uploaded on 04/11/2010 for the course COMP 2405 taught by Professor Imranahmed during the Winter '10 term at Carleton CA.

Page1 / 24

Single Sign-On in a Grid Portal - 1 Chapter 12 Single...

This preview shows document pages 1 - 3. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online