Federated identity management systems for cyberinfrastructure: SAML vs. PKIX
Hayes, Thomas
Loading…
Permalink
https://hdl.handle.net/2142/49748
Description
Title
Federated identity management systems for cyberinfrastructure: SAML vs. PKIX
Author(s)
Hayes, Thomas
Issue Date
2014-05-30T17:07:42Z
Director of Research (if dissertation) or Advisor (if thesis)
Bobba, Rakesh
Basney, Jim
Department of Study
Computer Science
Discipline
Computer Science
Degree Granting Institution
University of Illinois at Urbana-Champaign
Degree Name
M.S.
Degree Level
Thesis
Keyword(s)
federated identity
cyberinfrastructure
grid computing
Abstract
In scientific infrastructures researchers accessing computing and other resources (e.g., instruments, data) across institutional boundaries rely on federated identity management systems. Multiple competing technologies are in use for this purpose, including Security Assertion Markup Language (SAML) and Public Key Infrastructure with X.509 Certificates (PKIX). These systems have found favor in different scientific computing communities but it is unclear what the difference in preference is based upon. In this study we discuss the security, usability, privacy and trust model assumptions of SAML and PKIX systems for researchers authenticating to grid computing systems across multiple domains. We provide a comparison of these systems to highlight where they provide equivalent functionality and where one technology is superior.
Use this login method if you
don't
have an
@illinois.edu
email address.
(Oops, I do have one)
IDEALS migrated to a new platform on June 23, 2022. If you created
your account prior to this date, you will have to reset your password
using the forgot-password link below.
