A PERMIS-based authorization solution between portlets and back-end web services

Show full item record

Redirect: RIT Scholars content from RIT Digital Media Library has moved from http://ritdml.rit.edu/handle/1850/7336 to RIT Scholar Works http://scholarworks.rit.edu/article/968, please update your feeds & links!
Title: A PERMIS-based authorization solution between portlets and back-end web services
Author: Barahona, Sofia Brenes; Fox, Geoffrey; Huffman, Kianosh; McMullen, Donald; Pierce, Marlon; Yin, Hao
Abstract: A portal is a Web-based application that acts as an entry point to distributed resources. Individual portlets in a portal can be used to integrate information from a variety of back-end Web services. However, when Web services are deployed, they are available to unintended clients not related to the portal so a general solution for authorizing access to them is needed that is integrated with the portal’s own authentication and authorization mechanisms. This paper investigates the feasibility of an implementation of a general purpose solution for authorization between portlets and their back end Web services based on Privilege and Role Management Infrastructure Standards (PERMIS) which uses Web services security standards such as WSSecurity and SAML. This solution is also appropriate for authorization across organizational boundaries supporting the inclusion of service resources to a portal which are contributed by many different organizations. A motivating example of instrument sharing based on the CIMA remote instrument access protocol is presented.
Record URI: http://hdl.handle.net/1850/7336
Date: 2006

Files in this item

Files Size Format View
HYaoConfProc11-12-2006.pdf 223.6Kb PDF View/Open

The following license files are associated with this item:

This item appears in the following Collection(s)

  • International Workshop on Grid Computing Environments--Open Access (2006)
    The purpose of this Workshop is to bring together the community to discuss and foster the exchange of ideas for the development of tools, methodologies and frameworks to build Grid computing environments. Last year’s conference at SC05 focussed on tools for Grid Portals. This years conference will broaden the discussion to also include efforts of other tools that make the development and use of Grids more easily accessible from the desktop.

Show full item record

Search RIT DML

Advanced Search