CILogon: A federated X.509 certification authority for cyberinfrastructure logon

Jim Basney, Terry Fleury, Jeff Gaynor

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

CILogon provides a federated X.509 certification authority for secure access to cyberinfrastructure such as the Extreme Science and Engineering Discovery Environment (XSEDE). CILogon relies on federated authentication (SAML and OpenID) for determining user identities when issuing certificates. Federated authentication enables users to obtain certificates using existing identities (university, Google, etc.). Federated authentication also enables CILogon to serve a national-scale user community without requiring a large network of registration authorities performing manual user identification. CILogon supports multiple levels of assurance and custom interfaces for specific user communities. In this article we introduce the CILogon service and describe experiences and lessons learned from the first three years of operation.

Original languageEnglish (US)
Title of host publicationProceedings of the XSEDE 2013 Conference
Subtitle of host publicationGateway to Discovery
DOIs
StatePublished - 2013
EventConference on Extreme Science and Engineering Discovery Environment, XSEDE 2013 - San Diego, CA, United States
Duration: Jul 22 2013Jul 25 2013

Publication series

NameACM International Conference Proceeding Series

Other

OtherConference on Extreme Science and Engineering Discovery Environment, XSEDE 2013
CountryUnited States
CitySan Diego, CA
Period7/22/137/25/13

Keywords

  • Grid computing
  • Identity federation
  • Incommon
  • OAuth
  • OpenID
  • PKI
  • SAML
  • Shibboleth
  • X.509
  • XSEDE

ASJC Scopus subject areas

  • Software
  • Human-Computer Interaction
  • Computer Vision and Pattern Recognition
  • Computer Networks and Communications

Fingerprint Dive into the research topics of 'CILogon: A federated X.509 certification authority for cyberinfrastructure logon'. Together they form a unique fingerprint.

Cite this