JIRA Issue

[#XCI-501] Security review for Globus Connect Server v5 and SSH with Globus Auth

[XCI-501] Security review for Globus Connect Server v5 and SSH with Globus Auth Created: 11/02/2018  Updated: 06/13/2019

Status: In Progress
Project: XSEDE Cyberinfrastructure Integration
Component/s: CILogon, Globus Auth, XSEDE Identity Provider (IdP)
Fix Version/s: PY8 (Sep '18 - Aug '19)

Type: Task Priority: Major
Reporter: Lee Liming Assignee: Lee Liming
Resolution: Unresolved Votes: 1

Issue Links:
SD&I Deliverable
has deliverable XCI-608 Security design review for OAuth-SSH ... Backlog
SD&I Design
produces design for XCI-572 Prepare repo for SSH with OAuth code Closed
produces design for XCI-496 SSH with OAuth (OIDC/OAuth SSH servic... Launch Review
XSEDE Areas:
RACD Integration Services, RACD Security
XSEDE Priority: -
Planned Complete Date:
Public activity link: https://software.xsede.org/display/xci-501
Use Cases:
CAN-02: Managed File Transfer, CAN-04: Interactive Login, CAN-06: Authenticate to one or more SP resources, SP services, and XSEDE central services
Use Case Priority: High
Track status in meeting: yes

 Description   

To prepare for use of Globus Connect Server version 5 and SSH with Globus Auth on XSEDE L1/L2 resources, we need to conduct a security review of the new access control mechanisms used by these two services. This activity will prepare the necessary documentation for the security review, prepare the review, and conduct the review. It WILL NOT prepare these services for use on L1/L2 resources: that will be a separate activity.

The result of this activity will be a completed security review of the new access control mechanisms. Ideally, this will result in a general recommendation regarding the use of Globus Connect Server version 5 and SSH with Globus Auth on XSEDE L1/L2 resources, as well as any materials needed to assist L1/L2 SPs in making their own choices regarding these services.

 Comments   

There are comments for XCI-501 that can be viewed with XSEDE authentication.

National Science Foundation (NSF)

© XSEDE All Rights Reserved. Visit the Feedback page for assistance or to provide feedback.
The Extreme Science and Engineering Discovery Environment is supported by the National Science Foundation.
Administrative Login