Management of Virtual Organisations in D-Grid

Reliable authentication and authorization are crucial for both service providers and their customers, where the former want to protect their resources from unauthorised access and fraudulent use their customers want to be sure unauthorised access to their data is prevented. In Grid environments Virtual Organisations (VO) have been adopted as a means to organise and control access to resources and data based on roles that are assigned to users.

VO-Management is a D-Grid Infrastructure (DGI) project that aims to provide support for VO management. The project will create a framework concept for VO-Management taking into account the requirements of the different D-Grid Communities and the heterogeneous middleware supported in D-Grid. The proposed framework will include the definition of processes for the temporal integration of resources, services, and applications for community use. VO management implements the essential interface between the D-Grid service providers and the communities.

The first phase of the project was dedicated to examine existing solutions like Shibboleth or VOMS, to determine the needs and requirements of both the communities and the service providers, and to develop the concept for VO management in D-Grid. As a result of this work a draft framework concept has been produced now being circulated within the D-Grid Communities for final revision.

In the second phase the software and documentation and a description of the procedures necessary for the operation of Virtual Organisations in D-Grid will be bundled and made available via the VO-Management Web-pages.

Project partners are the Forschungszentrum Karlsruhe, the Ludwig-Maximilians-Universität (LMU) Munich, and the Fraunhofer Institute SCAI Sankt Augustin.