Abstract
Federating the numerous existing networking testbeds offers multiple possible benefits, but so far testbeds and federation efforts remained semi-independent, and not wholly united as a single federation. We identify several problems against federation, namely, establishing new trust relations and agreeing on a common schema between the entities. In this paper we explore practical ways to set up federations by making use of the existing organization to user, and inter-organizational trust relations. First we give an analysis of the existing testbeds and federations in terms of their trust models, and the set of technologies they use. Next, we argue for a design of a federation which leverages existing trust relationships. Our prototype implementation shows how readily this design can be implemented using a minimal set of schema and technologies being used by the existing testbeds and federations. Using our analysis we then show how this design can be expanded for larger scale federations, and give examples of possible future trust models.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Amazon Elastic Compute Cloud (Amazon EC2), http://aws.amazon.com/ec2/
Basney, J., Humphrey, M., Welch, V.: The myproxy online credential repository. Softw Pract. Exper. 35(9), 801–816 (2005)
Blaze, M., Feigenbaum, J., Lacy, J.: Decentralized trust management. In: Proceedings of the IEEE Symposium on Research in Security and Privacy Technical Committee on Security and Privacy, Oakland, CA, IEEE Computer Society Press (1996)
CILogon: Secure access to NSF CyberInfrastructure, http://www.cilogon.org
Fu, Y., Chase, J., Chun, B., Schwab, S., Vahdat, A.: SHARP: an architecture for secure resource peering. In: Proceedings of the 19th ACM Symposium on Operating Systems Principles (SOSP 2003), Bolton Landing, NY, USA, pp. 133–148. ACM (2003)
GENI: Global Environment for Network Innovations, http://www.geni.net
InCommon Federated Identity and Access Management, http://www.incommonfederation.org/
Jim, T.: SD3: A trust management system with certified evaluation. In: IEEE Symposium on Security and Privacy, pp. 106–115 (2001)
Li, N., Mitchell, J.C., Winsborough, W.H.: Design of a role-based trust-management framework. In: IEEE Symposium on Security and Privacy (SSP 2002), Washington, Brussels, Tokyo, pp. 114–130. IEEE (2002)
Liberty Trust Models Guidelines, http://www.oasis-open.org/
Open Science Grid: A national, distributed computing grid for data-intensive research, http://www.opensciencegrid.org/
OpenID Decentralized authentication protocol, http://openid.net
Peterson, L., Bavier, A., Fiuczynski, M., Muir, S.: Experiences Building PlanetLab. In: Proc. 7th OSDI, Seattle, WA (November 2006)
Peterson, L., Ricci, R., Falk, A., Chase, J.: Slice-Based Federation Architecture. In: Ad Hoc Design Document (July 2008)
ProtoGENI: Prototype implementation and deployment of GENI, http://www.protogeni.net/
Reeves, D.M., Grosof, B.N., Wellman, M.P., Chan, H.Y.: Toward a declarative language for negotiating executable contracts (June 23, 1999)
Security Assertion Markup Language (SAML) v2, http://www.oasis-open.org/specs/#samlv2.0
Shibboleth federated identity management system, http://shibboleth.internet2.edu/
Wallom, D., Spence, D., Tang, K., Meredith, D., Jensen, J., Trefethen, A.: A trefethen: Shibgrid, a shibboleth based access method to the national grid service (2007) (submitted to ahm)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 ICST Institute for Computer Science, Social Informatics and Telecommunications Engineering
About this paper
Cite this paper
Sevinc, S. (2012). A Path to Evolve to Federation of TestBeds. In: Korakis, T., Li, H., Tran-Gia, P., Park, HS. (eds) Testbeds and Research Infrastructure. Development of Networks and Communities. TridentCom 2011. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 90. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-29273-6_10
Download citation
DOI: https://doi.org/10.1007/978-3-642-29273-6_10
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-29272-9
Online ISBN: 978-3-642-29273-6
eBook Packages: Computer ScienceComputer Science (R0)