Single Sign-On in a Grid Portal

  • Ramil V. Manansala
Part of the Methods in Molecular Biology™ book series (MIMB, volume 569)


Single Sign-On (SSO) is a practical requirement for software applications, which rely on distributed, networked services requiring authentication. SSO is as much a convenient feature for users as it is a security concern for application designers. The security requirement becomes critical in institutions that adhere to HIPPA regulations. In this chapter, we discuss SSO as it applies to a grid portal using remote computational resources and grid storage, which contain Personal Health Information (PHI). We cover the implementation of Public Key Infrastructure(PKI) to meet HIPPA security requirements such as authentication, confidentiality, nonrepudiation, and dataintegrity. Furthermore, we discuss the different technologies in PKI that solves these security concerns with respect to protecting research data and make SSO possible in the grid environment at the Biomedical Informatics Research Network (BIRN).

Key words

Single sign-on PKI BIRN Gridsphere MyProxy GAMA 


  1. 1.
    Steel, C., Nagappan, R., & Lai, R. (2005).Core Security Patterns Best Practices and Strategies for J2EE, Web Services, and Identity Management. Upper Saddle River, NJ: Pearson Education Inc.Google Scholar
  2. 2.
    Grid Portals Introduction (2004). Retrieved November 17, 2008, from
  3. 3.
    Authentication and Identification Methods (2008). Retrieved February 10, 2008, from
  4. 4.
    Tuecke, S., Welch, V., Engert, D., Pearlman, L., & Thompson, M. (2004). Internet X.509 Public Key Infrastructure (PKI) Proxy Certificate Profile, Internet Engineering Task Force Request For Comments 3820, IETF Website,
  5. 5.
    Security Documentation (2008). Retrieved April 5, 2008, from http://www-unix.globus. org/toolkit/docs/3.2/security.html
  6. 6.
    Overview of the Grid Security Infrastructure (2008). Retrieved April 12, 2008, from
  7. 7.
    Novotny, J., Tuecke, S., & Welch, V. (2001). An Online Credential Repository for the Grid; MyProxy, Proceedings of the Tenth International Symposium on High Performance Distributed Computing (HPDC-10), IEEE Press, August 2001.
  8. 8.
    Grid Account Management Architecture (2008). Retrieved December 2, 2007, from
  9. 9.
    About SRB (2008). Retrieved March 2, 2008, from Main_Page
  10. 10.
    Condor High Throughput Computing (2008). Retrieved February 20, 2008, from
  11. 11.
    Jones, N. (2007). GridWizard is… . Retrieved December 5, 2007, from
  12. 12.
    JSR 56: Java Network Launching Protocol and API (n.d.). Retrieved December 30, 2007, from Google Scholar
  13. 13.
    Zukowski, J. (2002). Deploying Software with JNLP and Java Web Start. Retrieved December 3, 2007, from
  14. 14.
    ImageJ Image Processing and Analysis in Java (n.d.). Retrieved January 29, 2008, from
  15. 15.
    Software @ CIS: lddmm-volume (2007). Retrieved March 18, 2008, from
  16. 16.
    BRAIN Morphometry BIRN – Atlas Tools (n.d.). Retrieved March 18, 2008, from
  17. 17.
    Basney, J., Fleury, T., & Welch, V. (2006). Single Sign-On for Java Web Start Applications Using MyProxy, Proceedings of the ACM Workshop on Secure Web Services (associated with the 13th ACM Conference on Computer and Communications Security), November 3, 2006.

Copyright information

© Humana Press, a part of Springer Science+Business Media, LLC 2009

Authors and Affiliations

  • Ramil V. Manansala
    • 1
  1. 1.Center for Research in Biological SystemsUniversity of California – San DiegoLa JollaUSA

Personalised recommendations