ndgf sept 09
DESCRIPTION
Talk about the current status of the TERENA certificate portal.TRANSCRIPT
IntroductionCurrent status
The futureRoadmap
Wrapping up
Confusa The where, when and who
Henrik Austad & Thomas Zangerl
The Nordic Data Grid Facility (NDGF)
September 11, 2009
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
MotivationWhat is Confusa?
Layout
1 IntroductionMotivationWhat is Confusa?
2 Current statusState of software developmentcurrent policyOperational services
3 The futureDevelopment effortOperational
4 Roadmap
5 Wrapping up
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
MotivationWhat is Confusa?
Motivation
Grid authN nowadays requires the following:
1 Grid users need X.509 certificates
2 Grid initiatives need CAs to issue them
(1) is complicated, cumbersome and a pain for new users
(2) is costly, cumbersome and a pain for countries new to Grid
Both is time and energy consuming on both sides
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
MotivationWhat is Confusa?
Motivation cont’d
Currently an RA checks and forwards your identity uponrequest generation
But your identity has been checked!
By your university, employer...
Idea: Automatically get that information and constructcertificate from it
Goal: Remove human processing from certificate issuing
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
MotivationWhat is Confusa?
Motivation cont’d
Change the process
sign requestwhen having time
receive cert
Time(days)
1 2 3 4 5 6 7
user
RA
classic CA
RA ID check
grid−cert−request
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
MotivationWhat is Confusa?
Motivation cont’d
Change the process
Make cert request
1
Confusa
CA
Browser
Check requestsubject OKUser authN
Sign request
Install cert
Provide cert
Time2 3 4 5 6
(minutes)
Get useridentity
Identity
Federation
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
MotivationWhat is Confusa?
Layout
1 IntroductionMotivationWhat is Confusa?
2 Current statusState of software developmentcurrent policyOperational services
3 The futureDevelopment effortOperational
4 Roadmap
5 Wrapping up
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
MotivationWhat is Confusa?
What is Confusa?
1 ”Luzula Confusa”, a flower from
Spitsbergena
2 A web portal mapping attributes from
identity federations to X.509 certificates
aGraphic credits: http://herba.msu.ru
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
State of software developmentcurrent policyOperational services
Layout
1 IntroductionMotivationWhat is Confusa?
2 Current statusState of software developmentcurrent policyOperational services
3 The futureDevelopment effortOperational
4 Roadmap
5 Wrapping up
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
State of software developmentcurrent policyOperational services
Software
Released v0.2, working hard to hit v0.3.
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
State of software developmentcurrent policyOperational services
Layout
1 IntroductionMotivationWhat is Confusa?
2 Current statusState of software developmentcurrent policyOperational services
3 The futureDevelopment effortOperational
4 Roadmap
5 Wrapping up
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
State of software developmentcurrent policyOperational services
Policy
The CP/CPS is undergoing review and will hopefully passaccreditation soon.Add some tentative dates for when this will/might happen,EUGridPMA.
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
State of software developmentcurrent policyOperational services
Layout
1 IntroductionMotivationWhat is Confusa?
2 Current statusState of software developmentcurrent policyOperational services
3 The futureDevelopment effortOperational
4 Roadmap
5 Wrapping up
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
State of software developmentcurrent policyOperational services
Operational
We have no active production system running today, however, wehave one semi-official meta-stable system running both modes ofconfusa.
https://beta.confusa.org/luzula (standalone)
https://beta.confusa.org/confusa (online)
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
Development effortOperational
Layout
1 IntroductionMotivationWhat is Confusa?
2 Current statusState of software developmentcurrent policyOperational services
3 The futureDevelopment effortOperational
4 Roadmap
5 Wrapping up
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
Development effortOperational
Planned development efforts
We have a few ideas as to what we would like to add to Confusa.Once we go operational, we will enter a new cycle where a list ofnew features will be drawn in parallel with maintenance/bugfixingof the operational code-base.
Client application API (OAuth?)
Server-to-server API (bioportal, myproxy)
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
Development effortOperational
Layout
1 IntroductionMotivationWhat is Confusa?
2 Current statusState of software developmentcurrent policyOperational services
3 The futureDevelopment effortOperational
4 Roadmap
5 Wrapping up
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
Development effortOperational
Operational Roadmap
When is Confusa going to go operational at Tiljburg
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
The road so far
What have we achieved at different dates
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
The road ahead
Add some tentative dates to show planned progress.
Henrik Austad & Thomas Zangerl Confusa: past, present and future
IntroductionCurrent status
The futureRoadmap
Wrapping up
Software team
Henrik Austad & Thomas Zangerl
http://www.confusa.org/git://git.assembla.com/confusa.git
Henrik Austad & Thomas Zangerl Confusa: past, present and future