In order to do a secure deployment of OGSA-DAI on to GT4.2 I found that there were a number of changes to what is described in our documentation (mainly pertaining to the security descriptors). Thus in:
Posts Tagged ‘Security’
Secure Deployment of OGSA-DAI on to GT4.2
Wednesday, August 19th, 2009How to configure OGSA-DAI 3.0/1 GT with transport-level security
Thursday, March 26th, 2009After one of our users encountered a number of problems trying to deploy OGSA-DAI 3 GT on Tomcat with transport-level security enabled I tried to do it myself. The problem with configuring GT security is that there are a number of options available at each stage e.g. transport-level security or message-level security, encryption or integrity etc. So this is just one path through these
http://www.ogsadai.org.uk/documentation/ogsadai3howtos/ogsadai3gttls.php
Cheers,
mike
New Security Documentation from OMII-UK
Thursday, January 22nd, 2009OMII-UK’s security documentation provides an introduction to Web Services security, and a description of the security models typically used by OMII-UK software. Visit the OMII-UKĀ security webpage to download the new documentation.
Security is a fundamental concern for the users of any communication system. By allowing access to resources on an unprecedented scale, Web Services necessitate stringent and reliable security. There are many different security models available, all of which have their own advantages and drawbacks. It is necessary to choose the most appropriate security model based on an assessment of the type of service provided, the type of information used and the needs of the user and service provider.
OMII-UK provides software for e-Researchers from all research disciplines, so our software catalogue covers a wide range of functionality and a very wide range of security models. What’s more, security means different things to different people: it depends on the type of Web Service under consideration, the type of information being handled (if any) and the needs of the user and provider. Our security documentation provides a straightforward overview of this complicated problem.