Design and Implementation of Web Forward Proxy with Shibboleth Authentication
نویسنده
چکیده
We propose a web forward proxy server with authentication method using Shibboleth. With this proxy Single Sign-On would benefit a user and also authentication using Shibboleth protocol solves problems in basic access authentication and digest access authentication supported by existing web forward proxy servers. In order to realize it, the proxy needs to recognize attributes of shibboleth protocol and session cookies and to modify session cookies. We implemented system and evaluated it by accessing to electronic journals from a test network. Keywords-Security Assertion Markup Language (SAML); Shibboleth; Single Sign-On (SSO); Web Forward Proxy
منابع مشابه
GridCertLib: Use Shibboleth to Access the Grid from Web Portals
This paper describes the design and implementation of GridCertLib, a Java library leveraging a Shibboleth-based authentication infrastructure and the SLCS online certificate signing service, to provide short-lived X.509 certificates and Grid proxies. The main use case envisioned for GridCertLib, is to provide seamless and secure access to Grid/X.509 certificates and proxies in web portals: when...
متن کاملAnApproach for Shibboleth and Grid Integration
Grid environments involve complex scenarios where PKI-based authentication and authorization might have to be delegated across n-tier security domains. Shibboleth is an identity management system designed to exchange attributes across domains for the primary purpose of authorization and its architecture is highly dependent on PKI. Supported by a Registry Service, we propose a non-intrusive appr...
متن کاملGrid Single Sign-On in CCLRC
This paper presents the latest results in on-going work on developing a single sign-on solution to access Grid resources. Since last year’s e-Science All Hands Meeting, we have adapted a Java terminal by integrating it with site authentication infrastructures to provide access to the NGS and CCLRC’s SCARF cluster, using MyProxy to manage the certificates and proxies that are essential for Grid ...
متن کاملUser and Machine Authentication and Authorization Infrastructure for Distributed Wireless Sensor Network Testbeds
The intention of an authentication and authorization infrastructure (AAI) is to simplify and unify access to different web resources. With a single login, a user can access web applications at multiple organizations. The Shibboleth authentication and authorization infrastructure is a standards-based, open source software package for web single sign-on (SSO) across or within organizational bound...
متن کاملShibboleth as a Tool for Authorized Access Control to the Subversion Repository System
Shibboleth is an architecture and protocol for allowing users to authenticate and be authorized to use a remote resource by logging into the identity management system that is maintained at their home institution. With Shibboleth, a federation of institutions can share resources among users and yet allow the administration of both the user access control to resources and the user identity and a...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2016