2004 UC Proceedings Abstract

back
   Back



GEON: Standards-Based Secure Invocation of ArcWeb Services
Track: New Technology and System Integration
Author(s): Ashraf Memon, Chaitan Baru, Ilya Zaslavsky

Within the Geosciences Network (GEON) project, we implemented a secure mechanism of data interchange across distributed spatial databases and services, a common requirement in many geographic applications. The paper explores OGSI-based grid services that implement Grid Security Invocations (GSI), and describes an application of this model to secure invocation of ArcWeb Services. Currently, ArcWeb Services use single sign-on security model, in which, on initial authentication, the user is assigned a time-limited numeric token that is passed along with the request message and used to unlock an ArcWeb Service. We implemented a GSI authentication wrapper on top of Esri's token-based authentication mechanism. To invoke an ArcWeb service on the secure grid, the user first requests a time-limited proxy certificate by providing a user name and passphrase to a certificate authority. This certificate, which is transmitted inside SOAP headers of all service requests, is verified each time before a service is invoked.



Ashraf Memon
San Diego Supercomputer Center
Data and Knowledge Systems
9500, Gilman Dr, MC 0505
La Jolla , CA 92093
US
Phone: 858 822 0017
E-mail: amemon@sdsc.edu

Chaitan Baru
San Diego Supercomputer Center
Data and Knowledge Systems
9500, Gilman Dr, MC 0505
La Jolla , CA 92093
US
Phone: 858 822 0017
E-mail: baru@sdsc.edu

Ilya Zaslavsky
San Diego Supercomputer Center
Data and Knowledge Systems
9500, Gilman Dr, MC 0505
La Jolla , CA 92093
US
Phone: 858 534 8342
E-mail: zaslavsk@sdsc.edu