2004 UC Proceedings Abstract
 GEON: Standards-Based Secure Invocation of ArcWeb Services Track: New Technology and System Integration Author(s): Ashraf Memon, Chaitan Baru, Ilya Zaslavsky Within the Geosciences Network (GEON) project, we implemented a secure mechanism of data interchange across distributed spatial databases and services, a common requirement in many geographic applications. The paper explores OGSI-based grid services that implement Grid Security Invocations (GSI), and describes an application of this model to secure invocation of ArcWeb Services. Currently, ArcWeb Services use single sign-on security model, in which, on initial authentication, the user is assigned a time-limited numeric token that is passed along with the request message and used to unlock an ArcWeb Service. We implemented a GSI authentication wrapper on top of Esri's token-based authentication mechanism. To invoke an ArcWeb service on the secure grid, the user first requests a time-limited proxy certificate by providing a user name and passphrase to a certificate authority. This certificate, which is transmitted inside SOAP headers of all service requests, is verified each time before a service is invoked. Ashraf Memon San Diego Supercomputer Center Data and Knowledge Systems 9500, Gilman Dr, MC 0505 La Jolla , CA 92093 US Phone: 858 822 0017 E-mail: amemon@sdsc.edu Chaitan Baru San Diego Supercomputer Center Data and Knowledge Systems 9500, Gilman Dr, MC 0505 La Jolla , CA 92093 US Phone: 858 822 0017 E-mail: baru@sdsc.edu Ilya Zaslavsky San Diego Supercomputer Center Data and Knowledge Systems 9500, Gilman Dr, MC 0505 La Jolla , CA 92093 US Phone: 858 534 8342 E-mail: zaslavsk@sdsc.edu |
|||||
