Changes between Version 1 and Version 2 of Aaa
- Timestamp:
- Sep 30, 2010, 3:57:21 PM (14 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Aaa
v1 v2 1 == AAA overview == 2 Access control is an optional service on the SENSEI test platform. Each public interface in the system can be access controlled or not, at the owner's discretion. 3 Two basic components are required to enable access control: 4 * an identity provider, which in the SENSEI architecture is a Security Token Service 5 * an access control decision making function, which in the SENSEI architecture is a AAA block 1 6 2 == AAA overview == 7 [[PageOutline(2-3,Table of Contents,inline)]] 3 8 4 Access control is an optional service on the SENSEI test platform. Each public interface can be access controlled or not, at the owner's discretion. 5 Access control 9 == Identity provider: STS == 10 A Security Token Service needs to be deployed for each security domain. 11 === Deployment === 12 tbd 13 === Management === 14 tdb, including peering. 6 15 7 == AAA infrastructure provider == 8 === Identity provider: STS === 16 == Access control decision making: AAA block == 17 A system provider MAY choose to deploy a AAA block. If it does not, resource and framework component providers wishing to use access control will have to provide their own. 18 === Deployment === 9 19 10 === Access control decision making: AAA block === 11 A system provider MAY choose to deploy an access control decision making function, described in the SENSEI AAA architecture as the AAA block. 20 === Management === 21 ==== Handling access controlled entities ==== 22 * registering policies 23 tbd 24 * what policies should contain 25 tbd 26 ==== Accounting interface ==== 27 * what it does 28 tbd 29 * how to view / reset / etc 30 tbd