Changes between Version 1 and Version 2 of Aaa

Timestamp:

Sep 30, 2010, 3:57:21 PM (14 years ago)

Author:

tim.bauge

Comment:

--

Aaa

@@ +1 @@
+== AAA overview ==
+Access control is an optional service on the SENSEI test platform. Each public interface in the system can be access controlled or not, at the owner's discretion. 
+Two basic components are required to enable access control:
+* an identity provider, which in the SENSEI architecture is a Security Token Service
+* an access control decision making function, which in the SENSEI architecture is a AAA block
 
-== AAA overview ==
+[[PageOutline(2-3,Table of Contents,inline)]]
 
-Access control is an optional service on the SENSEI test platform. Each public interface can be access controlled or not, at the owner's discretion.
-Access control
+== Identity provider: STS ==
+A Security Token Service needs to be deployed for each security domain. 
+=== Deployment ===
+tbd
+=== Management ===
+tdb, including peering.
 
-== AAA infrastructure provider ==
-=== Identity provider: STS ===
+== Access control decision making: AAA block ==
+A system provider MAY choose to deploy a AAA block. If it does not, resource and framework component providers wishing to use access control will have to provide their own.
+=== Deployment ===
 
-=== Access control decision making: AAA block ===
-A system provider MAY choose to deploy an access control decision making function, described in the SENSEI AAA architecture as the AAA block.
+=== Management ===
+==== Handling access controlled entities ====
+* registering policies
+tbd
+* what policies should contain
+tbd
+==== Accounting interface ====
+* what it does
+tbd
+* how to view / reset / etc
+tbd