The goal of the SciAuth project is to improve the usability and interoperability of the security credentials that scientists use to access NSF cyberinfrastructure, thereby improving the productivity of the many scientific collaborations supported by NSF cyberinfrastructure. SciAuth does not propose a new credential mechanism for NSF cyberinfrastructure, but rather it provides community engagement, support for coordinated adoption of community standards, assistance with software integration, security analysis and threat modeling, training, and workforce development to enable improved interoperability and usability for security credentials across NSF cyberinfrastructure. SciAuth aims to help the community realize the benefits of an interoperable, capability-based ecosystem when transitioning between credential technologies.
Usable mechanisms for privilege management are critical for enabling productive scientific collaborations across a diverse and distributed scientific cyberinfrastructure ecosystem. The SciTokens project demonstrated that the use of JWTs with the IETF OAuth standard for privilege delegation provides a breakthrough for interoperable, least-privilege resource sharing in scientific collaborations. Now our challenge is to make that breakthrough technology usable by scientists across disciplines, project sizes, and software ecosystems by enabling coordinated deployments across cyberinfrastructures in active use today.
To join the email@example.com mailing list, send email to firstname.lastname@example.org. The list archives are public.
The SciAuth project will be participating in multiple sessions at the 2021 NSF Cybersecurity Summit, including a plenary presentation about the SciAuth project and a workshop on Token-Based Authentication and Authorization. The Summit will be online the week of October 11. Registration will be required, but there will be no registration fee.
SciAuth PI Jim Basney presented about CILogon project updates for IAM Online on July 27 at 2pm (Eastern), including the latest about CILogon support for SciTokens. The webinar recording is available at https://youtu.be/7F-q2HRRGUE.
SciAuth co-PI Brian Bockelman presented the talk “A capability-based authorization infrastructure for distributed High Throughput Computing” on Monday July 26th at 11am (Eastern). See the Trusted CI blog for details. The recording is available at https://youtu.be/VTnGuBL6PYI.
The SciAuth project will start on July 1, 2021. We’ve posted our SciAuth Project Proposal to the site.
subscribe via RSS