/[volute]/trunk/projects/grid/sso/doc/SSOAuthMech.tex
ViewVC logotype

Diff of /trunk/projects/grid/sso/doc/SSOAuthMech.tex

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 3932 by msdemlei, Wed Mar 1 12:58:34 2017 UTC revision 3933 by taffoni, Mon Apr 10 09:35:56 2017 UTC
# Line 34  Line 34 
34    
35  \section*{Acknowledgments}  \section*{Acknowledgments}
36    
37  This document derives from discussions among the Grid and Web Services working-group of IVOA. It is particularly informed by prototypes built by Matthew Graham (Caltech/US-NVO), Paul Harrison (ESO/EuroVO), David Morris (Cambridge/AstroGrid) and Raymond Plante (NCSA/US-NVO). The prior art for the use of proxy certificates comes from the Globus Alliance.  This document derives from discussions among the Grid and Web Services working-group of IVOA. It is particularly informed by prototypes built by Matthew Graham (Caltech/US-NVO), Paul Harrison (ESO/EuroVO), David Morris (Cambridge/AstroGrid), Raymond Plante (NCSA/US-NVO) Brian Major and  Donovan Patrick Dowler (CADC) and Giuliano Taffoni (INAF-VObs.it).
38  This document has been developed with support from the National Science Foundation's Information Technology Research Program under Cooperative Agreement AST0122449 with The Johns Hopkins University, from the UK Particle Physics and Astronomy Research Council (PPARC) and from the European Commission's Sixth Framework Program via the Optical Infrared Coordination Network (OPTICON).  The prior art for the use of proxy certificates comes from the Globus Alliance.
39    This document has been developed with support from the National Science Foundation's Information Technology Research Program  with The Johns Hopkins University, from the UK Particle Physics and Astronomy Research Council (PPARC) and from the European Commission's Work programme FP7 via the  CoSADIE project and the H2020 via the ASTERICS project.
40    
41    
42  \section*{Conformance-related definitions}  \section*{Conformance-related definitions}
# Line 180  Line 181 
181  HTTP provides a simple challenge-response authentication framework that can be used by a server to challenge  HTTP provides a simple challenge-response authentication framework that can be used by a server to challenge
182  a client request and by a   client to provide authentication information.  a client request and by a   client to provide authentication information.
183  The HTTP authentication framework does not define a single mechanism for maintaining the confidentiality of credentials.  The HTTP authentication framework does not define a single mechanism for maintaining the confidentiality of credentials.
184  HTTP depends on the security properties of the underlying transport-  or session-level connection to provide  HTTP depends on the security properties of the underlying transport  or session-level connection to provide
185  confidential transmission of   header fields. Connection secured with TLS are RECOMMENDED prior to exchanging any credentials.  confidential transmission of   header fields. Connection secured with TLS are RECOMMENDED prior to exchanging any credentials.
186    
187  The ``HTTP basic authentication'' SHOULD be used with particular attention as sensible  The ``HTTP basic authentication'' SHOULD be used with particular attention as sensible

Legend:
Removed from v.3932  
changed lines
  Added in v.3933

msdemlei@ari.uni-heidelberg.de
ViewVC Help
Powered by ViewVC 1.1.26