perfsonar development work

[Nina Jeliazkova <>]

Hi all,

One more security consideration - currently _any_ service can register 
_anything_ in a Lookup service just by sending the appropriate 
messages.  Could someone clarify, if the LS supports authentication and 
it is just switched off by default, or it is open for anybody by design ?

Best regards,
Nina

Nicolas Simar wrote:
> Hi Roman, Nina and David,
>
>
> Cándido Rodríguez Montes wrote:
> > Hi Nicolas and Loukik,
> > as perfSONAR MDM 3.0 is going to be installed by european NRENs, I 
> > would like to know if they are/will be deploy their services over 
> > http or https.
> > Https is not a requirement for the authN process but it is helpful 
> > for replying attacks, even the authN hasn't been part of perfSONAR!
>
> what would be the impact on the
> 1) the web-service development if we were to use https (none?)
> 2) on the visualisation (the way they access the web-service).?
>
> > So, in case perfSONAR services are reached by http, we should ask 
> > them to move it to https.
>
> Thanks a lot.
>
> Nicolas
>
>
> > Regards
> >
> > --
> > Cándido Rodríguez Montes E-mail:  
> > <mailto:>
> > Middleware warrior Tel:+34 955 05 66 13
> > Red.ES/RedIRIS
> > Edificio CICA
> > Avenida Reina Mercedes, s/n
> > 41012 Sevilla
> > SPAIN