perfsonar development work

[Cándido Rodríguez Montes <>]

Hi Nina,

El 31/05/2008, a las 7:53, Nina Jeliazkova escribió:

Hi all,

One more security consideration - currently _any_ service can register _anything_ in a Lookup service just by sending the appropriate messages.  Could someone clarify, if the LS supports authentication and it is just switched off by default, or it is open for anybody by design ?

I guess LS supports authentication since it's developed using perfSONAR-base. But I don't have the answer if LS should be open for anybody or not.

Regards

Best regards,

Nina

Nicolas Simar wrote:

Hi Roman, Nina and David,

Cándido Rodríguez Montes wrote:

Hi Nicolas and Loukik,

as perfSONAR MDM 3.0 is going to be installed by european NRENs, I would like to know if they are/will be deploy their services over http or https.

Https is not a requirement for the authN process but it is helpful for replying attacks, even the authN hasn't been part of perfSONAR!

what would be the impact on the

1) the web-service development if we were to use https (none?)

2) on the visualisation (the way they access the web-service).?

So, in case perfSONAR services are reached by http, we should ask them to move it to https.

Thanks a lot.

Nicolas

Regards

-- 

Cándido Rodríguez Montes E-mail: <>

Middleware warrior Tel:+34 955 05 66 13

Red.ES/RedIRIS

Edificio CICA

Avenida Reina Mercedes, s/n

41012 Sevilla

SPAIN

--

Cándido Rodríguez Montes E-mail: 

Middleware warrior Tel:+34 955 05 66 13

Red.ES/RedIRIS

Edificio CICA

Avenida Reina Mercedes, s/n

41012 Sevilla

SPAIN