Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

WLCG Transition from X.509 to Tokens. Status, Plans, and Timeline

Journal Article · · EPJ Web of Conferences (Online)
 [1];  [2];  [3];  [1];  [4];  [5];  [2];  [6];  [2];  [7];  [6];  [2]
  1. Science and Technology Facilities Council (UKRI-STFC) (United Kingdom)
  2. Istituto Nazionale di Fisica Nucleare (INFN-CNAF) (Italy)
  3. National Center for Supercomputing Applications (NCSA), Urbana, IL (United States)
  4. Brookhaven National Laboratory (BNL), Upton, NY (United States)
  5. Fermi National Accelerator Laboratory (FNAL), Batavia, IL (United States)
  6. European Organization for Nuclear Research (CERN), Geneva (Switzerland)
  7. Nationaal Instituut voor Subatomaire Fysica (Nikhef) (Netherlands)
+ Show Author Affiliations

Since 2017, the Worldwide LHC Computing Grid (WLCG) has been working towards enabling token-based authentication and authorization throughout its entire middleware stack. Following the initial publication of the WLCG Token Schema v1.0 in 2019, OAuth2.0 token workflows have been integrated across grid middleware. There are many complex challenges to be addressed before the WLCG can be end-to-end token-based, including not just technical hurdles but also interoperability with the wider authentication and authorization landscape. This paper presents the status of the WLCG coordination and deployment work, and how it relates to software providers and partner communities. The authors also detail how the WLCG token transition timeline has progressed, and how it has changed since its publication.

Research Organization:
Fermi National Accelerator Laboratory (FNAL), Batavia, IL (United States); Brookhaven National Laboratory (BNL), Upton, NY (United States)
Sponsoring Organization:
USDOE Office of Science (SC), High Energy Physics (HEP)
Grant/Contract Number:
AC02-07CH11359
OSTI ID:
2446957
Report Number(s):
FERMILAB-CONF--24-0578-CSAID; oai:inspirehep.net:2785768
Journal Information:
EPJ Web of Conferences (Online), Journal Name: EPJ Web of Conferences (Online) Vol. 295; ISSN 2100-014X
Publisher:
EDP SciencesCopyright Statement
Country of Publication:
United States
Language:
English

References (3)

Beyond X.509: token-based authentication and authorization for HEP journal January 2019
Secure Command Line Solution for Token-based Authentication journal January 2021
SciTokens: Capability-Based Secure Access to Remote Scientific Data
  • Withers, Alex; Bockelman, Brian; Weitzel, Derek
  • PEARC '18: Practice and Experience in Advanced Research Computing, Proceedings of the Practice and Experience on Advanced Research Computing https://doi.org/10.1145/3219104.3219135
conference July 2018

Similar Records

WLCG Token Usage and Discovery
Conference · Thu Dec 31 23:00:00 EST 2020 · EPJ Web Conf. · OSTI ID:1781073
WLCG transition from X.509 to Tokens: Progress and Outlook
Conference · Tue Dec 31 23:00:00 EST 2024 · EPJ Web Conf. · OSTI ID:3009878
WLCG Authorisation from X.509 to Tokens
Conference · Tue Dec 31 23:00:00 EST 2019 · EPJ Web Conf. · OSTI ID:1842723

Related Subjects

97 MATHEMATICS AND COMPUTING