IVOA Recommendation: SSO - Single-Sign-On Profile: Authentication   Mechanisms Version 2.0

Giuliano Taffoni; Andr\'e Schaaff; Guy Rixon; Brian Major

arXiv:1709.00171·astro-ph.IM·June 5, 2019

IVOA Recommendation: SSO - Single-Sign-On Profile: Authentication Mechanisms Version 2.0

Giuliano Taffoni, Andr\'e Schaaff, Guy Rixon, Brian Major

PDF

TL;DR

This paper details standardized client-server authentication mechanisms for the IVOA single-sign-on profile, referencing existing standards to ensure interoperability and security in astronomical data services.

Contribution

It defines normative rules for implementing various authentication methods within the IVOA SSO profile, enhancing security and compatibility.

Findings

01

Standardized authentication mechanisms specified

02

Normative implementation rules provided

03

Enhances interoperability for astronomical data access

Abstract

Approved client-server authentication mechanisms are described for the IVOA single-sign-on profile: No Authentication; HTTP Basic Authentication; TLS with passwords; TLS with client certificates; Cookies; Open Authentication; Security Assertion Markup Language; OpenID. Normative rules are given for the implementation of these mechanisms, mainly by reference to pre-existing standards. The Authorization mechanisms are out of the scope of this document.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.