Cyber security for the Experiment Dashboard Framework

Project name

Cyber security for the Experiment Dashboard Framework

Project description

The Experiment Dashboard provides a wide range of applications for monitoring of the LHC computing activities on the WLCG infrastructure. Certain policies define privileges for data access, recording and modifications. The goal of the project is to improve the authentication and authorisation system for the Experiment Dashboard Applications.

Currently the authorisation in the Dashboard applications is based on the User’s credentials recorded in the GRID certificate. Most of applications use the X509 certificates to grant different permissions to various categories of users (like admin rights, or creation of the new metrics).
The main task of this project is to Introduce Single Sign On for authentication, and make it easy to use for any
Dashboard application.

Required skills

Python, interest in cyber security

Learning experience

The student will learn about various options for the implementation of the authentication/authorization for the web applications and will gain experience in choosing and implementing the most appropriate authentication/authorization technique, as well as experience in testing, deployment and validation of the authentication/authorization components.

Project duration

4 months

Project area

Monitoring of the distributed infrastructure

Contact for further details

pablo.saiz@cern.ch

References

CERN group

IT-SDC

Status

Accomplished
Student Information
Student name: 
Nguen-Phong
University: 
La Haute Ecole d'Ingénierie et de Gestion du Canton de Vaud (HEIG-VD)
CERN supervisor: 
Pablo Saiz
Thesis type: 
Bachelor
Project started: 
01 Mar 2015
Project finished: 
31 Mar 2015
Defence date: 
15 Sep 2015
Defence status: 
success

Reference to the project tracker

https://its.cern.ch/jira/secure/RapidBoard.jspa?rapidView=3514

You are here