Cyber security for the Experiment Dashboard Framework

Project name

Cyber security for the Experiment Dashboard Framework

Project description

The Experiment Dashboard provides a wide range of applications for monitoring of the LHC computing activities on the WLCG infrastructure. Certain policies define privileges for data access, recording and modifications. The goal of the project is to improve the authentication and authorisation system for the Experiment Dashboard Applications.

Currently the authorisation in the Dashboard applications is based on the User’s credentials recorded in the GRID certificate. Most of applications use the X509 certificates to grant different permissions to various categories of users (like admin rights, or creation of the new metrics).
The main task of this project is to Introduce Single Sign On for authentication, and make it easy to use for any
Dashboard application.

Required skills

Python, interest in cyber security

Learning experience

The student will learn about various options for the implementation of the authentication/authorization for the web applications and will gain experience in choosing and implementing the most appropriate authentication/authorization technique, as well as experience in testing, deployment and validation of the authentication/authorization components.

Project duration

4 months

Project area

Monitoring of the distributed infrastructure

Contact for further details

pablo.saiz@cern.ch

CERN group

IT-SDC

Status

Accomplished
Reference to the project tracker
https://its.cern.ch/jira/secure/RapidBoard.jspa?rapidView=3514
Submitted by Catharine Noble on Friday, January 15, 2016 - 11:42.
Student info
Student name

Nguen-Phong

University

La Haute Ecole d'Ingénierie et de Gestion du Canton de Vaud (HEIG-VD)

CERN supervisor

Pablo Saiz

Thesis
Thesis type
Bachelor
Project started 01 Mar 2015
Project finished 31 Mar 2015
Defence date
2015-09-15
Defence status
success
Friday, January 15, 2016 - 11:42