EGI Document 2978-v4

EGI-Engage D6.11 Security toolset release for BBMRI-ERIC

Permalink:
https://documents.egi.eu/document/2978
Document #:
EGI-doc-2978-v4
Document type:
Deliverable
Status:
DRAFT
Submitted by:
Malgorzata Krakowian
Updated by:
Malgorzata Krakowian
Document Created:
14 Nov 2016, 14:03
Contents Revised:
13 Dec 2016, 14:59
DB Info Revised:
13 Dec 2016, 14:59
Viewable by:
  • Public document
Modifiable by:
Other Versions:
EGI-doc-2978-v3
09 Dec 2016, 22:57
EGI-doc-2978-v2
14 Nov 2016, 14:14
EGI-doc-2978-v1
14 Nov 2016, 14:03
Abstract:
This deliverable describes the security toolset for BiobankCloud and the extensions performed in EGI-Engage since February 2016, the release of milestone M6.2 (Security and privacy requirements and secure storage architectural design are agreed). BiobankCloud builds on a Hadoop distribution, called Hops (www.hops.io), which was developed in the BiobankCloud project, to provide scalable storage and processing for genomic and Biobank data. BiobankCloud provides a web-based user interface for accessing and processing data stored in Hops that already provides 2-factor authentication. In this deliverable, we present extensions to support federated authentication with Shibboleth, which will enable easier integration of BiobankCloud in large organizations that run Shibboleth (such as EGI, universities, and Biobanks). Our solution is based on implementing an Apache webserver as a service provider (SP) that facilitates authentication with a Shibboleth Identity Provider (IDP) and as a proxy-frontend to BiobankCloud. We also integrate our shibboleth extensions with both the UI (Hopsworks) and our platform for automated installation based on Karamel and Chef.
Files in Document:
Authors:

DocDB Version 8.6.1, contact Document Database Administrators