Tuesday, March 11, 2014

CTSC DataONE engagement: identity management system review

In the CTSC-DataONE engagement, CTSC and DataONE staff worked together to perform an architectural review of DataONE's identity management system. DataONE (Data Observation Network for Earth) is "a distributed framework and sustainable cyberinfrastructure that meets the needs of science and society for open, persistent, robust, and secure access to well-described and easily discovered Earth observational data."

CTSC's overall assessment of the DataONE identity management system was positive. Strengths include support for authentication using federated identities, equivalence mapping of multiple identities for the same person, and a well-specified access policy language. CTSC made recommendations for improvements in the areas of system documentation, architecture, and operations. See the report at http://hdl.handle.net/2022/16926 for more details.

CTSC's engagements are inherently collaborative. Many thanks to the DataONE team, and specifically Ben Leinfelder, Bruce Wilson, and Dave Vieglais for the collaborative effort that made this engagement possible.

For more about how CTSC helps NSF projects visit http://trustedci.org/howwehelp.