International Workshop on Grid Computing Environments

Since the number of TeraGrid Science Gateways is expected to grow at least an order of magnitude in the next few years, a lightweight gateway deployment model is sought, one that facilitates growth but meets the security requirements of the TeraGrid. To this end, we present a new authorization model for science gateways based on the community account model. This authorization model significantly increases the information flow between the gateway and the resource provider, without requiring new wire protocols or extensive new middleware infrastructure. Instead, the model complements existing technology and promises to leverage emerging federated identity deployments directly