This page is under construction. Information here may change.

Contact points

How to contact people when you have a question.

Mailing list

For implementation neutral questions about delegation, please write to emi-jra1-sec-delegation mailing list. Details about this list are available from the mailing list's list info page.

A description of GSD

GSD is the GridSite Delegation. It is an API that allows a client to create a public/private key-pair on some remote machine and have the client sign the public key, so forming a proxy certificate for that user. It does this securely; i.e., without transferring a private key over the network. The API also supports some operations to manage the delegated credential, such as renewing or deleting it.

The current version of GSD is 2.0.0.

The protocol is described more completely within the EGEE GSD page. The semantics of these operations are described in the interface documentation.

The WSDL for GSD is availabel from org.glite.security.delegation-interface package in the gLite repository.

Open issues in GSD

There are a number of issues that people have raised about GSD. The delegation questions page describes these questions with corresponding answers or current understanding.

Software libraries that implement GSD.

NB. This section is incomplete.

There are several projects in the gLite CVS repository (:pserver:anonymous@glite.cvs.cern.ch:/cvs/glite) that provide some support for GSD or delegation.

These projects provide support for GSD v2.0.0

• org.glite.security.delegation-java Java library to support the functionality needed for a GDS 2.0.0 client or server.
• org.glite.data.delegation-cli C client library and example CLI. Seems to be compliant with GDS 2.0.0

-- PaulMillar - 01-Dec-2010