@techreport{jwt,
author = {Michael B. Jones and John Bradley and Nat Sakimura},
title = {{The JSON Web Token RFC}},
type = {RFC},
number = 7519,
year = {2015},
month = {May},
issn = {2070-1721},
publisher = {IETF Tools},
institution = {IETF Tools},
url = {https://tools.ietf.org/rfc/rfc7519.txt}
}
@techreport{oauth,
author = {Dick Hardt},
title = {{The OAuth 2.0 Authorization Framework}},
type = {RFC},
number = 6749,
year = {2012},
month = {October},
issn = {2070-1721},
publisher = {IETF Tools},
institution = {IETF Tools},
url = {https://tools.ietf.org/rfc/rfc6749.txt}
}
@techreport{oauth-token-exchange,
author = {Michael B. Jones and Anthony Nadalin and Brian Campbell
and John Bradley and Chuck Mortimore},
title = {{OAuth 2.0 Token Exchange}},
type = {Internet-Draft},
number = "draft-ietf-oauth-token-exchange-16.txt",
year = {2019},
month = {April},
day = {22},
institution = {IETF Tools},
url = {https://tools.ietf.org/id/draft-ietf-oauth-token-exchange-16.txt}
}
@techreport{oauth-metadata,
author = {Michael B. Jones and Nat Sakimura and John Bradley},
title = {{OAuth 2.0 Authorization Server Metadata}},
type = {RFC},
number = 8414,
year = {2018},
month = {June},
issn = {2070-1721},
publisher = {IETF Tools},
institution = {IETF Tools},
url = {https://tools.ietf.org/rfc/rfc8414.txt}
}
@online{oidc,
author = {{OpenID Foundation}},
title = {{The OpenID Connect identity layer}},
year = 2018,
url = {https://openid.net/connect/},
urldate = {2018-12-03}
}
@online{oidc-discovery,
author = {{Nat Sakimura and John Bradley and Michael B. Jones and Edmund Jay}},
title = {{The OpenID Connect discovery specification}},
year = 2014,
url = {https://openid.net/specs/openid-connect-discovery-1_0.html},
urldate = {2018-12-03}
}
@online{igtf,
title = {{The Interoperable Global Trust Federation}},
url = {https://www.igtf.net/},
urldate = {2018-12-03}
}
@online{x509,
title = {{X.509}},
url = {https://en.wikipedia.org/wiki/X.509},
urldate = {2018-12-03}
}
@article{GSI,
author = {Von Welch and
Frank Siebenlist and
Ian T. Foster and
John Bresnahan and
Karl Czajkowski and
Jarek Gawor and
Carl Kesselman and
Sam Meder and
Laura Pearlman and
Steven Tuecke},
title = {Security for Grid Services},
journal = {CoRR},
volume = {cs.CR/0306129},
year = {2003},
url = {http://arxiv.org/abs/cs.CR/0306129},
timestamp = {Mon, 13 Aug 2018 16:49:07 +0200},
biburl = {https://dblp.org/rec/bib/journals/corr/cs-CR-0306129},
bibsource = {dblp computer science bibliography, https://dblp.org}
}
@software{VOMS,
author = {Vincenzo Ciaschini and Valerio Venturi and Andrea Ceccanti},
title = {{The Virtual Organisation Membership Service}},
doi = {10.5281/zenodo.1875371},
url = {https://doi.org/10.5281/zenodo.1875371}
}
@online{edugain,
title = {{eduGAIN interfederation website}},
url = {http://www.geant.org/Services/Trust_identity_and_security/eduGAIN},
urldate = {2018-12-03}
}
@online{google,
title = {{The Google Identity Platform}},
url = {https://developers.google.com/identity/},
urldate = {2018-12-03}
}
@online{scim,
title = {{The System for Cross Domain Identity Management website}},
url = {http://www.simplecloud.info/},
urldate = {2018-12-03}
}
@article{indigo-aai-chep2016,
author={Andrea Ceccanti and Marcus Hardt and Bas Wegh and A. Paul Millar
and Marco Caberletti and Enrico Vianello and Slavek Licehammer},
title={{The INDIGO-Datacloud Authentication and Authorization Infrastructure}},
journal={Journal of Physics: Conference Series},
volume={898},
number={10},
pages={102016},
url={http://iopscience.iop.org/article/10.1088/1742-6596/898/10/102016},
year={2017}
}
@software{iam,
author = {Andrea Ceccanti and Enrico Vianello and Marco Caberletti},
title = {{INDIGO Identity and Access Management (IAM)}},
doi = {10.5281/zenodo.1874790},
url = {https://doi.org/10.5281/zenodo.1874790}
}
@software{voms-admin,
author = {Andrea Ceccanti},
title = {{The VOMS administration service}},
doi = {10.5281/zenodo.1875616},
url = {https://doi.org/10.5281/zenodo.1875616}
}
@misc{cwp,
Author = {{HEP Software Foundation} and Johannes Albrecht and Antonio
Augusto {Alves} Jr and Guilherme Amadio and Giuseppe Andronico and Nguyen
Anh-Ky and Laurent Aphecetche and John Apostolakis and Makoto Asai and Luca
Atzori and Marian Babik and Giuseppe Bagliesi and Marilena Bandieramonte
and Sunanda Banerjee and Martin Barisits and Lothar A. T. Bauerdick and
Stefano Belforte and Douglas Benjamin and Catrin Bernius and Wahid Bhimji
and Riccardo Maria Bianchi and Ian Bird and Catherine Biscarat and Jakob
Blomer and Kenneth Bloom and Tommaso Boccali and Brian Bockelman and Tomasz
Bold and Daniele Bonacorsi and Antonio Boveia and Concezio Bozzi and Marko
Bracko and David Britton and Andy Buckley and Predrag Buncic and Paolo
Calafiura and Simone Campana and Philippe Canal and Luca Canali and
Gianpaolo Carlino and Nuno Castro and Marco Cattaneo and Gianluca Cerminara
and Javier Cervantes Villanueva and Philip Chang and John Chapman and Gang
Chen and Taylor Childers and Peter Clarke and Marco Clemencic and Eric
Cogneras and Jeremy Coles and Ian Collier and David Colling and Gloria
Corti and Gabriele Cosmo and Davide Costanzo and Ben Couturier and Kyle
Cranmer and Jack Cranshaw and Leonardo Cristella and David Crooks and
Sabine Crépé-Renaudin and Robert Currie and Sünje Dallmeier-Tiessen and
Kaushik De and Michel De Cian and Albert De Roeck and Antonio Delgado Peris
and Frédéric Derue and Alessandro Di Girolamo and Salvatore Di Guida and
Gancho Dimitrov and Caterina Doglioni and Andrea Dotti and Dirk Duellmann
and Laurent Duflot and Dave Dykstra and Katarzyna Dziedziniewicz-Wojcik and
Agnieszka Dziurda and Ulrik Egede and Peter Elmer and Johannes Elmsheuser
and V. Daniel Elvira and Giulio Eulisse and Steven Farrell and Torben
Ferber and Andrej Filipcic and Ian Fisk and Conor Fitzpatrick and José Flix
and Andrea Formica and Alessandra Forti and Giovanni Franzoni and James
Frost and Stu Fuess and Frank Gaede and Gerardo Ganis and Robert Gardner
and Vincent Garonne and Andreas Gellrich and Krzysztof Genser and Simon
George and Frank Geurts and Andrei Gheata and Mihaela Gheata and Francesco
Giacomini and Stefano Giagu and Manuel Giffels and Douglas Gingrich and
Maria Girone and Vladimir V. Gligorov and Ivan Glushkov and Wesley Gohn and
Jose Benito Gonzalez Lopez and Isidro González Caballero and Juan R.
González Fernández and Giacomo Govi and Claudio Grandi and Hadrien Grasland
and Heather Gray and Lucia Grillo and Wen Guan and Oliver Gutsche and
Vardan Gyurjyan and Andrew Hanushevsky and Farah Hariri and Thomas Hartmann
and John Harvey and Thomas Hauth and Benedikt Hegner and Beate Heinemann
and Lukas Heinrich and Andreas Heiss and José M. Hernández and Michael
Hildreth and Mark Hodgkinson and Stefan Hoeche and Burt Holzman and Peter
Hristov and Xingtao Huang and Vladimir N. Ivanchenko and Todor Ivanov and
Jan Iven and Brij Jashal and Bodhitha Jayatilaka and Roger Jones and Michel
Jouvin and Soon Yung Jun and Michael Kagan and Charles William Kalderon and
Meghan Kane and Edward Karavakis and Daniel S. Katz and Dorian Kcira and
Oliver Keeble and Borut Paul Kersevan and Michael Kirby and Alexei
Klimentov and Markus Klute and Ilya Komarov and Dmitri Konstantinov and
Patrick Koppenburg and Jim Kowalkowski and Luke Kreczko and Thomas Kuhr and
Robert Kutschke and Valentin Kuznetsov and Walter Lampl and Eric Lancon and
David Lange and Mario Lassnig and Paul Laycock and Charles Leggett and
James Letts and Birgit Lewendel and Teng Li and Guilherme Lima and Jacob
Linacre and Tomas Linden and Miron Livny and Giuseppe Lo Presti and
Sebastian Lopienski and Peter Love and Adam Lyon and Nicolò Magini and
Zachary L. Marshall and Edoardo Martelli and Stewart Martin-Haugh and Pere
Mato and Kajari Mazumdar and Thomas McCauley and Josh McFayden and Shawn
McKee and Andrew McNab and Rashid Mehdiyev and Helge Meinhard and Dario
Menasce and Patricia Mendez Lorenzo and Alaettin Serhan Mete and Michele
Michelotto and Jovan Mitrevski and Lorenzo Moneta and Ben Morgan and
Richard Mount and Edward Moyse and Sean Murray and Armin Nairz and Mark S.
Neubauer and Andrew Norman and Sérgio Novaes and Mihaly Novak and Arantza
Oyanguren and Nurcan Ozturk and Andres Pacheco Pages and Michela Paganini
and Jerome Pansanel and Vincent R. Pascuzzi and Glenn Patrick and Alex
Pearce and Ben Pearson and Kevin Pedro and Gabriel Perdue and Antonio
Perez-Calero Yzquierdo and Luca Perrozzi and Troels Petersen and Marko
Petric and Andreas Petzold and Jónatan Piedra and Leo Piilonen and Danilo
Piparo and Jim Pivarski and Witold Pokorski and Francesco Polci and Karolos
Potamianos and Fernanda Psihas and Albert Puig Navarro and Günter Quast and
Gerhard Raven and Jürgen Reuter and Alberto Ribon and Lorenzo Rinaldi and
Martin Ritter and James Robinson and Eduardo Rodrigues and Stefan Roiser
and David Rousseau and Gareth Roy and Grigori Rybkine and Andre Sailer and
Tai Sakuma and Renato Santana and Andrea Sartirana and Heidi Schellman and
Jaroslava Schovancová and Steven Schramm and Markus Schulz and Andrea
Sciabà and Sally Seidel and Sezen Sekmen and Cedric Serfon and Horst
Severini and Elizabeth Sexton-Kennedy and Michael Seymour and Davide
Sgalaberna and Illya Shapoval and Jamie Shiers and Jing-Ge Shiu and Hannah
Short and Gian Piero Siroli and Sam Skipsey and Tim Smith and Scott Snyder
and Michael D. Sokoloff and Panagiotis Spentzouris and Hartmut Stadie and
Giordon Stark and Gordon Stewart and Graeme A. Stewart and Arturo Sánchez
and Alberto Sánchez-Hernández and Anyes Taffard and Umberto Tamponi and
Jeff Templon and Giacomo Tenaglia and Vakhtang Tsulaia and Christopher
Tunnell and Eric Vaandering and Andrea Valassi and Sofia Vallecorsa and
Liviu Valsan and Peter Van Gemmeren and Renaud Vernet and Brett Viren and
Jean-Roch Vlimant and Christian Voss and Margaret Votava and Carl Vuosalo
and Carlos Vázquez Sierra and Romain Wartel and Gordon T. Watts and Torre
Wenaus and Sandro Wenzel and Mike Williams and Frank Winklmeier and
Christoph Wissing and Frank Wuerthwein and Benjamin Wynne and Zhang Xiaomei
and Wei Yang and Efe Yazgan}, Title = {{A Roadmap for HEP Software and
Computing R\&D for the 2020s}}, Year = {2017}, Eprint = {arXiv:1712.06982},
}
@online{scitokens,
title = {{The SciTokens project}},
url = {https://scitokens.org},
urldate = {2018-12-03}
}
@online{kubernetes,
title = {{The Kubernetes container orchestrator}},
url = {https://kubernetes.io},
urldate = {2018-12-03}
}
@online{openstack,
title = {{The Openstack IAAS framework}},
url = {https://www.openstack.org},
urldate = {2018-12-03}
}
@online{fts,
title = {{The CERN File Transfer Service}},
url = {https://fts.web.cern.ch},
urldate = {2018-12-03}
}
@online{storm,
title = {{The StoRM storage element}},
url = {https://italiangrid.github.io/storm},
urldate = {2019-05-15}
}
@online{dcache,
title = {{The XRootD software framework}},
url = {https://dcache.org},
urldate = {2019-05-15}
}
@online{xrootd,
title = {{The dCache storage solution}},
url = {http://xrootd.org/},
urldate = {2019-05-15}
}
@online{dpm,
title = {{DPM - Disk Pool Manager}},
url = {http://lcgdm.web.cern.ch/dpm},
urldate = {2019-05-15}
}
@online{eos,
title = {{EOS Open Storage}},
url = {http://eos.web.cern.ch/},
urldate = {2019-05-15}
}
@online{oidc-rande,
title = {{The OpenID Research \& Education working group}},
url = {https://openid.net/wg/rande},
urldate = {2018-12-03}
}
@techreport{voms-ac-format,
author = {Vincenzo Ciaschini and Valerio Venturi and Andrea Ceccanti},
title = {{The VOMS Attribute Certificate format }},
year = {2011},
month = {August},
publisher = {Open Grid Forum},
institution = {Open Grid Forum},
url = {https://www.ogf.org/documents/GFD.182.pdf}
}
@online{aarc-blueprint,
title = {{The AARC Blueprint Architecture}},
url = {https://aarc-project.eu/architecture},
urldate = {2018-12-03}
}
@online{rcauth-ssh,
title = {{RCAuth.eu: getting proxies using SSH key AuthN}},
author = {Mischa Sall\'e},
url = {https://indico.cern.ch/event/669715/contributions/2739035/attachments/1532101/2398499/RCauth_SSH_wlcg_authz_wg.pdf},
urldate = {2018-12-03}
}
@online{oauth4myproxy,
title = {{OAuth for MyProxy}},
url = {http://grid.ncsa.illinois.edu/myproxy/oauth/},
urldate = {2019-03-18}
}
@online{rcauth,
title = {{The RCAuth online CA}},
url = {https://rcauth.eu},
urldate = {2018-12-03}
}
@online{dodas,
title = {{Dynamic On Demand Analysis Service: DODAS}},
url = {https://dodas-ts.github.io/dodas-doc},
urldate = {2018-12-03}
}
@online{eosc-hub,
title = {{The EOSC-Hub project}},
url = {https://www.eosc-hub.eu},
urldate = {2018-12-03}
}
@online{aarc,
title = {{The AARC project}},
url = {https://aarc-project.eu},
urldate = {2018-12-03}
}
@online{fim4r,
title = {{Federated Identity Management for Research}},
url = {https://fim4r.org},
urldate = {2018-12-03}
}
@online{wlcg-authz-wg,
title = {{The WLCG Authorization Working Group}},
url = {https://twiki.cern.ch/twiki/bin/view/LCG/WLCGAuthorizationWG},
urldate = {2018-12-03}
}
@online{nikhef,
title = {{The Dutch National Insititute for Sub-atomic Physics}},
url = {https://www.nikhef.nl},
urldate = {2019-5-10}
}
@misc{indigo-datacloud,
Author = {INDIGO-DataCloud Collaboration and : and Davide Salomoni and Isabel
Campos and Luciano Gaido and Jesus Marco de Lucas and Peter Solagna and Jorge
Gomes and Ludek Matyska and Patrick Fuhrman and Marcus Hardt and Giacinto
Donvito and Lukasz Dutka and Marcin Plociennik and Roberto Barbera and
Ignacio Blanquer and Andrea Ceccanti and Mario David and Cristina Duma and
Alvaro López-García and Germán Moltó and Pablo Orviz and Zdenek Sustr and
Matthew Viljoen and Fernando Aguilar and Luis Alves and Marica Antonacci
and Lucio Angelo Antonelli and Stefano Bagnasco and Alexandre M. J. J.
Bonvin and Riccardo Bruno and Eva Cetinic and Yin Chen and Alessandro Costa
and Davor Davidovic and Benjamin Ertl and Marco Fargetta and Sandro Fiore
and Stefano Gallozzi and Zeynep Kurkcuoglu and Lara Lloret and Joao Martins
and Alessandra Nuzzo and Paola Nassisi and Cosimo Palazzo and Joao Pina and
Eva Sciacca and Daniele Spiga and Marco Antonio Tangaro and Michal Urbaniak
and Sara Vallero and Bas Wegh and Valentina Zaccolo and Federico Zambelli
and Tomasz Zok},
Title = {{INDIGO-DataCloud:A data and computing platform to facilitate seamless
access to e-infrastructures}},
Year = {2017},
Eprint = {arXiv:1711.01981},
}
@online{kubernetes-labels,
title = {{Kubernetes labels and selectors}},
url = {https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/},
urldate = {2018-12-03}
}
@online{spid,
title = {{Sistema Pubblico di Identità Digitale}},
url = {https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/},
urldate = {2018-12-03}
}
@online{hr-db-api-service,
title = {{CERN HR DB API service }},
url = {https://baltig.infn.it/aceccant/cern-hr-db-service},
urldate = {2018-12-03}
}
@online{cern-openshift,
title = {{CERN Openshift PAAS infrastructure}},
url = {http://information-technology.web.cern.ch/services/PaaS-Web-App},
urldate = {2018-12-03}
}
@online{srm-2.2,
title = {{The Storage Resource Manager v. 2.2 specification}},
url = {https://sdm.lbl.gov/srm-wg/doc/SRM.v2.2.070402.html},
urldate = {2018-12-03}
}
@online{keycloak,
title = {{The Keycloak Identity and Access Management system}},
url = {https://www.keycloak.org/},
urldate = {2018-12-03}
}
@inproceedings{cern-sso,
doi = {10.1088/1742-6596/119/8/082008},
url = {https://doi.org/10.1088%2F1742-6596%2F119%2F8%2F082008},
year = 2008,
volume = {119},
number = {8},
pages = {082008},
author = {E Ormancey},
title = {{CERN} single sign on solution},
booktitle = {Journal of Physics: Conference Series}
}
@inproceedings{voms-convergence,
author={Andrea Ceccanti and Vincenzo Ciaschini and Maria Dimou and Gabriele Garzoglio and Tanya Levshina and Steve Traylen and Valerio Venturi},
title={{VOMS/VOMRS utilization patterns and convergence plan}},
booktitle={Journal of Physics: Conference Series},
volume={219},
number={6},
pages={062006},
url={http://stacks.iop.org/1742-6596/219/i=6/a=062006},
year={2010}
}
@inproceedings{gpfs,
author = {Schmuck, Frank and Haskin, Roger},
title = {GPFS: A Shared-disk File System for Large Computing Clusters},
booktitle = {Proceedings of the 1st USENIX Conference on File and Storage Technologies},
series = {FAST'02},
year = {2002},
location = {Monterey, CA},
pages = {16--16},
numpages = {1},
url = {http://dl.acm.org/citation.cfm?id=1973333.1973349},
acmid = {1973349},
publisher = {USENIX Association},
address = {Berkeley, CA, USA},
}
@inproceedings{gemss,
doi = {10.1088/1742-6596/608/1/012013},
url = {https://doi.org/10.1088%2F1742-6596%2F608%2F1%2F012013},
year = 2015,
month = {may},
publisher = {{IOP} Publishing},
volume = {608},
pages = {012013},
author = {Pier Paolo Ricci and Alessandro Cavalli and Luca Dell'Agnello and Matteo Favaro and Daniele Gregori and Andrea Prosperini and Michele Pezzi and Vladimir Sapunenko and Giovanni Zizzi and Vincenzo Vagnoni},
title = {The {INFN}-{CNAF} Tier-1 {GEMSS} Mass Storage System and database facility activity},
booktitle = {Journal of Physics: Conference Series}
}
@online{storm-1.11.13,
title = {{StoRM 1.11.13 release notes}},
url = {http://italiangrid.github.io/storm/release-notes/StoRM-v1.11.13.html},
urldate = {2018-12-03}
}
@online{storm-1.11.14,
title = {{StoRM 1.11.14 release notes}},
url = {http://italiangrid.github.io/storm/release-notes/StoRM-v1.11.14.html},
urldate = {2018-12-03}
}
@online{storage-resource-reporting-proposal,
title = {{Storage Resource Reporting proposal for storage providers}},
url = {https://docs.google.com/document/d/1yzCvKpxsbcQC5K9MyvXc-vBF1HGPBk4vhjw3MEXoXf8},
urldate = {2018-11-23}
}
@online{globus-end-of-support,
title = {{Globus toolkit end-of-support announcement}},
url = {https://www.globus.org/blog/support-open-source-globus-toolkit-ends-january-2018},
urldate = {2018-12-03}
}
@online{doma-tpc,
title = {{The WLCG DOMA Third Party Copy (TPC) working group}},
url = {https://twiki.cern.ch/twiki/bin/view/LCG/ThirdPartyCopy},
urldate = {2018-12-03}
}
@online{spring-boot,
title = {{The Spring Boot project}},
url = {https://spring.io/projects/spring-boot},
urldate = {2018-12-03}
}
@online{yaim,
title = {{Yet Antother Installation Manager}},
url = {https://twiki.cern.ch/twiki/bin/view/EGEE/YAIM},
urldate = {2018-12-03}
}
@online{puppet,
title = {{The puppet configuration management tool}},
url = {https://puppet.com/},
urldate = {2018-12-03}
}