Abstract: The intention of an authentication and authorization infrastructure (AAI) is to simplify and unify access to different web resources. With a single login, a user can access web applications at multiple organizations. The Shibboleth authentication and authorization infrastructure is a standards-based, open source software package for web single sign-on (SSO) across or within organizational boundaries. It allows service providers to make fine-grained authorization decisions for individual access of protected online resources. The Shibboleth system is a widely used AAI, but only supports protection of browser-based web resources. We have implemented a Shibboleth AAI extension to protect web services using Simple Object Access Protocol (SOAP). Besides user authentication for browser-based web resources, this extension also provides user and machine authentication for web service-based resources. Although implemented for a Shibboleth AAI, the architecture can be easily adapted to other AAIs.
This is an open access article distributed under the
Creative Commons Attribution License which permits unrestricted use, distribution,
and reproduction in any medium, provided the original work is properly cited.
Export to BibTeX
MDPI and ACS Style
Anwander, M.; Braun, T.; Hurni, P.; Staub, T.; Wagenknecht, G. User and Machine Authentication and Authorization Infrastructure for Distributed Wireless Sensor Network Testbeds. J. Sens. Actuator Netw. 2013, 2, 109-121.
Anwander M, Braun T, Hurni P, Staub T, Wagenknecht G. User and Machine Authentication and Authorization Infrastructure for Distributed Wireless Sensor Network Testbeds. Journal of Sensor and Actuator Networks. 2013; 2(1):109-121.
Anwander, Markus; Braun, Torsten; Hurni, Philipp; Staub, Thomas; Wagenknecht, Gerald. 2013. "User and Machine Authentication and Authorization Infrastructure for Distributed Wireless Sensor Network Testbeds." J. Sens. Actuator Netw. 2, no. 1: 109-121.