Abstract: The intention of an authentication and authorization infrastructure (AAI) is to simplify and unify access to different web resources. With a single login, a user can access web applications at multiple organizations. The Shibboleth authentication and authorization infrastructure is a standards-based, open source software package for web single sign-on (SSO) across or within organizational boundaries. It allows service providers to make fine-grained authorization decisions for individual access of protected online resources. The Shibboleth system is a widely used AAI, but only supports protection of browser-based web resources. We have implemented a Shibboleth AAI extension to protect web services using Simple Object Access Protocol (SOAP). Besides user authentication for browser-based web resources, this extension also provides user and machine authentication for web service-based resources. Although implemented for a Shibboleth AAI, the architecture can be easily adapted to other AAIs.
Keywords: authentication; authorization; wireless sensor networks; experimentation; testbeds
Export to BibTeX
MDPI and ACS Style
Anwander, M.; Braun, T.; Hurni, P.; Staub, T.; Wagenknecht, G. User and Machine Authentication and Authorization Infrastructure for Distributed Wireless Sensor Network Testbeds. J. Sens. Actuator Netw. 2013, 2, 109-121.
Anwander M, Braun T, Hurni P, Staub T, Wagenknecht G. User and Machine Authentication and Authorization Infrastructure for Distributed Wireless Sensor Network Testbeds. Journal of Sensor and Actuator Networks. 2013; 2(1):109-121.
Anwander, Markus; Braun, Torsten; Hurni, Philipp; Staub, Thomas; Wagenknecht, Gerald. 2013. "User and Machine Authentication and Authorization Infrastructure for Distributed Wireless Sensor Network Testbeds." J. Sens. Actuator Netw. 2, no. 1: 109-121.