TY  - JOUR
T1  - A Study on the Management of Group Attributes for Data Sharing
AU  - Jo, Jinyong 
AU  - Jang, Min-seok 
AU  - Kim, Seung-Hae 
AU  - Cho, Buseung 
JO  - The Journal of Korean Institute of Communications and Information Sciences
PY  - 2024
DA  - 2024/1/1
DO  - 10.7840/kics.2024.49.11.1631
KW  - Group management
KW  - user attribute
KW  - entitlement management
KW  - authentication proxy
KW  - identity federation
AB  - e-Science is a scientific activity that enables data sharing and analysis by utilizing computing resources, scientific tools, and network technologies. Overseas, VO (Virtual Organization) management systems have been developed and applied to identity federations, realizing data sharing and increasing data accessibility and openness. Although software already have features allowing group-based user access, in Korea, there is few systems for managing VOs and a lack of user experience in utilizing group information, making it difficult to share data. This study proposes two systems that are suitable for federation operators: an attribute authority (AA) developed to manage group information of users and an authentication proxy system to relay authentication messages containing group information. The developed AA delegates the management of permission information to service providers. We integrated VOs and Services into service-driven VOs, thereby simplifying the system architecture and improving user experience. Finally, we connected the systems to a production storage service, introducing processing flows of group information, presenting best practices for utilization, and demonstrating their feasibility.