GridShib SAML Tools v0.3.0

March 3, 2008

We are pleased to announce GridShib SAML Tools v0.3.0, the final release in the v0.3.0 development cycle:

The GridShib SAML Tools are a suite of standalone client tools that issue SAML assertions and optionally bind these assertions to X.509 proxy certificates. To try out the software before downloading, visit our online demo:

The GridShib SAML Tools require only Java 1.4 (or later) and Ant 1.6 (or later). Proxy certificates issued by the SAML Tools are compatible with GridShib for Globus Toolkit v0.6.0 Alpha (or later).

There have been significant changes in this version of the GridShib SAML Tools since the previous release:

Important new features of GridShib SAML Tools v0.3.0 include:

  • enhanced command-line interface
  • new command-line options for the SAML Assertion Issuer Tool, including the option to output a DER-encoded ASN.1 structure
  • new X.509 Binding Tool, to bind arbitrary content to a non-critical extension of an X.509 proxy certificate
  • new SAML Security Info Tool, for examining the contents of X.509-bound SAML tokens
  • expanded Java API, for producing and consuming SAML assertions and X.509 proxy certificates
  • support for the TeraGrid Science Gateway Use Case

This development cycle was largely driven by the TeraGrid Science Gateway Use Case:

Science Gateways use the SAML Tools to enable auditing, incident response, and access control in Globus-based grids.

To learn more about this and other use cases, visit the “About GridShib” page:

While the GridShib SAML Tools produce X.509-bound SAML tokens, the complementary software component GridShib for Globus Toolkit consumes them. The latter is scheduled for release later this month or early next. See the roadmap on the GridShib home page for the latest updates.

Tom Scavo
For the GridShib Team