What authentication mechanisms are available for SRB?
SRB supports three types of authentication: 1) A basic password-based authentication (now phased out), 2) password-based authentication in which the password is used in a challenge-response protocol so no plain-text password is sent on the network (“Encrypt1”), and 3) GSI authentication. Encrypt1 is a simple and secure stand-alone authentication system. In both password-based systems, user passwords are stored in the MCAT and users can record their passwords into their ~/.srb/.MdasAuth file to provide convenient and reasonably-secure access. GSI (Globus Grid Security Infrastructure) is convenient when using other Globus tools but requires users to acquire Certificates (i.e. a Public Key Infrastructure is needed). Previously we also supported SEA authentication (SDSC Encryption and Authentication system) but now GSI provides similar functionality.