Securing science gateways

Science gateways began to emerge and evolve on the NSF-sponsored national HPC cyberinfrastructure, known today as the TeraGrid, in the early 2000s. Currently, the TeraGrid supports twenty-five science gateways that utilize a diverse collection of software and methods for integrating with the TeraGrid. This paper surveys TeraGrid science gateway implementations and security models, details a pilot study highlighting changes employed by the GridAMP science gateway to securely access the Kraken supercomputer, and describes possible solutions and recommendations for improving the security posture of science gateway implementations across the TeraGrid. Securing TeraGrid science gateways by employing one or more methods that balance security, developer ease-of-use, and end user ease-of-use improves the overall security posture of the implementations of science gateways across the TeraGrid.