A barrier to using commercial services on cyberinfrastructure is management of security credentials. A NSF project, SciTokens, created a framework for securely storing and transferring capability based tokens, such as Microsoft identity tokens, which allow access to secure storage and computing resources. HTCondor is used to acquire and manage the security tokens. The OAuth flow used to acquire and renew Microsoft identity tokens would be added to HTCondor in order to provide access to secure Azure resources from jobs.
The integration with HTCondor would benefit many researchers that utilize it to manage their workflows. I would use as an example a Bioinformatics workflow used at the University of Nebraska - Lincoln studying human gut microbiome. With this integration, a researcher using this workflow could use Microsoft credentials to store workflow results on Azure for immediate viewing in a simple web browser.
Derek Weitzel is a Senior Software Engineer at the University of Nebraska's Holland Computing Center. Derek’s primary research is distributed computing and I have worked on numerous cloud and cyberinfrastructure projects. Derek earned a Ph.D. from the University of Nebraska in Computer Science in 2015, with research in distributed computing. Derek works for the national cyberinfrastructure project, the Open Science Grid.