Grid shows new way to thwart Wiki vandals
When Tim Berners-Lee invented the World Wide Web 15 years ago, he always intended that it should be easy for people to write to it, not just read from it. But if websites are opened up to anyone, they often get vandalised by people with axes to grind. Now, a researcher from Manchester has brought together two of computing’s current buzzwords - the Grid, and Wikis – to overcome this problem.
A Wiki is a web site where users can easily add and edit its content. Although some Wikis ask contributors to pick a username and password, people running the sites have no idea who their users really are, and the better known Wikis have to be constantly on the look out for offensive or just irrelevant additions. The new open source software, GridSiteWiki, combines the functions of a Wiki with user authentication based on security tools developed for Grid computing. Dr Andrew McNab of Manchester University, who developed the new software, will be speaking on Grid security at the UK e-Science All Hands Conference in Nottingham on Thursday.
Dr McNab explains, “Wikis have been plagued with problems of trust and identity: how do you deal with internet vandals using fake accounts? Now were able to tie in with the security being rolled out for the Grid, we can finally make a Web where you can visit a website for the first time and start contributing straight away, without the administrators having to worry about anonymous vandals with fake identities."
‘Grid computing’ harnesses the power of computers worldwide to tackle complex problems. Scientists who want to use the Grid need to have a ‘digital certificate’ – like an online ID card, which they can only get by showing up in person with their passport. So once someone has a digital certificate, the Grid knows who they are and that they can be trusted. GridSiteWiki extends this so that Wikis can use digital certificates to identify their contributors. As Dr McNab points out, some Wikis are deliberately open to anyone. But others are set up for a particular community, whether a science experiment, company employees or members of a cycling club, and need to identify their users.
Dr McNab works at Manchester University on the GridPP project. Funded by PPARC, GridPP is building a UK computing Grid to analyse the huge amounts of data expected from the next generation of particle physics experiments. The particle physics computing Grid allows scientists to obtain particle physics data and then have it analysed on one or more of 13,000 computers at nearly 200 sites globally, from Budapest to Illinois, without ever needing to know where the data comes from or where it is processed.
The new Wiki tool builds on the GridSite software developed previously by Dr McNab, which allows users to identify themselves to websites using a digital certificate. For users with a certificate, this means they don’t have to remember user names and passwords to log onto a website or Wiki, they’re automatically logged on using their Grid certificate. GridSiteWiki also automatically extracts the users’ identity from their digital certificate and uses this to ‘sign’ their articles on the Wiki, so that other readers know who wrote or edited the article.
There are Wikis about nearly everything, from renewable energy to Romanian guitar chords. Probably the most famous Wiki is WikiPedia, a web-based encyclopedia written collaboratively by volunteers and with more than 2.3 million articles. GridSiteWiki is a version of MediaWiki - the same software used by WikiPedia.
So far, GridSiteWiki is used to provide the informal documentation area on the GridSite website, and for the Wikis running on the GridPP website (www.gridpp.ac.uk). It is open source, so GridSiteWiki is free for anyone to use. The source code is available under the same terms (the GNU GPL) as MediaWiki itself.
Julia Maddock | alfa