Dynamic and Fine-Grained Authentication and Authorization Architecture for Grid Computing
نویسندگان
چکیده
The Globus Toolkit makes it very easy and comfortable for grid users to develop and deploy grid service. As for the security mechanism, however, only static authentication and coarse-grained authorization mechanism is provided in current Globus Toolkit. In this paper we address the limitations of current security mechanism in the Globus Toolkit and propose a new architecture which provides fine-grained and flexible security mechanism. To implement this without modifying existing components, we make use of the Aspect-Oriented Programming technique.
منابع مشابه
Certificateless Identity-based Proxy Signature for Grid Computing Authorization
In this paper we propose a new Identity-based certificateless proxy signature transferable to a chain of proxy signers enabling fine-grained delegation, Authentication and Authorization decoupling, and Attributes-based Authorization within the Grid environment without relying on any kind of PKI certificates, proxy certificates or attribute certificates. Security and performance analysis of the ...
متن کاملTicket-Based Grid Services Architecture for Dynamic Virtual Organizations
A Virtual Organization (VO) in the Grid is a collection of users and distributed resources, in which resources are shared by users. VOs are dynamically created for some goals and then disappear after the goals are achieved. Conventional Grid architectures have been proposed for a single or static VO environment. In this paper, we propose a ticket-based Grid services architecture to support the ...
متن کاملAn Authorization Framework for a Grid Based Component Architecture
This paper1 presents an architecture to meet the needs for authentication and authorization in Grid based component systems. While Grid Security Infrastructure (GSI) [1] is widely accepted as the standard for authentication on the Grid, distributed authorization is still an open problem being investigated by various groups [2],[3],[4]. Our design provides authentication and fine-grained authori...
متن کاملXPOLA – An Extensible Capability-based Authorization Infrastructure for Grids
There is great need for a secure, fine-grained, efficient, and user-friendly authorization infrastructure to protect the services in Grid community. Grid users and administrators still have to deal with authentication and authorization issues in the traditional supercomputer-centric fashion, especially with the host account maintenance and certificate management. This paper proposes a capabilit...
متن کاملA Multiple-Policy supported Attribute-Based Access Control Architecture within Large-scale Device Collaboration Systems
In order to collaborate large numbers of heterogeneous distributed devices over multiple domains within a modern large-scale device collaboration system, a fine-grained, flexible and secure approach is required for device authentication and authorization. This paper proposed a Multiple-Policy supported Attribute-Based Access Control model and its architecture to address these demands. With eXte...
متن کامل