A concept for attribute-based authorization on D-Grid resources
نویسندگان
چکیده
In Germany’s D-Grid project numerous Grid communities are working together to providing a common overarching Grid infrastructure. The major aims of D-Grid are the integration of existing Grid deployments and their interoperability. The challenge in this endeavor lies in the heterogeneity of the current implementations: Three Grid middleware stacks and different Virtual Organization management approaches have to be embraced to achieve the intended goals. In this article we focus on the implementation of an attribute-based authorization infrastructure that not only leverages the well-known VO attributes but also Campus attributes managed by a Shibboleth federation.
منابع مشابه
Attribute Based Access Control for Grid Computing
Grid systems, which are composed of autonomous domains, are open and dynamic. In such systems, there are usually a large number of users, the users are changeable, and different domains have their own policies. The traditional access control models that are identity based are closed and inflexible. The Attribute Based Access Control (ABAC) model, which makes decisions relying on attributes of r...
متن کاملAttributbasierte Autorisierung im Grid Computing: vertrauenswürdige Architekturen und sichere Implementierung
Grid Computing evolved into an accepted standard for inter-organizational scientific work with IT Infrastructures. It is the aim of Grid Computing to share computeand storage resources across organizational boundaries. This includes, besides common interfaces for accessing these resources, authentication and authorization mechanisms that allow the inter-organizational application of these resou...
متن کاملAccess and Usage Control in Grid
Grid is a computational environment where heterogeneous resources are virtualized and outsourced to multiple users across the Internet. The increasing popularity of the resources visualization is explained by the emerging suitability of such technology for automated execution of heavy parts of business and research processes. Efficient and flexible framework for the access and usage control ove...
متن کاملAuthorization models for secure information sharing: a survey and research agenda
This article presents a survey of authorization models and considers their 'fitness-for-purpose' in facilitating information sharing. Network-supported information sharing is an important technical capability that underpins collaboration in support of dynamic and unpredictable activities such as emergency response, national security, infrastructure protection, supply chain integration and emerg...
متن کاملDynamic Workflows for Grid Applications
In the Grid computing community, there are several approaches to execute not only single tasks on single Grid resources but also to support workflow schemes that enable the composition and execution of complex Grid applications. The most commonly used workflow model for this purpose is the Directed Acyclic Graph (DAG). Within the establishment of the Fraunhofer Resource Grid, we developed a Gri...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- Future Generation Comp. Syst.
دوره 25 شماره
صفحات -
تاریخ انتشار 2009