Abstract
Both cloud and GRID are computing paradigms that manage large distributed resources, and currently there is a lot of interest in their integration. An integrated architecture cloud-GRID requires fine-grained access control and identity federation among untrusted distributed domains in the cloud. This paper deals with the trade-off between security and performance in such architectures, comparing the overhead introduced by cloud services with different security levels. The quantitative results obtained in PerfCloud, an existing cloudgrid infrastructure, are presented and discussed.
The work described in this paper has been partly supported by MIUR-PRIN 2008 project “Cloud@Home: a New Enhanced Computing Paradigm”
Chapter PDF
Similar content being viewed by others
References
Atkinson, B., et al.: Ws-security specification, web services security 1.0 (April 2002)
Casola, V., Lettiero, R., Rak, M., Villano, U.: Access control in cloud on grid: the perfcloud case study. To appear in the Proc. of SPCC 2010 (2010)
Casola, V., Rak, M., Villano, U.: Identity federation in cloud computing. In: Proc. of SPEDA 2010, Atlanta (August 2010)
Cherkasova, L., Gupta, D., Vahdat, A.: Optimizing grid site manager performance with virtual machines. In: Proc. of the 3rd USENIX Workshop on Real Large Distributed Systems (WORLDS 2006) (2006)
Cloud Security Alliance: Security guidance for critical areas of focus in cloud computing (2009)
Foster, I.T., Freeman, T., Keahey, K., Scheftner, D., Sotomayor, B., Zhang, X.: Virtual clusters for grid communities. In: CCGRID, pp. 513–520. IEEE Computer Society, Los Alamitos (2006)
Jain, R.: Art of Computer Systems Performance Analysis Techniques For Experimental Design Measurements Simulation And Modeling. Wiley Computer Publishing John Wiley & Sons, Chichester (May 1991)
Mancini, E.P., Rak, M., Villano, U.: Perfcloud: Grid services for performance-oriented development of cloud computing applications. In: Reddy, S. (ed.) WETICE, pp. 201–206. IEEE Computer Society, Los Alamitos (2009)
Mell, P., Grance, T.: The nist definition of cloud computing (2009)
Purdue University: Wispy project (2009), http://www.rcac.purdue.edu/teragrid/resources/#wispy
The Globus Security Team: Globus toolkit version 4, security: Authorization framework (2005), http://www.globus.org/toolkit/docs/4.0/security/authzframe/
The OASIS technical commitee: Xacml: extensible access control markup language (2005), http://www.oasisopen.org/committees/xacml/repository/
University of Chicago: Nimbus project (2009), http://workspace.globus.org/clouds/nimbus.html
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Casola, V., Cuomo, A., Rak, M., Villano, U. (2011). Security and Performance Trade-off in PerfCloud. In: Guarracino, M.R., et al. Euro-Par 2010 Parallel Processing Workshops. Euro-Par 2010. Lecture Notes in Computer Science, vol 6586. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-21878-1_78
Download citation
DOI: https://doi.org/10.1007/978-3-642-21878-1_78
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-21877-4
Online ISBN: 978-3-642-21878-1
eBook Packages: Computer ScienceComputer Science (R0)