article

Authorisation in Grid computing

Author:

David ChadwickAuthors Info & Claims

Information Security Tech. Report, Volume 10, Issue 1

Pages 33 - 40

https://doi.org/10.1016/j.istr.2004.11.004

Published: 01 January 2005 Publication History

Abstract

This paper briefly surveys how authorisation in Grid computing has evolved during the last few years, and presents the latest developments in which Grid applications can utilise a policy controlled authorisation infrastructure to make decisions about which users are allowed to perform which actions on which Grid resources. The paper describes the Global Grid Forum SAML interface for connecting policy based authorisation infrastructures to Grid applications, and then describes the PERMIS authorisation infrastructure which has implemented this interface. The paper concludes with suggestions about how this work will evolve in the future.

References

[1]

http://grid-auth.infn.it/docs/VOMS-Santiago.pdf

Google Scholar

[2]

Blaze M, Feigenbaum J, Ioannidis J. The KeyNote Trust-Management System Version 2, RFC 2704; September 1999.

Crossref

Google Scholar

[3]

Role-based access control with X.509 attribute certificates. IEEE Internet Computing. 62-69.

Crossref

Google Scholar

[4]

ISO 9594-8/ITU Rec. X.509. The Directory: Public-key and attribute certificate frameworks; 2001.

Google Scholar

[5]

ITU-T Rec X.812|ISO/IEC 10181-3:1996. Security frameworks for open systems: access control framework; 1995.

Google Scholar

[6]

Johnston W, Mudumbai S, Thompson M. Authorization and attribute certificates for widely distributed access control. In: IEEE 7th international workshops on enabling technologies: infrastructure for collaborative enterprises (WET ICE), Stanford, CA; June, 1998. p. 340-5 (see also http://www-itg.lbl.gov/security/Akenti/).

Crossref

Google Scholar

[7]

http://www.oasis-open.org/committees/security/

Google Scholar

[8]

http://www.oasis-open.org/committees/xacml/

Google Scholar

[9]

Pearlman L, Welch V, Foster I, Kesselman C, Tuecke S. A community authorization service for group collaboration. In: Proceedings of the IEEE 3rd international workshop on policies for distributed systems and networks; 2002.

Crossref

Google Scholar

[10]

<http://www.casa-sotomayor.net/gt3-tutorial/multiplehtml/ch15.html>

Google Scholar

[11]

http://www.dutchgrid.nl/DataGrid/wp4/lcas/edg-lcas-1.1

Google Scholar

[12]

Authorization (AZN) API. January 2000. ISBN:1-85912-266-3.

Google Scholar

[13]

https://forge.gridforum.org/projects/ogsa-authz

Google Scholar

Cited By

View all

Qiang WKonstantinov AZou DYang L(2012)A standards-based interoperable single sign-on framework in ARC Grid middlewareJournal of Network and Computer Applications10.1016/j.jnca.2011.03.00635:3(892-904)Online publication date: 1-May-2012
https://dl.acm.org/doi/10.1016/j.jnca.2011.03.006
Gouglidis AMavridis I(2012)domRBACComputers and Security10.1016/j.cose.2012.01.01031:4(540-556)Online publication date: 1-Jun-2012
https://dl.acm.org/doi/10.1016/j.cose.2012.01.010
Gouglidis AMavridis I(2011)Role-based secure inter-operation and resource usage management in mobile grid systemsProceedings of the 5th IFIP WG 11.2 international conference on Information security theory and practice: security and privacy of mobile devices in wireless communication10.5555/2017824.2017829(38-53)Online publication date: 1-Jun-2011
https://dl.acm.org/doi/10.5555/2017824.2017829
Show More Cited By

Index Terms

Authorisation in Grid computing
1. Computer systems organization
  1. Architectures
    1. Distributed architectures
2. Software and its engineering
  1. Software organization and properties
    1. Software system structures
      1. Distributed systems organizing principles

Recommendations

MGC middleware for grid computing: the Globus Toolkit
ACAI '11: Proceedings of the International Conference on Advances in Computing and Artificial Intelligence

Grid computing has made substantial advances during the last decade. A major concern in Grid environments is dealing with the high degree of heterogeneity of resources that can range from laptops and PCs to supercomputers. The unified virtual view of ...
Role-Based Access Control for Grid Database Services Using the Community Authorization Service

In this paper, we propose a role-based access control (RBAC) method for Grid database services in Open Grid Services Architecture-Data Access and Integration (OGSA-DAI). OGSA-DAI is an efficient Grid-enabled middleware implementation of interfaces and ...
Comparison of Advanced Authorisation Infrastructures for Grid Computing
HPCS '05: Proceedings of the 19th International Symposium on High Performance Computing Systems and Applications

The widespread use of Grid technology and distributed compute power, with all its inherent benefits, will only be established if the use of that technology can be guaranteed efficient and secure. The predominant method for currently enforcing security ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

Information Security Tech. Report Volume 10, Issue 1

January, 2005

58 pages

ISSN:1363-4127

Issue’s Table of Contents

Publisher

Elsevier Advanced Technology Publications

United Kingdom

Publication History

Published: 01 January 2005

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

10
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 12 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Qiang WKonstantinov AZou DYang L(2012)A standards-based interoperable single sign-on framework in ARC Grid middlewareJournal of Network and Computer Applications10.1016/j.jnca.2011.03.00635:3(892-904)Online publication date: 1-May-2012
https://dl.acm.org/doi/10.1016/j.jnca.2011.03.006
Gouglidis AMavridis I(2012)domRBACComputers and Security10.1016/j.cose.2012.01.01031:4(540-556)Online publication date: 1-Jun-2012
https://dl.acm.org/doi/10.1016/j.cose.2012.01.010
Gouglidis AMavridis I(2011)Role-based secure inter-operation and resource usage management in mobile grid systemsProceedings of the 5th IFIP WG 11.2 international conference on Information security theory and practice: security and privacy of mobile devices in wireless communication10.5555/2017824.2017829(38-53)Online publication date: 1-Jun-2011
https://dl.acm.org/doi/10.5555/2017824.2017829
Becker MFournet CGordon A(2010)SecPAL: Design and semantics of a decentralized authorization languageJournal of Computer Security10.5555/1835408.183541118:4(619-665)Online publication date: 1-Dec-2010
https://dl.acm.org/doi/10.5555/1835408.1835411
Deng YHelian N(2010)Single Attestation Image for a Trusted and Scalable GridInternational Journal of Grid and High Performance Computing10.4018/jghpc.20100928022:1(21-33)Online publication date: 1-Jan-2010
https://dl.acm.org/doi/10.4018/jghpc.2010092802
Esmaeeli AShahriari H(2010)Privacy protection of grid service requesters through distributed attribute based access control modelProceedings of the 5th international conference on Advances in Grid and Pervasive Computing10.1007/978-3-642-13067-0_59(573-582)Online publication date: 10-May-2010
https://dl.acm.org/doi/10.1007/978-3-642-13067-0_59
Laccetti GSchmid G(2007)A PMI-aware extension for the SSH serviceProceedings of the 7th international conference on Parallel processing and applied mathematics10.5555/1786194.1786304(932-941)Online publication date: 9-Sep-2007
https://dl.acm.org/doi/10.5555/1786194.1786304
Ortega ABlaya JClemente FPérez GSkarmeta A(2007)Towards semantic-aware management of security services in GT4Multiagent and Grid Systems10.5555/1376588.13765913:4(369-379)Online publication date: 1-Dec-2007
https://dl.acm.org/doi/10.5555/1376588.1376591
Arenas AWilson MMatthews BDavide F(2007)On trust management in gridsProceedings of the 1st international conference on Autonomic computing and communication systems10.5555/1365562.1365568(1-7)Online publication date: 28-Oct-2007
https://dl.acm.org/doi/10.5555/1365562.1365568
Ghiselli AStagni FZappi R(2006)Review of security models applied to distributed data accessProceedings of the CoreGRID 2006, UNICORE Summit 2006, Petascale Computational Biology and Bioinformatics conference on Parallel processing10.5555/1765606.1765612(34-48)Online publication date: 29-Aug-2006
https://dl.acm.org/doi/10.5555/1765606.1765612

View Options

View options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Abstract

References

Cited By

Index Terms

Recommendations

MGC middleware for grid computing: the Globus Toolkit

Role-Based Access Control for Grid Database Services Using the Community Authorization Service

Comparison of Advanced Authorisation Infrastructures for Grid Computing

Comments

Information

Published In

Publisher

Publication History

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Get Access

Login options

Full Access

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations