Policy Based Dynamic Negotiation for Grid Services Authorization
نویسندگان
چکیده
Policy-based dynamic negotiations allow more flexible authorization in complex Grid environments, and relieve both users and administrators from up front negotiations and registrations. This paper describes how such negotiations overcome current Grid authorization limitations, and how policy-based negotiation mechanisms can be easily integrated into a Grid infrastructure. Such an extension provides advanced access control and automatic credential fetching, and can be integrated and implemented in the new version 4.0 of the Globus Toolkit.
منابع مشابه
Policy-drivenNegotiation for Authorization in the Semantic Grid
As in many Grid Services deployments the clients and servers reside in different administrative domains, there is both a requirement to discover each other’s authorization policy in order to be able to present the right assertions that allow access, as well as to reveal as little as possible of the access policy details to unauthorized parties. This paper describes a mechanism where the client ...
متن کاملAuthorization Framework for Resource Sharing in Grid Environments
Grid data sharing services provide a unified platform for dynamic discovery, access and sharing of distributed data in Grid environments. A common authorization system is needed to provide access control for both Grid data sharing services as well as the data resources that are being shared through these services, accommodating different security requirements from the service providers and the ...
متن کاملRB-GACA: A RBAC Based Grid Access Control Architecture
Because the distribution of services and resources in wide-area networks are heterogeneous, dynamic, and multi-domain, security is a critical concern in grid computing. This paper proposes a general authorization and access control architecture, RB-GACA, for grid computing. It is based on classical access control mechanism in distributed applications, Role Based Access Control (RBAC). We also u...
متن کاملDigital Credentials and Authorization to Enhance Trust in Negotiation within E-Services Marketplaces
In the present economy, business-to-business (B2B) relationships are usually long-termed and characterised by a high degree of mutual preexisting trust. With the advent of the Internet economy, E-Services marketplaces will provide an infrastructure where B2B relationships will be set up in a highly dynamic fashion. The increased dynamism of the marketplace introduces issues of lack of trust amo...
متن کاملAn authorization Framework for Grid Security using GT4
A Grid system is a Virtual Organization that is composed of several autonomous domains .It concerned with the sharing and coordinated use of diverse resources in distributed "virtual organizations.” The dynamic and multiinstitutional nature of these environments introduces challenging security issues that demand new technical approaches. In particular, one must deal with diverse local mechanism...
متن کامل