IIT Home Page CNR Home Page

Access and Usage control in GRID systems

This chapter describes some approaches that have been proposed for access and usage control in grid systems. The first part of the chapter addresses the security challenges in grid systems and describes the standard security infrastructure provided by the Globus Toolkit, the most used middleware to establish grids. Since the standard Globus authorization system provides very basic mechanisms that do not completely fulfill the requirements of this environment, a short overview of well-known access control frameworks that have been integrated in Globus is also given: Community Authorization Service (CAS), PERMIS, Akenti, Shibboleth, Virtual Organization Membership Service (VOMS), Cardea, and PRIMA. Then, the chapter describes the usage control model UCON, a novel model for authorization, along with an implementation of UCON in grid systems. The last part of the chapter describes the authorization model for grid computational services designed by the Grid Trust project. This authorization model is also based on UCON.


2010

Autori IIT:

Maurizio Colombo

Foto di Maurizio Colombo

Aliaksandr Lazouski

Foto di Aliaksandr Lazouski

Tipo: Capitoli di libro con casa editrice internazionale
Area di disciplina: Information Technology and Communication Systems

Attività: Architetture, protocolli e meccanismi di sicurezza per sistemi e servizi distribuiti