A security architecture for computational grids
CCS '98 Proceedings of the 5th ACM conference on Computer and communications security
Network Security with Openssl
Mysql Reference Manual
The PERMIS X.509 role based privilege management infrastructure
Future Generation Computer Systems - Special section: Selected papers from the TERENA networking conference 2002
The Globus Project: A Status Report
HCW '98 Proceedings of the Seventh Heterogeneous Computing Workshop
Legion-a view from 50,000 feet
HPDC '96 Proceedings of the 5th IEEE International Symposium on High Performance Distributed Computing
A Community Authorization Service for Group Collaboration
POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
Certificate-based authorization policy in a PKI environment
ACM Transactions on Information and System Security (TISSEC)
An Account Policy Model for Grid Environments
GPC '09 Proceedings of the 4th International Conference on Advances in Grid and Pervasive Computing
Dynamic VO Establishment in Distributed Heterogeneous Business Environments
ICCS 2009 Proceedings of the 9th International Conference on Computational Science
ViroLab Security and Virtual Organization Infrastructure
APPT '09 Proceedings of the 8th International Symposium on Advanced Parallel Processing Technologies
Design and implementation of the gLite CREAM job management service
Future Generation Computer Systems
A layered Virtual Organization architecture for grid
The Journal of Supercomputing
Towards more flexible and increased security and privacy in grids
Euro-Par'06 Proceedings of the CoreGRID 2006, UNICORE Summit 2006, Petascale Computational Biology and Bioinformatics conference on Parallel processing
The vine toolkit: a Java framework for developing grid applications
PPAM'07 Proceedings of the 7th international conference on Parallel processing and applied mathematics
The GSI plug-in for gSOAP: building cross-grid interoperable secure grid services
PPAM'07 Proceedings of the 7th international conference on Parallel processing and applied mathematics
Using SAML-based VOMS for authorization within web services-based UNICORE grids
Euro-Par'07 Proceedings of the 2007 conference on Parallel processing
Attributes and VOs: extending the UNICORE authorisation capabilities
Euro-Par'07 Proceedings of the 2007 conference on Parallel processing
On usage control for GRID systems
Future Generation Computer Systems
Instant certificate revocation and publication using WebDAV
Journal of Computer Security - The 2007 European PKI Workshop: Theory and Practice (EuroPKI'07)
A virtual laboratory for medical image analysis
IEEE Transactions on Information Technology in Biomedicine
ACM Computing Surveys (CSUR)
Towards a common authorization infrastructure for the grid
Euro-Par'09 Proceedings of the 2009 international conference on Parallel processing
UNICORE virtual organizations system
PPAM'09 Proceedings of the 8th international conference on Parallel processing and applied mathematics: Part II
Optimal response to attacks on the open science grid
Computer Networks: The International Journal of Computer and Telecommunications Networking
GridCertLib: A Single Sign-on Solution for Grid Web Applications and Portals
Journal of Grid Computing
Integrating legacy authorization systems into the grid: a case study leveraging azman and ADAM
ICCS'06 Proceedings of the 6th international conference on Computational Science - Volume Part I
ICDCIT'10 Proceedings of the 6th international conference on Distributed Computing and Internet Technology
Securing interoperable grid services in ARC grid middleware
GPC'10 Proceedings of the 5th international conference on Advances in Grid and Pervasive Computing
A replicated information system to enable dynamic collaborations in the Grid
Concurrency and Computation: Practice & Experience
Using WebDAV for improved certificate revocation and publication
EuroPKI'07 Proceedings of the 4th European conference on Public Key Infrastructure: theory and practice
Journal of Biomedical Informatics
The Charité Grid Portal: User-friendly and Secure Access to Grid-based Resources and Services
Journal of Grid Computing
Nephele: Scalable Access Control for Federated File Services
Journal of Grid Computing
HPC on the Grid: The Theophys Experience
Journal of Grid Computing
Future Generation Computer Systems
Future Generation Computer Systems
| Hi-index | 0.00 |
Grids are potentially composed of several thousands of users from different institutions sharing their computing resources (or using resources provided by third parties). Controlling access to these resources is a difficult problem, as it depends on the policies of the organizations the users belong to and of the resource owners. Moreover, a simple authorization implementation, based on a direct user registration on the resources, is not applicable to a large scale environment. In this paper, we describe the solution to this problem developed in the framework of the European DataGrid [M. Draoli, G. Mascari, R. Piccinelli, Project Presentation, DataGrid-11-NOT-0103-_1] and DataTAG [http://www.datatag.org/] projects: the Virtual Organization Membership Service (VOMS) [R. Alfieri, et al., Managing Dynamic User Communities in a Grid of Autonomous Resources, TUBT005, in: Proceedings of the CHEP 2003, 2003]. VOMS allows a fine grained control of the use of the resources both to the users' organizations and to the resource owners.