Communications of the ACM
The PERMIS X.509 role based privilege management infrastructure
Future Generation Computer Systems - Special section: Selected papers from the TERENA networking conference 2002
A Community Authorization Service for Group Collaboration
POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
Certificate-based authorization policy in a PKI environment
ACM Transactions on Information and System Security (TISSEC)
CNGrid: A Test-Bed for Grid Technologies in China
FTDCS '04 Proceedings of the 10th IEEE International Workshop on Future Trends of Distributed Computing Systems
The Anatomy of the Grid: Enabling Scalable Virtual Organizations
International Journal of High Performance Computing Applications
Authorization and Account Management in the Open Science Grid
GRID '05 Proceedings of the 6th IEEE/ACM International Workshop on Grid Computing
A Layered Virtual Organization Architecture for Grid
PDCAT '08 Proceedings of the 2008 Ninth International Conference on Parallel and Distributed Computing, Applications and Technologies
From gridmap-file to VOMS: managing authorization in a Grid environment
Future Generation Computer Systems - Special issue: High-speed networks and services for data-intensive grids: The DataTAG project
Globus toolkit version 4: software for service-oriented systems
NPC'05 Proceedings of the 2005 IFIP international conference on Network and Parallel Computing
The Journal of Supercomputing
| Hi-index | 0.00 |
Virtual Organizations (VOs) are dynamic collections of individuals, institutions, and resources. VOs are widely accepted in grid and other distributed computing environments. Previous VO research produces several separate tools to provide part of the functionality including user registration, user mapping, authentication, authorization, and VO management. However, none of the work covers all the functionality or focuses on non-functional properties. This paper formally defines virtual organization in terms of three functional requirements and four non-functional properties. The functional requirements are user management, resource management, and VO management. The non-functional properties are decentralization, flexibility, simplicity, and efficiency. The problem is formulated as designing a VO architecture to satisfy the functional requirements and achieve the non-functional properties at the same time.This paper presents a layered architecture with GNode abstraction to construct Agora, an implementation of VOs. In Agora architecture, all the entities including users, resources, and agoras are abstracted as GNodes. A naming layer is constructed to manage these GNodes. At the top, there is a logic layer implementing all Agora functionality based on GNode and managing the physical layer resources.The Agora architecture has been implemented in the Vega Grid Operating System. Agora is deployed in the China National Grid and other grid platforms with more than 27 sites and 19 applications. The evaluations through real applications, high performance computing VO scenarios, and micro benchmarks show that the Agora architecture provides complete VO functionality, while achieving decentralization, flexibility, simplicity, and efficiency.