Distributed access control for grid environments using trust management approach

  • Authors:

  • Gang Yin;Huai-min Wang;Tao Liu;Dian-xi Shi;Ming-feng Chen

  • Affiliations:

  • School of Computer Science, National University of Defense Technology, China;School of Computer Science, National University of Defense Technology, China;School of Electronic Science and Engineering, National University of Defense Technology, China;School of Computer Science, National University of Defense Technology, China;China Xi’an Satellite Control Center

  • Venue:
  • ISPA'05 Proceedings of the 2005 international conference on Parallel and Distributed Processing and Applications
  • Year:
  • 2005

Quantified Score

Hi-index 0.00

Visualization

Abstract

In Grid environments, virtual organizations (VOs) often need to define access control policies to govern who can use which resources for which purpose over multiple policy domains. This is challenging, not only because the entities in VOs must collaborate with each other to share resources across administrative domains, but also because there usually exist a large amount of underlying sites (resource providers) and users in VOs. In this paper, we introduce to use trust management approach to address these problems in Grid environments. We propose a rule-based policy language (RPL) framework to describe the authorization and delegation policies related to VOs, sites and users. This paper also introduces the design of an enhanced community authorization service (ECAS) based on RPL framework, which can be seamlessly integrated with local authorization mechanisms. ECAS uses different kinds of delegation policies for flexible collaboration on authorization between entities in VOs. Compared with similar research works, ECAS enhances the flexibility and scalability of decentralized authorization in Grid environments.