A fine-grained and x.509-based access control system for globus

Authors:
Hristo Koshutanski;Fabio Martinelli;Paolo Mori;Luca Borz;Anna Vaccarelli
Affiliations:
CREATE-NET, Trento, Italy;Istituto di Informatica e Telematica, Consiglio Nazionale delle Ricerche, Pisa, Italy;Istituto di Informatica e Telematica, Consiglio Nazionale delle Ricerche, Pisa, Italy;CREATE-NET, Trento, Italy;Istituto di Informatica e Telematica, Consiglio Nazionale delle Ricerche, Pisa, Italy
Venue:
ODBASE'06/OTM'06 Proceedings of the 2006 Confederated international conference on On the Move to Meaningful Internet Systems: CoopIS, DOA, GADA, and ODBASE - Volume Part II
Year:
2006

Citing 11
Cited 2

ACM SIGAda Ada Letters

ACM SIGAda Ada Letters
Java Native Interface: Programmer's Guide and Reference

Java Native Interface: Programmer's Guide and Reference
Fine-Grain Authorization for Resource Management in the Grid Environment

GRID '02 Proceedings of the Third International Workshop on Grid Computing
A Community Authorization Service for Group Collaboration

POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
The Jalapeño virtual machine

IBM Systems Journal
Comparison of Advanced Authorisation Infrastructures for Grid Computing

HPCS '05 Proceedings of the 19th International Symposium on High Performance Computing Systems and Applications
The Anatomy of the Grid: Enabling Scalable Virtual Organizations

International Journal of High Performance Computing Applications
Towards Continuous Usage Control on Grid Computational Services

ICAS-ICNS '05 Proceedings of the Joint International Conference on Autonomic and Autonomous Systems and International Conference on Networking and Services
Fine-grained and History-based Access Control with Trust Management for Autonomic Grid Services

ICAS '06 Proceedings of the International Conference on Autonomic and Autonomous Systems
Certificate-based access control for widely distributed resources

SSYM'99 Proceedings of the 8th conference on USENIX Security Symposium - Volume 8
Globus toolkit version 4: software for service-oriented systems

NPC'05 Proceedings of the 2005 IFIP international conference on Network and Parallel Computing

Fine grained access control with trust and reputation management for globus

OTM'07 Proceedings of the 2007 OTM confederated international conference on On the move to meaningful internet systems: CoopIS, DOA, ODBASE, GADA, and IS - Volume Part II
Gate automata-driven run-time enforcement

Computers & Mathematics with Applications

Quantified Score

Hi-index	0.00

Visualization

Abstract

The rapid advancement of technologies such as Grid computing, peer-to-peer networking, Web Services to name a few, offer for companies and organizations an open and decentralized environment for dynamic resource sharing and integration Globus toolkit emerged as the main resource sharing tool used in the Grid community. Access control and access rights management become one of the main bottleneck when using Globus because in such an environment there are potentially unbounded number of users and resource providers without a priori established trust relationships Thus, Grid computational resources could be executed by unknown applications running on behalf of distrusted users and therefore the integrity of those resources must be guaranteed. To address this problem, the paper proposes an access control system that enhances the Globus toolkit with a number of features: (i) fine-grained behavioral control; (ii) application-level management of user's credentials for access control; (iii) full-fledged integration with X.509 certificate standard; (iv) access control feedback when users do not have enough permissions.