Joint Policy Management and Auditing in Virtual Organizations

Authors:
Timothy J. Smith;Lavanya Ramakrishnan
Affiliations:
-;-
Venue:
GRID '03 Proceedings of the 4th International Workshop on Grid Computing
Year:
2003

Citing 10
Cited 5

Proof-carrying code

Proceedings of the 24th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
A security architecture for computational grids

CCS '98 Proceedings of the 5th ACM conference on Computer and communications security
Grid Services for Distributed System Integration

Computer
An Authorization Framework for a Grid Based Component Architecture

GRID '02 Proceedings of the Third International Workshop on Grid Computing
Supporting Secure Ad-hoc User Collaboration in Grid Environments

GRID '02 Proceedings of the Third International Workshop on Grid Computing
Efficient Generation of Shared RSA Keys (Extended Abstract)

CRYPTO '97 Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology
An Online Credential Repository for the Grid: MyProxy

HPDC '01 Proceedings of the 10th IEEE International Symposium on High Performance Distributed Computing
A Community Authorization Service for Group Collaboration

POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
The Anatomy of the Grid: Enabling Scalable Virtual Organizations

International Journal of High Performance Computing Applications
Practical threshold signatures

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques

Development of an access control model, system architecture and approaches for resource sharing in virtual enterprise

Computers in Industry
Automatic enforcement of location aware user based network access control policies

TELE-INFO'08 Proceedings of the 7th WSEAS International Conference on Telecommunications and Informatics
Location aware self-adapting firewall policies

WSEAS TRANSACTIONS on COMMUNICATIONS
Reputation and policy-based three-tier grid architecture with genuine feedbacks

International Journal of Autonomous and Adaptive Communications Systems
VO-sec: an access control framework for dynamic virtual organization

ACISP'05 Proceedings of the 10th Australasian conference on Information Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

A major problem facing organizations using grid-computingmodels is the reluctance to participate in multi-organizationalcollaborative environments due to securityconcerns, such as unauthorized access, and fair resourceusage. The Joint control of Virtual Organizations (JoVO)framework enables organizations to form a unified VO, withjointly agreed, knowable and enforceable security policies.The JoVO framework is based on the fault and intrusiontolerant joint control of identity, attributes, and access controlpolicy through the use of threshold-based certificationauthorities. We propose a set of agents, the Credential ManagementAgent and Identity and Authorization Agent to aidgrid services when operating in a multi-domain environment.One of the key areas of concern in grid computingis the assurance of all parties involved that security policiesare appropriate and will be enforced. We propose anautomated distributed audit agent framework consisting ofwhite-box and black-box service testing for joint validationof access control policy.