Ticket-based fine-grained authorization service in the dynamic VO environment

Authors:
Byung Joon Kim;Sung Je Hong;Jong Kim
Affiliations:
Pohang University of Science and Technology (POSTECH), Hyoja-dong, Pohang, Korea;Pohang University of Science and Technology (POSTECH), Hyoja-dong, Pohang, Korea;Pohang University of Science and Technology (POSTECH), Hyoja-dong, Pohang, Korea
Venue:
SWS '04 Proceedings of the 2004 workshop on Secure web service
Year:
2004

Citing 12
Cited 1

A scalable content-addressable network

Proceedings of the 2001 conference on Applications, technologies, architectures, and protocols for computer communications
Chord: a scalable peer-to-peer lookup protocol for internet applications

IEEE/ACM Transactions on Networking (TON)
Pastry: Scalable, Decentralized Object Location, and Routing for Large-Scale Peer-to-Peer Systems

Middleware '01 Proceedings of the IFIP/ACM International Conference on Distributed Systems Platforms Heidelberg
The PERMIS X.509 role based privilege management infrastructure

Future Generation Computer Systems - Special section: Selected papers from the TERENA networking conference 2002
The Globus Project: A Status Report

HCW '98 Proceedings of the Seventh Heterogeneous Computing Workshop
Security for Grid Services

HPDC '03 Proceedings of the 12th IEEE International Symposium on High Performance Distributed Computing
A Community Authorization Service for Group Collaboration

POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
Tapestry: An Infrastructure for Fault-tolerant Wide-area Location and

Tapestry: An Infrastructure for Fault-tolerant Wide-area Location and
SHARP: an architecture for secure resource peering

SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles
Workflow-based Authorization Service in Grid

GRID '03 Proceedings of the 4th International Workshop on Grid Computing
The Anatomy of the Grid: Enabling Scalable Virtual Organizations

International Journal of High Performance Computing Applications
Certificate-based access control for widely distributed resources

SSYM'99 Proceedings of the 8th conference on USENIX Security Symposium - Volume 8

Ticket-Based grid services architecture for dynamic virtual organizations

EGC'05 Proceedings of the 2005 European conference on Advances in Grid Computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Virtual Organization (VO) is a collection of users and distributed resources, in which resources are shared by users. Creating VOs is very important task in Grid computing. VOs are dynamically created for some goals and then disappear after the goals are achieved. Conventional authorization architectures for the Grid have been proposed in a single VO environment. However, in reality we often need to handle the situation of several dynamically created VOs. Hence, enough fine-grained authorization methods for all the Grid entities such as resource providers, VO manger, and users do not exist under the dynamic VO environment. In this paper, we propose a TAS architecture to support a fine-grained authorization service in a dynamic VO environment. In contrast to the conventional architecture, TAS architecture uses a ticket that is unforgeable and exchangeable among VO entities for resource control.