Journal of Parallel and Distributed Computing - Special issue: Security in grid and distributed systems
Securing stateful grid servers through virtual server rotation
HPDC '08 Proceedings of the 17th international symposium on High performance distributed computing
Building a demilitarized zone with data encryption for grid environments
Proceedings of the first international conference on Networks for grid applications
Extending a Software Component Repository to Provide Services
ICSR '09 Proceedings of the 11th International Conference on Software Reuse: Formal Foundations of Reuse and Domain Engineering
A study of management interface for cluster system integrity
ICACT'09 Proceedings of the 11th international conference on Advanced Communication Technology - Volume 2
Journal of Network and Computer Applications
Hi-index | 0.01 |
In this paper, security issues in on-demand Grid and cluster computing are analyzed, a corresponding threat model is presented and the challenges with respect to authentication, authorization, delegation and single sign-on, secure communication, auditing, safety, and confidentiality are discussed. Three different levels of on-demand computing are identified, based on the number of resource providers, solution producers and users, and the trust relationships between them. It is argued that the threats associated with the first two levels can be handled by employing operating system virtualization technologies based on Xen, whereas the threats of the third level require the use of hardware security modules proposed in the context of the Trusted Computing Platform Alliance (TCPA). The presented security mechanisms increase the resilience of the service hosting environment against both malicious attacks and erroneous code. Thus, our proposal paves the way for large scale hosting of Grid or web services in commercial scenarios.