Intra-engine service security for grids based on WSRF

Authors:
M. Smith;T. Friese;B. Freisleben
Affiliations:
Dept. of Math. & Comput. Sci., Marburg Univ., Germany;Dept. of Math. & Comput. Sci., Marburg Univ., Germany;Dept. of Math. & Comput. Sci., Marburg Univ., Germany
Venue:
CCGRID '05 Proceedings of the Fifth IEEE International Symposium on Cluster Computing and the Grid (CCGrid'05) - Volume 2 - Volume 02
Year:
2005

Citing 0
Cited 2

Countering security threats in service-oriented on-demand grid computing using sandboxing and trusted computing techniques

Journal of Parallel and Distributed Computing - Special issue: Security in grid and distributed systems
Secure on-demand grid computing

Future Generation Computer Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

In typical on demand grid computing scenarios, services from different organisations can potentially run in the same Web service engine on a single grid node, making intra-engine service security vital for any production system. In this paper, a solution to the problem of intra-engine inter-service security for ad hoc grid environments based on WSRF is presented. To ensure that only authorized access to grid services is possible from within other services' code, a dynamic group enabled sandboxing approach within Apache Axis is proposed to protect dynamically deployed grid services. It relies on the features provided by a hot deployment service developed for ad hoc grids. A prototypical implementation of the hot deployment service and the intra-engine service security approach based on the Globus Toolkit 4 (GT4) is used to demonstrate the feasibility of our approach.