Dynamic security perimeters for inter-enterprise service integration

Authors:
I. Djordjevic;T. Dimitrakos;N. Romano;D. Mac Randal;P. Ritrovato
Affiliations:
Security Research Centre, British Telecom, Adastral Park, Martlesham, Ipswich IP5 3RE, UK;Security Research Centre, British Telecom, Adastral Park, Martlesham, Ipswich IP5 3RE, UK;CRMPA, Universití di Salerno, DIIMA, via Ponte Don Melillo, Fisciano, 84084, Italy;CCLRC Rutherford Appleton Laboratory, Chilton, Didcot, Oxfordshire, OX11 0QX, UK;CRMPA, Universití di Salerno, DIIMA, via Ponte Don Melillo, Fisciano, 84084, Italy
Venue:
Future Generation Computer Systems
Year:
2007

Citing 9
Cited 2

Supporting Secure Ad-hoc User Collaboration in Grid Environments

GRID '02 Proceedings of the Third International Workshop on Grid Computing
Binding identities and attributes using digitally signed certificates

ACSAC '00 Proceedings of the 16th Annual Computer Security Applications Conference
Security for Grid Services

HPDC '03 Proceedings of the 12th IEEE International Symposium on High Performance Distributed Computing
Policy-Driven Access Control over a Distributed Firewall Architecture

POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
Contract Performance Assessment for Secure and Dynamic Virtual Collaborations

EDOC '03 Proceedings of the 7th International Conference on Enterprise Distributed Object Computing
An Emerging Architecture Enabling Grid Based Application Service Provision

EDOC '03 Proceedings of the 7th International Conference on Enterprise Distributed Object Computing
Certificate-based authorization policy in a PKI environment

ACM Transactions on Information and System Security (TISSEC)
The PRIMA System for Privilege Management, Authorization and Enforcement in Grid Environments

GRID '03 Proceedings of the 4th International Workshop on Grid Computing
OGSI.NET: OGSI-compliance on the .NET framework

CCGRID '04 Proceedings of the 2004 IEEE International Symposium on Cluster Computing and the Grid

Secure web service federation management using tpm virtualisation

Proceedings of the 2007 ACM workshop on Secure web services
Managing risks in an open computing environment using mean absolute deviation portfolio optimization

Future Generation Computer Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Levaraging the convergence of Grid and Web services technologies, we anticipate the emergence of new business and scientific computing paradigms that are based on dynamic Virtual Organisations (VO). These VOs span across organisational boundaries and enable the enactment of collaborative processes that integrate services, resources and knowledge in order to perform tasks that the VO partners could not undertake on their own. Such a dynamic and complex structure opens several challenging problems relating to VO security. In this paper, we summarise a novel architecture supporting Grid-enabled collaboration for the purposes of Application Service Provision. We then focus on the underpinning security architecture that enables the federated management and distributed enforcement of dynamic security perimeters for virtual communities of services, and on resources that span across administrative and enterprise boundaries. We highlight how this architecture, realised in the context of a European research project developing a Grid platform for application serviced provision, addresses the outstanding challenges that underlie the automation of trust and security management in scalable, multi-institutional, and dynamic Virtual Organisations.