An Authentication and Access Control Framework for Group Communication Systems in Grid Environment

21st International Conference on Advanced Information Networking and Applications (AINA '07) Pub Date : 2007-05-21 DOI:10.1109/AINA.2007.33

Deqing Zou, L. Yang, Weizhong Qiang, Xueguang Chen, Zongfen Han

{"title":"An Authentication and Access Control Framework for Group Communication Systems in Grid Environment","authors":"Deqing Zou, L. Yang, Weizhong Qiang, Xueguang Chen, Zongfen Han","doi":"10.1109/AINA.2007.33","DOIUrl":null,"url":null,"abstract":"Collaboration is used for information sharing and activity coordinating, and it exists broadly in many fields. Group communication enables efficient communication between a set of processes logically organized into groups and communicating via multicast in an asynchronous environment. One of the key technologies for collaborative applications is secure group communication. Current research on secure group communication scarcely considers the existing security mechanism in local systems. As a result, group communication systems couldn 't provide general support for collaborative applications running on a specific system. Based on the existing grid security technologies, we propose an authentication and access control framework at virtual organization (VO) level for group communication in grid environment. By introducing role-based access control (RBAC) and attribute-based approach, we define group management policies and design group control protocols. The protocols are analyzed from three aspects: compatibility, performance, and security. Finally, we implement a prototype based on GridShib.","PeriodicalId":361109,"journal":{"name":"21st International Conference on Advanced Information Networking and Applications (AINA '07)","volume":"65 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-05-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"21st International Conference on Advanced Information Networking and Applications (AINA '07)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/AINA.2007.33","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

Abstract

Collaboration is used for information sharing and activity coordinating, and it exists broadly in many fields. Group communication enables efficient communication between a set of processes logically organized into groups and communicating via multicast in an asynchronous environment. One of the key technologies for collaborative applications is secure group communication. Current research on secure group communication scarcely considers the existing security mechanism in local systems. As a result, group communication systems couldn 't provide general support for collaborative applications running on a specific system. Based on the existing grid security technologies, we propose an authentication and access control framework at virtual organization (VO) level for group communication in grid environment. By introducing role-based access control (RBAC) and attribute-based approach, we define group management policies and design group control protocols. The protocols are analyzed from three aspects: compatibility, performance, and security. Finally, we implement a prototype based on GridShib.

查看原文本刊更多论文

网格环境下群通信系统的认证与访问控制框架

协作用于信息共享和活动协调，广泛存在于许多领域。组通信支持在逻辑上组织成组的一组进程之间进行有效通信，并在异步环境中通过多播进行通信。安全组通信是协作应用的关键技术之一。现有的安全组通信研究很少考虑本地系统中已有的安全机制。因此，组通信系统不能为运行在特定系统上的协作应用程序提供一般支持。在现有网格安全技术的基础上，提出了一种用于网格环境下组通信的虚拟组织(VO)级认证和访问控制框架。通过引入基于角色的访问控制(RBAC)和基于属性的访问控制方法，定义了组管理策略，设计了组控制协议。分别从兼容性、性能和安全性三个方面对协议进行分析。最后，我们实现了一个基于GridShib的原型。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

21st International Conference on Advanced Information Networking and Applications (AINA '07)

自引率

0.00%

发文量