Grid Security Interoperation between CGSP and VEGA

Abstract

Grid computing emerges as an effective technology to couple geographically distributed resources and solve large-scale computational problems in wide area networks. There are several popular grid platforms, such as UNICORE and Globus Toolkit. Many famous grid projects are constructed with these platforms, each of which manages different distributed resources. In order to aggregate resources managed by different grid platforms, it is necessary to implement the interoperation among these grid platforms. Security interoperation is one of key issues for the interoperation. CGSP (ChinaGrid Support Platform) and VEGA are two popular grid platforms in China. To achieve security interoperation between these two platforms, four mapping policies, including user-user mapping, user-agora mapping, role-user mapping, role-agora mapping, are proposed in this paper. The security interoperation process is proposed based on SAML specification and the mapping policies. We also analyze the flexibility of mapping policies and the security of the interoperation process.