网格环境下的安全信息共享与管理

2006 International Conference on Collaborative Computing: Networking, Applications and Worksharing Pub Date : 2006-11-01 DOI:10.1109/COLCOM.2006.361892

Jing Jin, Gail-Joon Ahn

{"title":"网格环境下的安全信息共享与管理","authors":"Jing Jin, Gail-Joon Ahn","doi":"10.1109/COLCOM.2006.361892","DOIUrl":null,"url":null,"abstract":"The introduction of service-oriented paradigm in grid and corresponding Web services standards has recently demanded the evolution of access control solutions to support finegrained authorization requirements and dynamic natures derived from grid environments. In this paper, we present a role-based authorization infrastructure for data sharing and management services in grid. Our infrastructure advocates a dynamic and flexible resource-centric authorization approach with features of distributed role-based access control and systematic delegation of administrative authority. The infrastructure seamlessly integrates the existing XACML-based policy framework and authorization services in the RAMARS framework. We discuss our proof-of-concept prototype system that supports Web services and SAML based authorization assertions. We also describe how the framework can be deployed in being compatible with an open grid service architecture","PeriodicalId":315775,"journal":{"name":"2006 International Conference on Collaborative Computing: Networking, Applications and Worksharing","volume":"120 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2006-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Towards Secure Information Sharing and Management in Grid Environments\",\"authors\":\"Jing Jin, Gail-Joon Ahn\",\"doi\":\"10.1109/COLCOM.2006.361892\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The introduction of service-oriented paradigm in grid and corresponding Web services standards has recently demanded the evolution of access control solutions to support finegrained authorization requirements and dynamic natures derived from grid environments. In this paper, we present a role-based authorization infrastructure for data sharing and management services in grid. Our infrastructure advocates a dynamic and flexible resource-centric authorization approach with features of distributed role-based access control and systematic delegation of administrative authority. The infrastructure seamlessly integrates the existing XACML-based policy framework and authorization services in the RAMARS framework. We discuss our proof-of-concept prototype system that supports Web services and SAML based authorization assertions. We also describe how the framework can be deployed in being compatible with an open grid service architecture\",\"PeriodicalId\":315775,\"journal\":{\"name\":\"2006 International Conference on Collaborative Computing: Networking, Applications and Worksharing\",\"volume\":\"120 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2006-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2006 International Conference on Collaborative Computing: Networking, Applications and Worksharing\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/COLCOM.2006.361892\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2006 International Conference on Collaborative Computing: Networking, Applications and Worksharing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/COLCOM.2006.361892","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

摘要

在网格和相应的Web服务标准中引入面向服务的范式，最近要求发展访问控制解决方案，以支持细粒度的授权需求和源自网格环境的动态特性。本文提出了一种基于角色的网格数据共享和管理服务授权架构。我们的基础设施提倡动态和灵活的以资源为中心的授权方法，具有分布式基于角色的访问控制和系统的管理权限委托的特性。基础设施无缝地集成了RAMARS框架中现有的基于xacl的策略框架和授权服务。我们将讨论支持Web服务和基于SAML的授权断言的概念验证原型系统。我们还描述了如何部署该框架以与开放网格服务体系结构兼容

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Towards Secure Information Sharing and Management in Grid Environments

The introduction of service-oriented paradigm in grid and corresponding Web services standards has recently demanded the evolution of access control solutions to support finegrained authorization requirements and dynamic natures derived from grid environments. In this paper, we present a role-based authorization infrastructure for data sharing and management services in grid. Our infrastructure advocates a dynamic and flexible resource-centric authorization approach with features of distributed role-based access control and systematic delegation of administrative authority. The infrastructure seamlessly integrates the existing XACML-based policy framework and authorization services in the RAMARS framework. We discuss our proof-of-concept prototype system that supports Web services and SAML based authorization assertions. We also describe how the framework can be deployed in being compatible with an open grid service architecture

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2006 International Conference on Collaborative Computing: Networking, Applications and Worksharing

自引率

0.00%

发文量