Towards supporting fine-grained access control for Grid Resources
Author
E. Bertino, P.Mazzoleni. B.Crispo, S.Sivasubramanian, E.Ferrari
Tech report number
CERIAS TR 2004-70
Abstract
The heterogeneous nature and independent administration
of geographically dispersed resources in Grid, demand
the need for access control using fine-grained policies. In
this paper, we investigate the problem of fine-grained access
control in the context of resource allocation in Grid, as
we believe it is the first and key step in developing access
control methods specifically tailored for Grid systems. To
perform this access control, we design a security component
(to be part of a meta-scheduler service) that finds the
list of nodes where a user is authorized to run his/her jobs.
The security component is designed in an effort to reduce
the number of rules that need to be evaluated for each user
request.
We believe such a fine-grained policy-based access control
would help the adoption of Grid to a higher extent into
new avenues such as Desktop Grids, as the resource owners
are given higher flexibility in controlling access to their
resources. Similarly, Grid users get a higher flexibility in
choosing the resources in which their jobs must execute.
Journal
Proceedings of the 10th IEEE International Workshop on Future Trends of Distributed Computing Systems (FTDCS 2004)
Publication Date
2004-05-08
Contents
1 Introduction
2 Related Work
3 System Model
4 Authorization Policies
5 Security System Architecture
6 Subscription Phase
7 Job-Submission Phase
8 Conclusions and Future Work
Location
A hard-copy of this is in the CERIAS Library