Title :
A Trust Aware Grid Access Control Architecture Based on ABAC
Author :
Zhao, Tiezhu ; Dong, Shoubin
Author_Institution :
Guangdong Key Lab. of Comput. Network, South China Univ. of Technol., Guangzhou, China
Abstract :
Grid system has many great security challenges such as access control. The attribute-based access control model (ABAC) has much merits that are more flexible, fine-grained and dynamically suitable to grid environment. As an important factor in grid security, trust is increasingly applied to management of security, especially in access control. This paper puts forward a novel trust model in multi-domain grid environment and trust factor was originally introduced into access control architecture of grid to extend classic ABAC model. By extending the authorization architecture of XACML, extended ABAC based access control architecture for grid was submitted. In our experiment, the increase and decrease of trust are non-symmetrical and the trust model is sensitive to the malicious attacks. It can effectively control the trust change of different nodes and the trust model can reduce effectively the damage of vicious attack.
Keywords :
authorisation; grid computing; ABAC; XACML; authorization architecture; grid security; grid system; multidomain grid environment; security challenges; security management; trust aware grid access control architecture; trust factor; Authorization; Computational modeling; Computer architecture; Grid computing; Organizations; access control; architecture; attribute; grid computing; trust;
Conference_Titel :
Networking, Architecture and Storage (NAS), 2010 IEEE Fifth International Conference on
Conference_Location :
Macau
Print_ISBN :
978-1-4244-8133-0
DOI :
10.1109/NAS.2010.18
