A Trust Aware Grid Access Control Architecture Based on ABAC

Author

Zhao, Tiezhu ; Dong, Shoubin

Author_Institution

Guangdong Key Lab. of Comput. Network, South China Univ. of Technol., Guangzhou, China

fYear

2010

fDate

15-17 July 2010

Firstpage

109

Lastpage

115

Abstract

Grid system has many great security challenges such as access control. The attribute-based access control model (ABAC) has much merits that are more flexible, fine-grained and dynamically suitable to grid environment. As an important factor in grid security, trust is increasingly applied to management of security, especially in access control. This paper puts forward a novel trust model in multi-domain grid environment and trust factor was originally introduced into access control architecture of grid to extend classic ABAC model. By extending the authorization architecture of XACML, extended ABAC based access control architecture for grid was submitted. In our experiment, the increase and decrease of trust are non-symmetrical and the trust model is sensitive to the malicious attacks. It can effectively control the trust change of different nodes and the trust model can reduce effectively the damage of vicious attack.

Keywords

authorisation; grid computing; ABAC; XACML; authorization architecture; grid security; grid system; multidomain grid environment; security challenges; security management; trust aware grid access control architecture; trust factor; Authorization; Computational modeling; Computer architecture; Grid computing; Organizations; access control; architecture; attribute; grid computing; trust;

fLanguage

English

Publisher

ieee

Conference_Titel

Networking, Architecture and Storage (NAS), 2010 IEEE Fifth International Conference on

Conference_Location

Macau

Print_ISBN

978-1-4244-8133-0

Type

conf

DOI

10.1109/NAS.2010.18

Filename

5577281