Title :
A Multipolicy Authorization Framework for Grid Security
Author :
Lang, Bo ; Foster, Ian ; Siebenlist, Frank ; Ananthakrishnan, Rachana ; Freeman, Tim
Author_Institution :
Div. of Math. & Comput. Sci., Argonne Nat. Lab., IL
Abstract :
A grid system is a virtual organization that is composed of several autonomous domains. Authorization in such a system needs to be flexible and scalable to support multiple security policies. Basing on the Web services security specifications such as XACML, SAML, and the special security needs of the grid computing, we have constructed an authorization framework in the Globus Toolkit 4 that can support multiple policies. This paper describes the concepts of our design and introduces the structure and the components of the authorization framework. To show the flexibility and scalability of the framework, we introduce a new blacklist/whitelist-based authorization mechanism that can be seamlessly integrated into the framework
Keywords :
authorisation; grid computing; Web services security specification; blacklist authorization system; grid computing; grid security system; multipolicy authorization framework; virtual organization; whitelist authorization mechanism; Access control; Authorization; Computer science; Distributed computing; Grid computing; Markup languages; Mathematics; National security; Scalability; Web services;
Conference_Titel :
Network Computing and Applications, 2006. NCA 2006. Fifth IEEE International Symposium on
Conference_Location :
Cambridge, MA
Print_ISBN :
0-7695-2640-3
