Title :
Addressing credential revocation in grid environments
Author :
Sundaram, Babu ; Chapman, Barbara M.
Author_Institution :
Dept. of Comput. Sci., Houston Univ., TX, USA
Abstract :
Credential revocation is a critical problem in grid environments and remains unaddressed in existing grid security solutions. We present our ongoing work in designing a novel grid authentication system, based on Globus GSI, that solves the revocation problem. The focus of this work is to ensure instantaneous revocation of both long-term digital identities of hosts/users and short-lived identities of user proxies. Our system employs mediated RSA (mRSA), adapts Boneh´s notion of semi-trusted mediators to suit security in virtual organizations and propagates proxy revocation information as in Micali´s NOVO-MODO system. We envision that our system would additionally provide a configuration-free security model for end users and fine-grained management of user credentials.
Keywords :
certification; grid computing; message authentication; Globus GSI; NOVO-MODO system; configuration-free security model; credential revocation; digital identities; grid authentication system; grid environments; grid security; proxy revocation information; semitrusted mediators; user credential management; virtual organizations; Authentication; Communication system security; Computer science; Computer security; Data security; Identity-based encryption; Information security; Protocols; Public key; Tin;
Conference_Titel :
Grid Computing, 2005. The 6th IEEE/ACM International Workshop on
Print_ISBN :
0-7803-9492-5
DOI :
10.1109/GRID.2005.1542764
