PKI-Based Authentication Mechanisms in Grid Systems

Author

Zhao, Shushan ; Aggarwal, Akshai ; Kent, Robert D.

Author_Institution

Sch. of Comput. Sci., Univ. of Windsor, Windsor, ON

fYear

2007

fDate

29-31 July 2007

Firstpage

83

Lastpage

90

Abstract

Grids have emerged as the basic infrastructure for high performance distributed computing and data collaborations. Although they depict an attractive new world of computing, security is the biggest barrier against wide adoption of Grids. Authentication is the basis of security in grids. GSI uses X.509 PKI and proxy certificates as authentication foundation, and uses gateway for mapping certificates between different authentication mechanisms. In this article, we review PKI and PKI-based authentication mechanisms used in grid systems. These mechanisms are insufficient or problematic under some circumstances. We study and analyze some prominent challenges or problems: compatibility across different PKIs, proxy certificate revocation, security weakness, and authentication in ad hoc grids. For each of them, we introduce possible solutions, and analyze state-of-the-art technologies and ongoing researches that indicate the direction of future work on this topic.

Keywords

grid computing; message authentication; PKI-based authentication; X.509 PKI; data collaboration; grid security; grid systems; high performance distributed computing; proxy certificates; Authentication; Authorization; Communication system security; Cryptographic protocols; Data security; Digital signatures; Distributed computing; Grid computing; Personal communication networks; Public key;

fLanguage

English

Publisher

ieee

Conference_Titel

Networking, Architecture, and Storage, 2007. NAS 2007. International Conference on

Conference_Location

Guilin

Print_ISBN

0-7695-2927-5

Type

conf

DOI

10.1109/NAS.2007.42

Filename

4286412