Title :
2L-RBACG: A new framework for resource access control in grid environments
Author :
Baktash, Hakimeh Alemi ; Karimi, MohammadBagher ; Meybodi, MohammadReza ; Bouyer, Asgarali
Author_Institution :
Islamic Azad Univ.-Qazvin branch, Qazvin, Iran
Abstract :
With the increasing complexity of dynamic and collaborative computing environments in Grid, access control has become a critical factor. Several approaches have been proposed in grid environment for scalable and efficient authorizations that are either VO-centric or Resource-centric. Reviewing different kinds of proposed authorization systems, we find out that VO-level and Resource-level authorization systems look at two different aspects of the grid authorization. Indeed, they complement each other, and can be implemented together to provide a holistic authorization solution. For this purpose, we propose a new access control framework which uses an extended two level RBAC model in Grid computing environments. By separating the administrations of users by VO level policies and mapping these policies to resources by resource or service providers, our scheme provides decentralized, autonomous, and fine-grained security management. The art of this approach is support of high flexibility in policy configuration, dynamically modifying authorization policies and reducing the cost of policy management.
Keywords :
authorisation; grid computing; groupware; virtual enterprises; virtual reality; 2L-RBACG; RBAC model; authorization systems; collaborative computing environment; dynamic computing environment; fine grained security management; grid computing environment; resource access control; resource level authorization system; virtual organization; Authorization; Communities; Organizations; Permission; Scalability;
Conference_Titel :
Digital Information Management (ICDIM), 2010 Fifth International Conference on
Conference_Location :
Thunder Bay, ON
Print_ISBN :
978-1-4244-7572-8
DOI :
10.1109/ICDIM.2010.5662244
