DocumentCode
3498213
Title
2L-RBACG: A new framework for resource access control in grid environments
Author
Baktash, Hakimeh Alemi ; Karimi, MohammadBagher ; Meybodi, MohammadReza ; Bouyer, Asgarali
Author_Institution
Islamic Azad Univ.-Qazvin branch, Qazvin, Iran
fYear
2010
fDate
5-8 July 2010
Firstpage
359
Lastpage
366
Abstract
With the increasing complexity of dynamic and collaborative computing environments in Grid, access control has become a critical factor. Several approaches have been proposed in grid environment for scalable and efficient authorizations that are either VO-centric or Resource-centric. Reviewing different kinds of proposed authorization systems, we find out that VO-level and Resource-level authorization systems look at two different aspects of the grid authorization. Indeed, they complement each other, and can be implemented together to provide a holistic authorization solution. For this purpose, we propose a new access control framework which uses an extended two level RBAC model in Grid computing environments. By separating the administrations of users by VO level policies and mapping these policies to resources by resource or service providers, our scheme provides decentralized, autonomous, and fine-grained security management. The art of this approach is support of high flexibility in policy configuration, dynamically modifying authorization policies and reducing the cost of policy management.
Keywords
authorisation; grid computing; groupware; virtual enterprises; virtual reality; 2L-RBACG; RBAC model; authorization systems; collaborative computing environment; dynamic computing environment; fine grained security management; grid computing environment; resource access control; resource level authorization system; virtual organization; Authorization; Communities; Organizations; Permission; Scalability;
fLanguage
English
Publisher
ieee
Conference_Titel
Digital Information Management (ICDIM), 2010 Fifth International Conference on
Conference_Location
Thunder Bay, ON
Print_ISBN
978-1-4244-7572-8
Type
conf
DOI
10.1109/ICDIM.2010.5662244
Filename
5662244
Link To Document