Spatial data access control in grid environment

A spatial data access control model in grid environment was proposed base on Globus Security Infrastructure (GSI). Firstly, A spatial datasets sharing framework was built up by Monitor and Discover Service(MDS), and then a common control model was proposed to realize spatial data access control. In this model, every user was mapped to a given role, and every role had a unique digital certificate to distinguish its identification, then every role had the given permission to access the resources. Moreover, a further designed model was proposed to control the role's accessibility of rectangle in given spatial datasets. Two scenarios were put forward to control spatial data access between different organizations. The first was that all of the organizations shared the same roles, and then the organization realized self-control by enduing different roles with different rights. While the second was that every organization had its own users, roles and resource controls, and then the self-control was enhanced. The model was implemented by Globus Toolkits (GT), and experiment results illustrated that the proposed model could control the spatial data access effectively in a grid environment.

[1]  Rolf Oppliger,et al.  Using Attribute Certificates to Implement Role-based Authorization and Access Controls , 2000 .

[2]  Shaowen Wang,et al.  A quadtree approach to domain decomposition for spatial interpolation in Grid computing environments , 2003, Parallel Comput..

[3]  Yao Zheng,et al.  The design and implementation of scalable information services in a grid environment , 2005, 2005 IEEE International Conference on Services Computing (SCC'05) Vol-1.

[4]  Ian T. Foster,et al.  Globus: a Metacomputing Infrastructure Toolkit , 1997, Int. J. High Perform. Comput. Appl..

[5]  Ian T. Foster,et al.  The Anatomy of the Grid: Enabling Scalable Virtual Organizations , 2001, Int. J. High Perform. Comput. Appl..

[6]  Ian Foster,et al.  The Grid 2 - Blueprint for a New Computing Infrastructure, Second Edition , 1998, The Grid 2, 2nd Edition.

[7]  Ian T. Foster,et al.  A security architecture for computational grids , 1998, CCS '98.

[8]  Martin Nemzow,et al.  Rethinking Public Key Infrastructures and Digital Certificates and Privacy , 2001 .

[9]  Steven Tuecke,et al.  X.509 Proxy Certificates for Dynamic Delegation , 2004 .

[10]  Ian T. Foster,et al.  Grid information services for distributed resource sharing , 2001, Proceedings 10th IEEE International Symposium on High Performance Distributed Computing.

[11]  Xiaoli Wang,et al.  Design of middleware based grid GIS , 2005, Proceedings. 2005 IEEE International Geoscience and Remote Sensing Symposium, 2005. IGARSS '05..

[12]  Qiuxiao Chen,et al.  Architecture design of grid GIS and its applications on image processing based on LAN , 2004, Inf. Sci..

[13]  Steven Tuecke,et al.  An online credential repository for the Grid: MyProxy , 2001, Proceedings 10th IEEE International Symposium on High Performance Distributed Computing.

[14]  Jason Novotny,et al.  GridSphere: a portal framework for building collaborations , 2004, Concurr. Pract. Exp..

[15]  Pei Tao,et al.  The Design of Middleware-Based Grid-GIS , 2002 .

[16]  Ami Marowka,et al.  The GRID: Blueprint for a New Computing Infrastructure , 2000, Parallel Distributed Comput. Pract..

[17]  Umit Topaloglu,et al.  Globus security model for grid environment , 2005, SOEN.

[18]  Ian T. Foster,et al.  Security for Grid services , 2003, High Performance Distributed Computing, 2003. Proceedings. 12th IEEE International Symposium on.