The default Java implementation for security policies based on policy files doesn’t comply with the specific needs of metacomputing environments. Managing a large number of policy files for all Java runtime systems in the metacomputing system doesn’t scale. This paper presents a federated approach for security policy management in Javabased metacomputing systems. Security policies are stored in a policy base, which is managed by its policy service provider (Policer). The policy base and its Policer are replicated and the replicated policy bases are synchronized with each other in order to avoid a single point of failure. Any bootstrapping service provider gets its security policy dynamically from any available Policer in the network. The proposed solution ensures uniform policy-based authorization for all the services in the SORCER metacomputing environment through the use of the dynamic policy management methodology.
[1]
Radia J. Perlman,et al.
Network security - private communication in a public world
,
2002,
Prentice Hall series in computer networking and distributed systems.
[2]
Jan Newmarch.
A Programmer’s Guide to Jini™ Technology
,
2000,
Apress.
[3]
Raymond M. Kolonay,et al.
Federated Grid Computing with Interactive Service-oriented Programing
,
2006,
Concurr. Eng. Res. Appl..
[4]
Daniel Somerfield.
Professional Java Security
,
2001
.
[5]
Li Gong,et al.
Inside Java 2 Platform Security: Architecture, API Design, and Implementation
,
1999
.
[6]
V.V.S. Raveendra.
Inside java 2 platform security: architecture, API design and implementation [Book Review]
,
2002,
IEEE Software.