Trust in large-scale computational grids: an SPKI/SDSI extension for representing opinion

SPKI/SDSI is a flexible and extensible decentralized security model that provides authentication, confidentiality, and access control. However, SPKI/SDSI certification chains are not suitable for large scale, highly dynamic environments such as computational grids. This work extends the SPKI/SDSI model by including an opinion model based on subjective logic. A simulation is performed to evaluate the effectiveness of the proposal.

[1]  Martín Abadi,et al.  On SDSI's linked local name spaces , 1997, Proceedings 10th Computer Security Foundations Workshop.

[2]  Audun Jøsang,et al.  An Algebra for Assessing Trust in Certification Chains , 1999, NDSS.

[3]  Albert,et al.  Emergence of scaling in random networks , 1999, Science.

[4]  A. Jøsang Artificial Reasoning with Subjective Logic , 2008 .

[5]  Joni da Silva Fraga,et al.  Extending the SDSI / SPKI Model through Federation Webs , 2003, Communications and Multimedia Security.

[6]  Joseph Y. Halpern,et al.  A logical reconstruction of SPKI , 2003 .

[7]  G. G. Stokes "J." , 1890, The New Yale Book of Quotations.

[8]  Jon Howell,et al.  A Formal Semantics for SPKI , 2000, ESORICS.

[9]  Audun J sang,et al.  An Algebra for Assessing Trust in Certi cation Chains , 1998 .

[10]  Krishna P. Gummadi,et al.  King: estimating latency between arbitrary internet end hosts , 2002, IMW '02.

[11]  Miron Livny,et al.  Condor-a hunter of idle workstations , 1988, [1988] Proceedings. The 8th International Conference on Distributed.

[12]  Ronald L. Rivest,et al.  SDSI - A Simple Distributed Security Infrastructure , 1996 .

[13]  Ronald L. Rivest,et al.  Certificate Chain Discovery in SPKI/SDSI , 2002, J. Comput. Secur..

[14]  R. V. van Nieuwpoort,et al.  The Grid 2: Blueprint for a New Computing Infrastructure , 2003 .

[15]  Raphael Y. de Camargo,et al.  The Grid Architectural Pattern : Leveraging Distributed Processing Capabilities , 2022 .

[16]  Dirk Riehle,et al.  Pattern Languages of Program Design 3 , 1997 .

[17]  Butler W. Lampson,et al.  SPKI Certificate Theory , 1999, RFC.

[18]  Ninghui Li,et al.  Local names in SPKI/SDSI , 2000, Proceedings 13th IEEE Computer Security Foundations Workshop. CSFW-13.

[19]  Fabio Kon,et al.  InteGrade: object‐oriented Grid middleware leveraging the idle computing power of desktop machines , 2004, Concurr. Pract. Exp..