论文信息 - Dynamic delegation approach for access control in grids

Dynamic delegation approach for access control in grids

Access control is a mechanism to secure resources from unauthorized use. Securing a grid resource imposes a distinctive set of challenges to access control policies and mechanisms. As the grid resources are distributed in space and time, direct authorization methods are not always sufficient. Delegation is a way of indirect authorization whereby an active entity in a grid system can access a resource or act on behalf of another active entity. Access to resources in grids can be broadly categorized as full, nil or partial implying a degree of fuzziness. Conventional security models are rigid and the tasks that need to be performed by an active grid entity, require a more flexible form of access. A fuzzy logic based scheme provides more flexibility to resource access and access control in grids. The delegated rights have to be granted in a dynamic environment where the entities of a grid do not have prior information about each other. We propose a new scheme for this, which uses a two-stage fuzzy inference process based on trust relationships among the grid entities

Atul Negi | V. N. Sastry | G. Geethakumari

[1] Ian T. Foster,et al. The anatomy of the grid: enabling scalable virtual organizations , 2001, Proceedings First IEEE/ACM International Symposium on Cluster Computing and the Grid.

[2] David Snelling,et al. Explicit Trust Delegation: Security for dynamic Grids , 2004 .

[3] Shanshan Song,et al. Fuzzy Trust Integration for Security Enforcement in Grid Computing , 2004, NPC.

[4] George J. Klir,et al. Fuzzy sets and fuzzy logic - theory and applications , 1995 .

[5] Shanshan Song,et al. Trusted Grid Computing with Security Assurance and Resource Optimization , 2004, PDCS.

[6] Hilary H. Hosmer,et al. Security is fuzzy!: applying the fuzzy logic paradigm to the multipolicy paradigm , 1993, NSPW '92-93.

[7] Marty Humphrey,et al. Security for Grids , 2005, Proceedings of the IEEE.

[8] Muthucumaru Maheswaran,et al. Towards Trust-Aware Resource Management in Grid Computing Systems , 2002, 2nd IEEE/ACM International Symposium on Cluster Computing and the Grid (CCGRID'02).

[9] Marty Humphrey,et al. Toward Realizable Restricted Delegation in Computational Grids , 2001, HPCN Europe.

[10] Ian T. Foster,et al. The Anatomy of the Grid: Enabling Scalable Virtual Organizations , 2001, Int. J. High Perform. Comput. Appl..

[11] Kam-Wing Ng,et al. Integrating Trust in Grid Computing Systems , 2004, GCC.

[12] János Abonyi,et al. Learning fuzzy classification rules from labeled data , 2003, Inf. Sci..