GRID Security Review

A Computational GRID is a collection of heterogeneous computing resources spread across multiple administrative domains, serving the task of providing users with an easy access to these resources. Taking into account the advances in the area of high-speed networking, but also the increased computational power of current micro-processors, Computational GRIDs or meta-systems have gradually become more popular. However, together with the advantages that they exhibit they are also contributing to several problems associated with the design and implementation of a secure environment. The conventional approach to security, that of enforcing a single, system-wide policy, cannot be applied to large-scale distributed systems. This paper analyzes the security requirements of GRID Computing and reviews a number of security architectures that have been proposed. Furthermore, these architectures are evaluated in terms of addressing the major GRID security requirements that have been identified.

[1]  Steven Tuecke,et al.  Enabling Scalable Virtual Organizations , 2001 .

[2]  Ian Foster,et al.  The Security Architecture for Open Grid Services , 2002 .

[3]  Ian T. Foster,et al.  The Anatomy of the Grid: Enabling Scalable Virtual Organizations , 2001, Int. J. High Perform. Comput. Appl..

[4]  William E. Johnston,et al.  Overview of security considerations for computational and data grids , 2001, Proceedings 10th IEEE International Symposium on High Performance Distributed Computing.

[5]  Ian T. Foster,et al.  A security architecture for computational grids , 1998, CCS '98.

[6]  Andrew S. Grimshaw,et al.  A Flexible Security System for Metacomputing Environments , 1999, HPCN Europe.

[7]  Ian T. Foster,et al.  A National-Scale Authentication Infrastructur , 2000, Computer.

[8]  Amin Vahdat,et al.  The CRISIS Wide Area Security Architecture , 1998, USENIX Security Symposium.

[9]  Andrew S. Grimshaw,et al.  A new model of security for metasystems , 1999, Future Gener. Comput. Syst..

[10]  David E. Culler,et al.  WebOS: operating system services for wide area applications , 1998, Proceedings. The Seventh International Symposium on High Performance Distributed Computing (Cat. No.98TB100244).

[11]  Steven Tuecke,et al.  The Anatomy of the Grid , 2003 .

[12]  Andrew S. Tanenbaum,et al.  Globe: a wide area distributed system , 1999, IEEE Concurr..

[13]  Andrew S. Tanenbaum,et al.  A security architecture for object-based distributed systems , 2002, 18th Annual Computer Security Applications Conference, 2002. Proceedings..