Improving Grid Services Security with Fine Grain Policies

Grid computing is a continuously growing research field that concerns the implementation of a large scale resource sharing among different kind of institutions over the Internet. The sharing of resources among untrusted entities poses non trivial security problems. This paper proposes an approach to improve the security of computational services in the grid environment. For each grid service, this approach defines a fine grain security policy, that details the operations that are allowed on this service. This policy determines the secure environment where the grid job is executed.

[1]  Vaidy S. Sunderam,et al.  IceT: Distributed Computing and Java , 1997, Concurr. Pract. Exp..

[2]  Ian Foster,et al.  The Security Architecture for Open Grid Services , 2002 .

[3]  Frank Yellin,et al.  The Java Virtual Machine Specification , 1996 .

[4]  Guy L. Steele,et al.  The Java Language Specification , 1996 .

[5]  Steven Tuecke,et al.  Grid Service Specification , 2002 .

[6]  Warren Smith,et al.  A Resource Management Architecture for Metacomputing Systems , 1998, JSSPP.

[7]  David E. Culler,et al.  WebOS: operating system services for wide area applications , 1998, Proceedings. The Seventh International Symposium on High Performance Distributed Computing (Cat. No.98TB100244).

[8]  Anne Anderson Java™ access control mechanisms , 2002 .

[9]  Stephen J. Fink,et al.  The Jalapeño virtual machine , 2000, IBM Syst. J..

[10]  John F. Karpovich,et al.  Resource management in Legion , 1999, Future Gener. Comput. Syst..

[11]  Ian T. Foster,et al.  The Anatomy of the Grid: Enabling Scalable Virtual Organizations , 2001, Int. J. High Perform. Comput. Appl..

[12]  Peter R. Cappello,et al.  Javelin: Parallel computing on the internet , 1999, Future Gener. Comput. Syst..

[13]  Ian T. Foster,et al.  Grid Services for Distributed System Integration , 2002, Computer.

[14]  Rajkumar Buyya,et al.  Grids and Grid technologies for wide‐area distributed computing , 2002, Softw. Pract. Exp..

[15]  Peter R. Cappello,et al.  Javelin: Internet‐based parallel computing using Java , 1997 .

[16]  Ian T. Foster,et al.  The Globus project: a status report , 1998, Proceedings Seventh Heterogeneous Computing Workshop (HCW'98).

[17]  Ian T. Foster,et al.  A security architecture for computational grids , 1998, CCS '98.

[18]  Steven Tuecke,et al.  The Physiology of the Grid An Open Grid Services Architecture for Distributed Systems Integration , 2002 .

[19]  Ian T. Foster,et al.  Security for Grid services , 2003, High Performance Distributed Computing, 2003. Proceedings. 12th IEEE International Symposium on.

[20]  Satoshi Hirano,et al.  Bayanihan: building and studying web-based volunteer computing systems using Java , 1999, Future Gener. Comput. Syst..