Policy and enforcement in virtual organizations

Arguably, the main goal of grid computing is to facilitate the creation of virtual organizations (VOs); however, to date, not enough attention has been placed on the policies and mechanisms by which these VOs will operate. The core of the VO-roughly, the responsibility of each physical organization (PO) in the VO to contribute and not unjustly consume resources in achieving the overall goal of the VO - is at best service-level agreements (SLAs) that lack a concrete connection to the underlying grid software and at worst an implicit "in-spirit" agreement. Unfulfilled expectations and obligations on the part of each PO can have dire consequences and can ultimately lead to the demise of the VO itself. We identify three general policies regarding resource utilization by which VOs might operate and present the ramifications of each policy on the VO's day-to-day operations and the VO's ability to actually enforce the policy. A prototype implementation of a VO with the "you-get-what-you-give" policy is the basis of a concrete cost/benefit analysis of policy enforcement for this type of VO.

[1]  Richard Wolski,et al.  The network weather service: a distributed resource performance forecasting service for metacomputing , 1999, Future Gener. Comput. Syst..

[2]  Von Welch,et al.  Fine-Grain Authorization for Resource Management in the Grid Environment , 2002, GRID.

[3]  Ian T. Foster,et al.  A community authorization service for group collaboration , 2002, Proceedings Third International Workshop on Policies for Distributed Systems and Networks.

[4]  Giovanni Della-Libera,et al.  Web Services Security Policy Language (WS-SecurityPolicy) , 2002 .

[5]  Barbara M. Chapman,et al.  XML-Based Policy Engine Framework for Usage Policy Management in Grids , 2002, GRID.

[6]  Emil C. Lupu,et al.  A policy deployment model for the Ponder language , 2001, 2001 IEEE/IFIP International Symposium on Integrated Network Management Proceedings. Integrated Network Management VII. Integrated Management Strategies for the New Millennium (Cat. No.01EX470).

[7]  David Abramson,et al.  A Computational Economy for Grid Computing and its Implementation in the Nimrod-G Resource Brok , 2001, Future Gener. Comput. Syst..

[8]  Mark O'Neill,et al.  Web Services Security , 2003 .

[9]  Dinesh C. Verma,et al.  A Policy Service for GRID Computing , 2002, GRID.

[10]  Richard Wolski,et al.  Analyzing Market-Based Resource Allocation Strategies for the Computational Grid , 2001, Int. J. High Perform. Comput. Appl..

[11]  Daniel Roth,et al.  Web Services Policy Framework (WS- Policy) , 2002 .

[12]  Andrea Westerinen,et al.  Policy Core Information Model - Version 1 Specification , 2001, RFC.

[13]  Ian T. Foster,et al.  Grid information services for distributed resource sharing , 2001, Proceedings 10th IEEE International Symposium on High Performance Distributed Computing.

[14]  Bob Atkinson Web Services Security (WS-Security) , 2003 .