Skip to main content
SpringerLink
Log in

A New Architecture Design for Differentiated Resource Sharing on Grid Service

  • Conference paper
Computational Science and Its Applications – ICCSA 2004 (ICCSA 2004)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3043))

Included in the following conference series:

  • 595 Accesses

Abstract

Current Grid Security Infrastructure (GSI) using Single Sign On (SSO) mechanism based on Public Key Infrastructure (PKI) allows resource consumer to access resources securely and widely. There is no mechanism to access resource differentially in Grid environment currently. Furthermore, Open Grid Service Infrastructure (OGSI) in Global Grid Forum (GGF) extends use of Grid system or services up to business area using Web service technology. Therefore differential resource (or service) access from remote users is necessary operation to resource holders to share their resources securely. This paper presents a novel security approach on GSI to share resources differentially on the private policy using Security Assertion Markup Language (SAML) and eXtensible Access Control Markup Language (XACML) by adding scripts for resource broker (or controller). This scheme offers much flexible and effective mechanism on the recent Grid service environments.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 74.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Globus, http://www.globus.org

  2. The PKI page, http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=xacml

  3. X.509 Certificates and Certificate Revocation Lists (CRLs), http://java.sun.com/products/jdk/1.2/docs/guide/security/cert3.html

  4. OpenSSL, http://www.openssl.org/

  5. Butler, R., Engert, D., Foster, I., Kesselman, C., Tuecke, S., Volmer, J., Welch, V.: A National-Scale Authentication Infrastructure. IEEE Computer 33(12), 60–66 (2000)

    Google Scholar 

  6. Foster, Kesselman, C., Tsudik, G., Tuecke, S.: A Security Architecture for Computational Grids. In: Proc. 5th ACM Conference on Computer and Communications Security Conference, pp. 83–92 (1998)

    Google Scholar 

  7. Global Grid Forum, http://www.globalgridforum.org

  8. Assertions and Protocol for the OASIS Security Assertion Mark up Language (SAML), OASIS Standard (November 5, 2002)

    Google Scholar 

  9. A Brief Introduction to XACML, http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=xacml

  10. XML Key Management Specification (XKMS) Ver 2.0. W3C Working Draft (April 18, 2003)

    Google Scholar 

  11. Hallam-Banker, P.: W3C XKMS workshop position paper. In: Proceedings of XKMS Workshop, Redwood City, CA, July 19 (2001)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Division of Information and Communication, Seoul Women’s University, Seoul, Korea

    Eui-Nam Huh

Authors
  1. Eui-Nam Huh
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Chemistry, University of Perugia, Via Elce di Sotto, 8, I-06123, Perugia, Italy

    Antonio Laganá

  2. Department of Computer Science, University of Calgary, 2500 University Drive N.W., T2N 1N4, Calgary, AB, Canada

    Marina L. Gavrilova

  3. William Norris Professor, Head of the Computer Science and Engineering Department, University of Minnesota, USA

    Vipin Kumar

  4. School of Computing, Soongsil University, Seoul, Korea

    Youngsong Mun

  5. OptimaNumerics Ltd., Cathedral House, 23-31 Waring Street, BT1 2DX, Belfast, UK

    C. J. Kenneth Tan

  6. Department of Mathematics and Computer Science, University of Perugia, via Vanvitelli, 1, I-06123, Perugia, Italy

    Osvaldo Gervasi

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Huh, EN. (2004). A New Architecture Design for Differentiated Resource Sharing on Grid Service. In: Laganá, A., Gavrilova, M.L., Kumar, V., Mun, Y., Tan, C.J.K., Gervasi, O. (eds) Computational Science and Its Applications – ICCSA 2004. ICCSA 2004. Lecture Notes in Computer Science, vol 3043. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-24707-4_46

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-24707-4_46

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-22054-1

  • Online ISBN: 978-3-540-24707-4

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation