Abstract
Data grid system supports uniform and secure access of heterogeneous distributed data resources across a range of administrative domains, each with its own local security policy. The security challenge has been a focus in a data grid environment. This paper mainly presents GridDaEn’s security mechanisms. In addition to the basic authentication and authorization functionality, it provides an integrated security strategy featured by shared context-based secure channel building to leverage security processing efficiency so as to improve interaction performance occurring among multiple domains in GridDaEn. Meanwhile, by means of proxy credential single-sign-on across multiple domains can be achieved. Experiments show that this approach can guarantee system security and reliability with great performance enhancement.
This paper was supported by the National 863 High Technology Plan of China under the grant No. 2002AA131010, and the National Natural Science Foundation of China under the grant No. 60203016.
Chapter PDF
Similar content being viewed by others
References
xiao, N., fu, w., huang, b., lu, x.: Design and Implementation of data grid system GridDaEn. In: Computer Nation Conference of China (CNCC), 11 (2003)
Ferreira, L., Berstis, V., Armstrong, J., et al.: Introduction to Grid Computing with Globus, pp. 51–81 (2002), http://www.ibm.com/redbooks
Internet X.509 Public Key Infrastructure: Certificate and Certificate Revocation List (CRL) Profile (2002), http://www.ietf.org/rfc/rfc3280.txt
Ferraiolo, D.F., Sandhu, R., Gavrila, S., et al.: Proposed NIST Standard for Role-Based Access Control. ACM Transactions on Information and System Security 4(3), 224–274 (2001)
Laszewski, G.v., Foster, I., Gawor, J., Lane, a.P.: A Java Commodity Grid Kit. Concurrency and Computation: Practice and Experience 13(8-9), 643–662 (2001)
Foster, I., Kesselman, C., Tsudik, G., Tuecke, S.: A Security Architecture for Computational Grids. In: 5th ACM Conf., on Computer and Communication Security (1997)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2004 IFIP International Federation for Information Processing
About this paper
Cite this paper
Xiao, N., Wu, X., Fu, W., Qu, X. (2004). A Data Grid Security System Based on Shared Context. In: Jin, H., Gao, G.R., Xu, Z., Chen, H. (eds) Network and Parallel Computing. NPC 2004. Lecture Notes in Computer Science, vol 3222. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30141-7_8
Download citation
DOI: https://doi.org/10.1007/978-3-540-30141-7_8
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-23388-6
Online ISBN: 978-3-540-30141-7
eBook Packages: Springer Book Archive