Advertisement

Distributed Authentication in GRID5000

  • Sebastien Varrette
  • Sebastien Georget
  • Johan Montagnat
  • Jean-Louis Roch
  • Franck Leprevost
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3762)

Abstract

Between high-performance clusters and grids appears an intermediate infrastructure called cluster grid that corresponds to the interconnection of clusters through the Internet. Cluster grids are not only dedicated to specific applications but should allow the users to execute programs of different natures. This kind of architecture also imposes additional constraints as the geographic extension raises availability and security issues. In this context, authentication is one of the key stone by providing access to the resources. Grid5000 is a french project based on a cluster grid topology. This article expounds and justifies the authentication system used in Grid5000. We first show the limits of classical approaches that are local files and NIS in such configurations. We then propose a scalable alternative based on the LDAP protocol allowing to meet the needs of cluster grids, either in terms of availability, security and performances. Finally, among the various applications that can be executed in the Grid5000 platform, we present μgrid, a minimal middleware used for medical data processing.

Keywords

Authentication System Naming Service Access Control List Cluster Grid Authentication Time 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Foster, I., Kesselman, C.: Globus: A metacomputing infrastructure toolkit. International J. of Supercomputer Applications and High Performance Computing 11, 115–128 (1997)CrossRefGoogle Scholar
  2. 2.
    Fedak, G., Germain, C., N’eri, V., Cappello, F.: Xtremweb: A generic global computing system. In: IEEE Int. Symp. on Cluster Computing and the Grid (2001)Google Scholar
  3. 3.
    Foster, I.: The anatomy of the Grid: Enabling scalable virtual organizations. In: Sakellariou, R., Keane, J.A., Gurd, J.R., Freeman, L. (eds.) Euro-Par 2001. LNCS, vol. 2150, p. 1. Springer, Heidelberg (2001)CrossRefGoogle Scholar
  4. 4.
    Foster, I., Kesselman, C., Tsudik, G., Tuecke, S.: A Security Architecture for Computational Grids. In: Fifth ACM Conference on Computer and Communications Security Conference, San Francisco, California, pp. 83–92 (1998)Google Scholar
  5. 5.
    Nowell Corporation. Netware 6 (2005), http://www.novell.com/documentation/nw6p/index.html
  6. 6.
    Wahl, M., Howes, T., Kille, S.: RFC 2251 - Lightweight Directory Access Protocol (v3). Technical report, IETF (1997), http://www.ietf.org/rfc/rfc2251.txt
  7. 7.
    Stonebraker, M., Aoki, P.M., Devine, R., Litwin, W., Olson, M.A.: Mariposa: A new architecture for distributed data. In: International Conference on Data Engineering (ICDE), pp. 54–65 (1994)Google Scholar
  8. 8.
    Seitz, L., Montagnat, J., Pierson, J.M., Oriol, D., Lingrand, D.: Authentication and autorisation prototype on the microgrid for medical data management. In: Healthgrid 2005, Oxford, UK (2005)Google Scholar
  9. 9.
    Montagnat, J., Breton, V., Magnin, I.: Partitionning medical image databases for content-based queries on a grid. Methods of Information in Medicine 44 (2005)Google Scholar
  10. 10.
    Varrette, S., Roch, J.L., Denneulin, Y., Leprevost, F.: Secure Architecture for Clusters and Grids. In: Proceedings of the 2ème Confèrence Internationale sur les Infrastructures Critiques CRIS 2004, Grenoble, France. IEEE, Los Alamitos (2004)Google Scholar
  11. 11.
    Apurva, K.: The OpenLDAP Proxy Cache. Technical report, IBM Research lab of India (2003)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2005

Authors and Affiliations

  • Sebastien Varrette
    • 1
    • 4
  • Sebastien Georget
    • 2
  • Johan Montagnat
    • 3
  • Jean-Louis Roch
    • 4
  • Franck Leprevost
    • 1
  1. 1.INRIA DREAM teamUniversity of Luxembourg, CESI-LACSLuxembourg
  2. 2.CNRS I3S unit, RAINBOW team 
  3. 3.Sophia AntipolisFrance
  4. 4.MOAIS/RAGTIME ProjectID-IMAG LaboratoryGrenobleFrance

Personalised recommendations