Advertisement

Best Practices of User Account Management with Virtual Organization Based Access to Grid

  • Jiří Denemark
  • Michał Jankowski
  • Aleš Křenek
  • Luděk Matyska
  • Norbert Meyer
  • Miroslav Ruda
  • Paweł Wolniewicz
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3911)

Abstract

Scalable and fine-grained Grid authorization requires the move away from gridmap-file based access control and 1-to-1 mappings to individual operating system user accounts. This is recognized and addressed by virtual organization authorization services and user management systems e. g. Virtual Organization Membership Service (VOMS), Local Centre Authorization System (LCAS), Local Credential MAPping Service (LCMAPS) and Community Authorization Service (CAS). They do, however, not address user operating system account management and isolation/sandboxing requirements, such as flexible pooling of accounts while maintaining auditing records. In this paper we compare existing systems which solve the above shortcomings and are currently used in real production grids.

Keywords

Resource Provider Virtual Organization User Account Globus Toolkit Community Authorization Service 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Křenek, A., Sebestianová, Z.: Perun – Fault-Tolerant Management of Grid Resources. In: Cracow 2004 Grid Workshop Proceedings (2004)Google Scholar
  2. 2.
    Křenek, A., Sebestianová, Z., Sitera, J.: Perun (In Czech). Technical Report 1/2004, CESNET, z.s.p.o. (2004)Google Scholar
  3. 3.
    Kupczyk, M., Lawenda, M., Meyer, N., Wolniewicz, P.: Using Virtual User Account System for Managing Users Account in Polish National Cluster. In: Hertzberger, B., Hoekstra, A.G., Williams, R. (eds.) HPCN-Europe 2001. LNCS, vol. 2110, pp. 587–590. Springer, Heidelberg (2001)CrossRefGoogle Scholar
  4. 4.
    Jankowski, M., Meyer, N., Wolniewicz, P.: Virtual User System for Globus Based Grids. In: Cracow 2004 Grid Workshop Proceedings (2004)Google Scholar
  5. 5.
    Foster, I., Kesselman, C., Tuecke, S.: The Anatomy of the Grid: Enabling Scalable Virtual Organizations. International Journal of Supercomputer Applications 15(3) (2001)Google Scholar
  6. 6.
    Keahey, K., Doering, K., Foster, I.: From sandbox to playground: Dynamic virtual environments in the grid. In: GRID 2004. Proceedings of the Fifth IEEE/ACM International Workshop on Grid Computing (GRID 2004), Washington, DC, USA, pp. 34–42. IEEE Computer Society, Los Alamitos (2004)Google Scholar
  7. 7.
    Keahey, K., Ripeanu, M., Doering, K.: Dynamic creation and management of runtime environments in the grid. In: Workshop on Designing and Building Grid Services, GGF-9 (2003)Google Scholar
  8. 8.
    Keahey, K., Doering, K., Foster, I.T.: From sandbox to playground: Dynamic virtual environments in the grid. In: Grid, pp. 34–42 (2004)Google Scholar
  9. 9.
    Dymaczewski, W., Meyer, N., Stroiński, M., Wolniewicz, P.: Virtual Users Account System for Distributed Batch Processing. In: Sloot, P.M.A., Hoekstra, A.G., Bubak, M., Hertzberger, B. (eds.) HPCN-Europe 1999. LNCS, vol. 1593, pp. 1231–1234. Springer, Heidelberg (1999)CrossRefGoogle Scholar
  10. 10.
    Alfieri, R., Cecchini, R., Ciaschini, V., Dell’Agnello, L., Frohner, A., Gianoli, A., Lïentey, K., Spataro, F.: VOMS: an Authorization System for Virtual Organizations. In: 1st European Across Grids Conference, Santiago de Compostela (2003)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2006

Authors and Affiliations

  • Jiří Denemark
    • 3
  • Michał Jankowski
    • 2
  • Aleš Křenek
    • 1
  • Luděk Matyska
    • 1
    • 3
  • Norbert Meyer
    • 2
  • Miroslav Ruda
    • 1
  • Paweł Wolniewicz
    • 2
  1. 1.Institute of Computer ScienceMasaryk UniversityBrnoCzech Republic
  2. 2.Poznań Supercomputing and Networking CenterPoznańPoland
  3. 3.Faculty of InformaticsMasaryk UniversityBrnoCzech Republic

Personalised recommendations