Abstract
Grid computing is a continuously growing research field that concerns the implementation of a large scale resource sharing among different kind of institutions over the Internet. The sharing of resources among untrusted entities poses non trivial security problems. This paper proposes an approach to improve the security of computational services in the grid environment. For each grid service, this approach defines a fine grain security policy, that details the operations that are allowed on this service. This policy determines the secure environment where the grid job is executed.
Work partially supported by CNR project “Trusted e-services for Dynamic Coalitions” and by a CREATE-NET grant for the project “Quality of Protection (QoP)”
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Alpern, B., Attanasio, C.R., Barton, J.J., et al.: The jalapeño virtual machine. IBM System Journal 39(1) (2000)
Anderson, A.: Java access control mechanisms. Technical report, Sun Microsystems (2002)
Baker, M., Buyya, R., Laforenza, D.: Grids and grid technologies for wide-area distributed computing. International Journal of Software: Practice and Experience (SPE) 32(15), 1437–1466 (2002)
Chapin, S.J., Katramatos, D., Karpovich, J., Grimshaw, A.: Resource management in Legion. Future Generation Computer Systems 15(5-6), 583–594 (1999)
Chrinstense, E., Curbera, F., Meredith, G., Weerawarana, S.: Web service description language. W3C (2001)
Czajkowski, K., Foster, I., Karonis, N., Kesselman, C., Martin, S., Smith, W., Tuecke, S.: A resource management architecture for metacomputing systems. In: Feitelson, D.G., Rudolph, L. (eds.) IPPS-WS 1998, SPDP-WS 1998, and JSSPP 1998. LNCS, vol. 1459, pp. 62–92. Springer, Heidelberg (1998)
Foster, I., Kesselman, C.: The globus project: A status report. In: Proc. of IPPS/SPDP 1998 Heterogeneous Computing Workshop, pp. 4–18 (1998)
Foster, I., Kesselman, C., Nick, J.M., Tuecke, S.: Grid services for distributed system integration. IEEE Computer 35(6), 37–46 (2002)
Foster, I., Kesselman, C., Nick, J.M., Tuecke, S.: The physiology of the grid: An open grid service architecture for distributed system integration. Globus Project (2002), http://www.globus.org/research/papers/ogsa.pdf
Foster, I., Kesselman, C., Tsudik, G., Tuecke, S.: A security architecture for computational grids. In: Proc. 5th ACM Conference on Computer and Communications Security Conference, pp. 83–92 (1998)
Foster, I., Kesselman, C., Tuecke, S.: The anatomy of the grid: Enabling scalable virtual organizations. International Journal of Supercomputer Applications 15(3), 200–222 (2001)
Gong, L.: Inside Java2 Platform Security, 2nd edn. Addison-Wesley, Reading (1999)
Gray, P.A., Sunderam, V.S.: Icet: Distributed computing and java. Concurrency: Practice and Experience 9(11), 1139–1160 (1997)
Gosling, J., Joy, B., Steele, G., Bracha, G.: The Java Language Specification. Sun Microsystems (2000)
Lindholm, T., Yellin, F.: The Java Virtual Machine Specification. Sun Microsystems (1999)
Nagaratnam, N., Janson, P., Dayka, J., Siebenlist, F., Welch, V., Tuecke, S., Foster, I.: Security architecture for open grid service. Global Grid Forum Recommendation Draft (2004)
Neary, M.O., Christiansen, B., Cappello, P., Schauser, K.E.: Javelin: Parallel computing on the internet. Future Generation Comp. Systems 15, 659–674 (1999)
Sarmenta, L.F.G., Hirano, S.: Bayanihan: building and studying Web-based volunteer computing systems using Java. Future Generation Computer Systems 15(5-6), 675–686 (1999)
Tuecke, S., Czajkowski, K., Foster, I., Frey, J., Graham, S., Kesselman, C.: Grid service specification. Global Grid Forum Recommendation Draft (2002)
Vahdat, A., Anderson, T., Dahlin, M., Belani, E., Culler, D., Eastham, P., Yoshikawa, C.: WebOS: Operating system services for wide area applications. In: Proc. of the Seventh Symp. on High Performance Distributed Computing (1998)
Welch, V., Siebenlist, F., Czajkowski, K., Gawor, J., Pearlman, L., Foster, I., Bresnahan, J., Kesselman, C., Metier, S., Tuecke, S.: Security for grid services. In: 12th IEEE International Symp. on High Performance Distributed Computing (2003)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2004 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Baiardi, F., Martinelli, F., Mori, P., Vaccarelli, A. (2004). Improving Grid Services Security with Fine Grain Policies. In: Meersman, R., Tari, Z., Corsaro, A. (eds) On the Move to Meaningful Internet Systems 2004: OTM 2004 Workshops. OTM 2004. Lecture Notes in Computer Science, vol 3292. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30470-8_30
Download citation
DOI: https://doi.org/10.1007/978-3-540-30470-8_30
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-23664-1
Online ISBN: 978-3-540-30470-8
eBook Packages: Springer Book Archive