Research on the Access Control Model under Grid Environment
The protection of a more reasonable and safer means of grid authorization, which guarantees the efficient implementation of grid tasks, is required by the application and development of grid technology. Aiming at some difficult problems caused by Role-Based Access Control (RBAC), introducing the concept of context, tasks and conditions as well as the addition of monitoring devices, this paper proposes a Multi-restriction Access Control model on grounds of RBAC with reference to the existing traditional access control methods, meets the minimum privileges principle, and achieves the purpose of dynamic grid authorization, conditional sharing and secure interoperability among cross-domain resources. Experiments show that this approach can effectively avoid the insecurity of static authorization holders, and has superiority over other approaches in security.
KeywordsGrid security Access control Role RBAC MRAC
- 1.Zhou W, You J, He J (2006) Design and implementation: a model of privilege management infrastructure based on RBAC. Microcomput Inf 5(3):3–36Google Scholar
- 2.Joshy J, Craig F (2005) Grid computing [M]. Tsinghua University Press, BeijingGoogle Scholar
- 5.Yao H, Hu H, Huang B et al (2005) Dynamic role and context-based access control for grid applications [C]. In: Proceedings of the 6th International conference on parallel and distributed computing, applications and technologies. [S.I.], IEEE Press, pp 404–406Google Scholar
- 6.Alfieri R, Cecchini R, Ciaschini V (2005) CAS, an authorization system for virtual organization [C]. In: Proceeding in CAS conference. Springer, BerlinGoogle Scholar