Securing Grid Workflows with Trusted Computing (Extended Abstract)

Author

Yau, Po-Wah ; Tomlinson, Allan ; Balfe, Shane ; Gallery, Eimear

Author_Institution

Inf. Security Group, Univ. of London, Egham

fYear

2008

Firstpage

700

Lastpage

700

Abstract

Summary form only given. The grid, a distributed computing paradigm, seeks to exploit the synergies of technology and social collaboration to solve data or computation-intensive problems. The risk to a user´s data and results is dramatically increased when using workflows, because the entire dataset is exposed to the grid. The use of reputation and provenance information has been proposed to avoid selecting ´untrusted´ nodes when provisioning grid jobs. However, this information may be unreliable or open to manipulation. We propose a scheme that uses trusted platforms that are compliant with the trusted computing group specifications. We make use of integrity measurement, sealing and platform attestation to provide the following security services to grid workflows: trusted resource provider selection, confidentiality of job information, integrity of job information, and audit data for process provenance.

Keywords

data integrity; formal specification; formal verification; grid computing; private key cryptography; public key cryptography; data integrity; data security; distributed computing; formal specification; grid workflow; private key cryptography; public key cryptography; resource broker verification service; trusted computing; Collaborative work; Councils; Data security; Distributed computing; Grid computing; Information security; International collaboration; Laboratories; Military computing; Protection; Attestation; Grid; Sealing; Trusted Computing; Workflow;

fLanguage

English

Publisher

ieee

Conference_Titel

Cluster Computing and the Grid, 2008. CCGRID '08. 8th IEEE International Symposium on

Conference_Location

Lyon

Print_ISBN

978-0-7695-3156-4

Electronic_ISBN

978-0-7695-3156-4

Type

conf

DOI

10.1109/CCGRID.2008.77

Filename

4534287