Title :
Securing Grid Workflows with Trusted Computing (Extended Abstract)
Author :
Yau, Po-Wah ; Tomlinson, Allan ; Balfe, Shane ; Gallery, Eimear
Author_Institution :
Inf. Security Group, Univ. of London, Egham
Abstract :
Summary form only given. The grid, a distributed computing paradigm, seeks to exploit the synergies of technology and social collaboration to solve data or computation-intensive problems. The risk to a user´s data and results is dramatically increased when using workflows, because the entire dataset is exposed to the grid. The use of reputation and provenance information has been proposed to avoid selecting ´untrusted´ nodes when provisioning grid jobs. However, this information may be unreliable or open to manipulation. We propose a scheme that uses trusted platforms that are compliant with the trusted computing group specifications. We make use of integrity measurement, sealing and platform attestation to provide the following security services to grid workflows: trusted resource provider selection, confidentiality of job information, integrity of job information, and audit data for process provenance.
Keywords :
data integrity; formal specification; formal verification; grid computing; private key cryptography; public key cryptography; data integrity; data security; distributed computing; formal specification; grid workflow; private key cryptography; public key cryptography; resource broker verification service; trusted computing; Collaborative work; Councils; Data security; Distributed computing; Grid computing; Information security; International collaboration; Laboratories; Military computing; Protection; Attestation; Grid; Sealing; Trusted Computing; Workflow;
Conference_Titel :
Cluster Computing and the Grid, 2008. CCGRID '08. 8th IEEE International Symposium on
Conference_Location :
Lyon
Print_ISBN :
978-0-7695-3156-4
Electronic_ISBN :
978-0-7695-3156-4
DOI :
10.1109/CCGRID.2008.77
