Title :
Research on a Fine-grained Access Control Mechanism for Cross-domain Grid
Author :
Zhang, Shaomin ; Wang, Baoyi
Author_Institution :
Sch. of Comput., North China Electr. Power Univ., Baoding
Abstract :
In grid environment, many resources can be shared. But the owner of the resource can decide, access, modify the access policy. Only legal user can access resources. Further, the communication activities in grid sometimes cross multi-domain. So a flexible secure access control mechanism is needed. After we have realized secure data exchange between communication parties in grid with the help of computer technology up to date, especially we focus on access control policy research. A access control structure for cross-domains grid which integrates X.509v4 PMI (privilege management infrastructure) with the XML security solution is presented. Further, a fine-grained access control mechanism, which has integrated the temporal KBAC in PMI is proposed. The corresponding temporal role assignment algorithm is given as a key technique. The access control mechanism improved the security of the system no matter the access comes from inside networks or outside networks.
Keywords :
XML; authorisation; electronic data interchange; grid computing; X.509v4 PMI; XML security solution; cross-domain grid; data exchange; fine-grained access control mechanism; privilege management infrastructure; temporal KBAC; temporal role assignment algorithm; Access control; Authorization; Communication system security; Content addressable storage; Data security; Grid computing; Law; Legal factors; Power systems; XML;
Conference_Titel :
Semantics, Knowledge and Grid, 2005. SKG '05. First International Conference on
Conference_Location :
Beijing
Print_ISBN :
0-7695-2534-2
Electronic_ISBN :
0-7695-2534-2
DOI :
10.1109/SKG.2005.109
