Dynamic context-aware access control for grid applications

Author

Zhang, Guangsen ; Parashar, Manish

Author_Institution

Dept. of Electr. & Comput. Eng., Rutgers Univ., Piscataway, NJ, USA

fYear

2003

fDate

17 Nov. 2003

Firstpage

101

Lastpage

108

Abstract

The emerging grid infrastructure presents many challenges due to its inherent heterogeneity, multidomain characteristic, and highly dynamic nature. One critical challenge is providing authentication, authorization and access control guarantees. We present the SESAME dynamic context-aware access control mechanism for pervasive grid applications. SESAME complements current authorization mechanisms to dynamically grant and adapt permissions to users based on their current context. The underling dynamic role based access control (DRBAC) model extends the classic role based access control (RBAC). We also present a prototype implementation of SESAME and DRBAC with the Discover computational collaboratory and an experimental evaluation of its overheads.

Keywords

authorisation; grid computing; message authentication; middleware; ubiquitous computing; SESAME dynamic context-aware access control; authorization; grid applications; inherent heterogeneity; message authentication; middleware; multidomain characteristic; pervasive applications; role based access control; Access control; Access protocols; Application software; Authentication; Authorization; Content addressable storage; Context-aware services; Grid computing; Permission; Software systems;

fLanguage

English

Publisher

ieee

Conference_Titel

Grid Computing, 2003. Proceedings. Fourth International Workshop on

Print_ISBN

0-7695-2026-X

Type

conf

DOI

10.1109/GRID.2003.1261704

Filename

1261704