Title :
Intra-engine service security for grids based on WSRF
Author :
Smith, Matthew ; Friese, Thomas ; Freisleben, Bernd
Author_Institution :
Dept. of Math. & Comput. Sci., Marburg Univ., Germany
Abstract :
In typical on demand grid computing scenarios, services from different organisations can potentially run in the same Web service engine on a single grid node, making intra-engine service security vital for any production system. In this paper, a solution to the problem of intra-engine inter-service security for ad hoc grid environments based on WSRF is presented. To ensure that only authorized access to grid services is possible from within other services´ code, a dynamic group enabled sandboxing approach within Apache Axis is proposed to protect dynamically deployed grid services. It relies on the features provided by a hot deployment service developed for ad hoc grids. A prototypical implementation of the hot deployment service and the intra-engine service security approach based on the Globus Toolkit 4 (GT4) is used to demonstrate the feasibility of our approach.
Keywords :
Internet; authorisation; grid computing; Apache Axis; Globus Toolkit 4; WSRF; Web service engine; ad hoc grid environments; authorized access; grid computing; intraengine interservice security; sandboxing approach; Computer science; Computer security; Engines; Grid computing; Mathematics; Production systems; Protection; Prototypes; Service oriented architecture; Web services;
Conference_Titel :
Cluster Computing and the Grid, 2005. CCGrid 2005. IEEE International Symposium on
Print_ISBN :
0-7803-9074-1
DOI :
10.1109/CCGRID.2005.1558625
