Title :
An Authorization Mechanism Based on Privilege Negotiation Policy in Grid
Author :
Zhang Runlian ; Wu Xiaonian ; Dong Xiaoshe ; Guan Shangyuan
Author_Institution :
Sch. of Electron. & Inf. Eng., Xi´an Jiao Tong Univ., Xi´an
Abstract :
With the dynamic change of users and resources in different secure domains of Grid, the overall consistency of privileges defined would be broken. This would compromise Grid system and waste system overhead on dealing with the increasing grid jobs with invalid privileges. To address the problem, this paper proposes an authorization mechanism based on privilege negotiation policy. This mechanism can detect timely the change of privileges, negotiate automatically and resume quickly the overall consistency of privileges between different secure domains. The test result of the mechanism implementation shows that it shortens greatly the period of resuming the overall consistency of privileges between different secure domains when the consistency was broken. This reduces the number of grid jobs with invalid privileges. Thereby, it avoids wasting more system overhead of dealing with the increasing grid jobs with invalid privileges and improves system performance.
Keywords :
authorisation; grid computing; authorization mechanism; grid jobs; grid system; privilege negotiation policy; waste system; Authorization; Content addressable storage; Grid computing; High performance computing; Resource management; Resumes; Security; System performance; Testing; Waste materials; authorization mechanism; automated negotiation; grid security; privileges consistency;
Conference_Titel :
High Performance Computing and Communications, 2008. HPCC '08. 10th IEEE International Conference on
Conference_Location :
Dalian
Print_ISBN :
978-0-7695-3352-0
DOI :
10.1109/HPCC.2008.108
