Message-Based Security Model for Grid Services

Azadeh Iranmehr, Arya Iranmehr, M.B. Sharifnia
{"title":"Message-Based Security Model for Grid Services","authors":"Azadeh Iranmehr, Arya Iranmehr, M.B. Sharifnia","doi":"10.1109/ICCEE.2009.244","DOIUrl":null,"url":null,"abstract":"Grid is concerned with the sharing and coordinated use of diverse resources in distributed \"virtual organizations.” The dynamic and multi-institutional nature of these environments introduces challenging security issues that demand new technical approaches. In particular, one must deal with diverse local mechanisms, support dynamic creation of services, and enable dynamic creation of trust domains. As Grid services are adopted and applied widely, as definition of an organizational boundary fade away in support of virtual organizations, as virtual organizations continue to evolve to support intermediaries such as firewalls, load balancers, and messaging hubs, and as awareness of the threats organizations face becomes more well understood, the need for a security model within Grid services grows clear. This paper reflects the challenges and requirements we have identified in a Grid environment. Based on those requirements, the proposed security architecture, by extending and leveraging (rather than replacing) existing security technology and assets, will enable businesses and organizations to more rapidly develop secure, interoperable Grid services. Because of the important role of message in Grid services, we limit our scope to message level security when developing our security model.","PeriodicalId":343870,"journal":{"name":"2009 Second International Conference on Computer and Electrical Engineering","volume":"230 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-12-28","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2009 Second International Conference on Computer and Electrical Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCEE.2009.244","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 3

Abstract

Grid is concerned with the sharing and coordinated use of diverse resources in distributed "virtual organizations.” The dynamic and multi-institutional nature of these environments introduces challenging security issues that demand new technical approaches. In particular, one must deal with diverse local mechanisms, support dynamic creation of services, and enable dynamic creation of trust domains. As Grid services are adopted and applied widely, as definition of an organizational boundary fade away in support of virtual organizations, as virtual organizations continue to evolve to support intermediaries such as firewalls, load balancers, and messaging hubs, and as awareness of the threats organizations face becomes more well understood, the need for a security model within Grid services grows clear. This paper reflects the challenges and requirements we have identified in a Grid environment. Based on those requirements, the proposed security architecture, by extending and leveraging (rather than replacing) existing security technology and assets, will enable businesses and organizations to more rapidly develop secure, interoperable Grid services. Because of the important role of message in Grid services, we limit our scope to message level security when developing our security model.
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
网格服务的基于消息的安全模型
网格关注的是分布式“虚拟组织”中各种资源的共享和协调使用。这些环境的动态性和多机构性引入了具有挑战性的安全问题,需要新的技术方法。特别是,必须处理各种本地机制,支持动态创建服务,并启用动态创建信任域。随着网格服务被广泛采用和应用,随着组织边界的定义逐渐消失以支持虚拟组织,随着虚拟组织不断发展以支持防火墙、负载平衡器和消息传递中心等中介,以及随着对组织面临的威胁的认识得到更好的理解,网格服务中对安全模型的需求变得越来越明显。本文反映了我们在网格环境中发现的挑战和需求。基于这些需求,建议的安全体系结构通过扩展和利用(而不是替换)现有的安全技术和资产,将使企业和组织能够更快地开发安全的、可互操作的网格服务。由于消息在网格服务中的重要作用,在开发安全模型时,我们将范围限制为消息级安全性。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 去求助
来源期刊
自引率
0.00%
发文量
0
期刊最新文献
ID Based Signature Schemes for Electronic Voting Service Oriented Approach to Improve the Power of Snorts On-line Colour Image Compression Based on Pipelined Architecture CMMP: Clustering-Based Multi-channel MAC Protocol in VANET Computer Aided Protection (Overcurrent) Coordination Studies
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1