Towards Novel And Efficient Security Architecture For RoleBased Access Control In Grid Computing
Journal Title: International Journal of Computer Science and Information Technologies - Year 2010, Vol 1, Issue 1
Abstract
Recently, there arose a necessity to distribute computing applications frequently across grids. Ever more these applications depend on services like data transfer or data portal services and submission of jobs. Owing to the fact that the distribution of services and resources in wide-area networks are heterogeneous, dynamic, and multi-domain, security is of vital significance in grid computing. Authorization and access control; the significant aspects of security, have attracted increased attention in grid computing. Role Based Access Control (RBAC) is an emerging access control mechanism in grid computing. RBAC was afforded in the Globus toolkit with the support of Community Authorization Service (CAS) and this CAS was employed by several researchers in providing access control. The major problem with the CAS is that the user credentials are revealed to the virtual organization (VO) thereby leaving them in jeopardy. Moreover, once the user credentials are hacked, both the user and VO resources become vulnerable. In this paper, we have proposed a novel architecture for Role Based Access Control in Grid computing where user credential and security are regarded as a prime concerns while sharing data and computational resources in a grid problem. The evaluation mechanism detailed in this paper is highly resistant for both the users as well as for the VO resources. In the proposed mechanism, the user credentials are not revealed to the VOs, thus protecting the users from hacking possibilities. Since the hacking possibilities of user credentials are reduced the proposed system also prevents VO resources being hacked by some adversary users of the organization. This makes our model more efficient when compared to other models.
Authors and Affiliations
M. Nithya , R. S. D. Wahida Banu
Keywords
Related Articles
- EP ID EP102610
- DOI -
- Views 127
- Downloads 0
An ARCHITECTURE MODEL for MANAGING TRANSACTIONS in DISCONNECTED MOBILE ENVIRONMENT
We present an architecture model for mobile transaction management for supporting disconnected computing. In this environment, Fixed Agents in the wired network cache the frequently accessed data from the server, which c...
Skin Detection Based Cryptography in Steganography (SDBCS)
As the popularity of digital cameras increases, some limitations of digital technology are becoming apparent and on the other hand it has become imperative to ensure security of information. Looking ahead...
Pattern Extraction, Classification and Comparison Between Attribute Selection Measures
In this research, we have compared three different attribute selection measures algorithms. We have used ID3 algorithm, C4.5 algorithm and CART algorithm. All these algorithms are decision tree based algor...
An overview of interval encoded temporal mining involving prioritized mining, fuzzy mining, and positive and negative rule mining
Databases and data warehouses have become a vital part of many organizations. So useful information and helpful knowledge have to be mined from transactions. In real life, media information has time attributes eith...
A Model of MULTI-VERIFIER channel e-mailing system using Steganographic scheme
In this paper, we presented a model of privileged channel e-mailing system for Internet communication. It is the model of a real-life secure mailing system for any organization. In this model a sender can send a secret m...