SOA:一种面向服务的网格授权系统

SOA:A Service-oriented Grid Authorization System

下载PDF

导出

摘要随着面向服务的网格技术的发展和应用,如何解决访问资源的授权成为一个关键性问题。本文通过对当前授权系统的概述和分析,设计了一种面向服务的网格授权系统(service-oriented authorization system for grid,SOA)。通过设计网格平台的集中授权服务,并与Globus Toolkit 4进行验证测试,显示SOA系统性能良好,能够为网格应用提供细粒度的、灵活的基于属性的授权保护。 With the rapid development and application of service-oriented Grid technologies, how to make resource authorization has become a critical issue. In this paper, we summary and analyze the related authorization systems, and then a serviceoriented authorization system named SOA is designed. An authorization service for Grid middleware is implemented, and some tests integrated with GT4 are conducted. The experimental results show our methods are efficiency and practical.

作者高宁吕英华

机构地区北京邮电大学

出处《电信科学》北大核心 2008年第10期74-79,共6页 Telecommunications Science

基金国家科技支撑计划资助项目(No.2006BAK12B20) 国家自然科学基金资助项目(No.60671055)

关键词服务网格授权系统安全策略安全断言标记语言 service grid, authorization service, security policy, SAML

分类号 TP311.13 [自动化与计算机技术—计算机软件与理论] TP311.52 [自动化与计算机技术—计算机软件与理论]

引文网络
相关文献

参考文献12

1Chapin S J, Katramatos D, Karpovich J, et al. Resource management in Legion. Future Generation Computer Systems, 1999, 15(5/6): 583-594
2Litzkow M J, Livny M, Mutka M W. Condor - a hunter of idle workstations. In: 8th International Conference on Distributed Computing Systems, San Jose, CA, June 1988.
3Erwin D W. UNICORE: a grid computing environment. In: Proceedings of the 7th International Euro-Par Conference Manchester on Parallel Processing, London, UK, August 2001.
4Foster I, Kesselman C. Globus: a metacomputing infrastructure toolkit. The International Journal of Supercomputer Applications and High Performance Computing, 1997, 11(2): 115-128.
5Foster I, Kesselman C. The globus project: a status report. Future Generation Computer Systems, 1999, 15(5/6): 607-621.
6Foster I, Kesselman C, Nick J M, et ol. The physiology of the grid: an open grid services architecture for distributed systems integration. IEEE Computer, 2002, 35 (6).
7Cantor S, Kemp J, Philpott R, et al. Assertions and protocols for the OASIS security assertion markup language (SAML) v2.0. OASIS Standard Saml-core-2.0-os, March 2005.
8Pearlman L, Welch V, Foster I, et ol. A community authorization service for group collaboration. In: IEEE 3rd International Workshop on Policies for Distributed Systems and Networks, Monteray, California, USA , 2001.
9Alfieri R, Cecchini R, Ciaschini V, et al. From gridmap-file to VOMS: managing authorization in a grid environment. Future Generation Computer Systems, 2005, 21(4): 549-558.
10Thompson M R, Essiari A, Mudumbai S. Certificate-based authorization policy in a PKI environment. ACM Transactions on Information and System Security (TISSEC), 2003, 6(4): 566-588.

1许保彬.浅析网络中SAN的授权方式[J].科技情报开发与经济,2007,17(22):187-189. 被引量：1
2邱刚.AD RMS信息权限保护研究[J].计算机安全,2011(2):20-24.
3洪帆,邓集波.基于任务的授权控制及其实现[J].计算机工程与科学,2002,24(2):62-65. 被引量：1
4邱刚.基于AD RMS的信息权限保护应用开发研究[J].网络安全技术与应用,2011(3):44-46.
5王路炯,李爱平,徐立云.面向网络化制造的用户认证模型及访问控制研究[J].计算机集成制造系统,2007,13(11):2121-2125. 被引量：2
6蔡佳.保证云存储的数据安全[J].网络安全技术与应用,2014(6):143-143.

电信科学

2008年第10期

浏览历史

内容加载中请稍等...

SOA:一种面向服务的网格授权系统

参考文献12

相关作者

相关机构

相关主题

浏览历史