Skip to main content
SpringerLink
Log in

Enhancing the Scalability of the Community Authorization Service for Virtual Organizations

  • Conference paper
Content Computing (AWCC 2004)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3309))

Included in the following conference series:

Abstract

Grid computing has emerged as a special form of distributed computing and is distinguished from conventional distributed computing by its focus on dynamic, large-scale resource sharing over a wide geographic distribution. Grid Computing System (GCS) is a distributed system infrastructure over which distributed applications with cross-organization resource sharing are operated. Grid applications are modelled by the notion of virtual organization which is generally composed of participants from different organizations driven by specific tasks. In order to control participation and access to shared resource, authorization is essential in VO. Authorization in VO is challenging because of the dynamic and distributed nature of VO. A community authorization service (CAS) was proposed recently to meet the Grid challenges and to enforce fine-grained access control policies in the VO. However, the situation is aggravated when VO is used to model business application systems such as financial systems of commercial enterprises where security and accountability are of key concerns. The emphasis on separation of duties in business applications only make things worse. This paper aims to address these authorization issues when the GCS is used to support business applications. In this paper, we introduce the use of threshold closure as a tool for enhancing the CAS in order for the Grid to better support commercial VO.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Foster, I., Kesselman, C., Tuecke, S.: The anatomy of the grid: enabling scalable virtual organizations. Int. J. Supercomputer Applications 15(3), 200–222 (2001)

    Article  Google Scholar 

  2. Pearlman, L., Welch, V., Foster, I., Kesselman, C., Tuecke, S.: A Community Authorization Service for Group Collaboration. In: Proceedings of the IEEE 3rd International Workshop on Policies for Distributed Systems and Networks (2002)

    Google Scholar 

  3. Zhao, X.B., Lam, K.Y., Chung, S.L., Gu, M., Sun, J.G.: Authorization Mechanisms for Virtual Organizations in Distributed Computing Systems. In: Wang, H., Pieprzyk, J., Varadharajan, V. (eds.) ACISP 2004. LNCS, vol. 3108, pp. 414–426. Springer, Heidelberg (2004)

    Chapter  Google Scholar 

  4. Lam, K.Y., Zhao, X.B., Chung, S.L., Gu, M., Sun, J.G.: Enhancing Grid Security Infrastructure to Support Mobile Computing Nodes. In: Chae, K.-J., Yung, M. (eds.) WISA 2003. LNCS, vol. 2908, pp. 42–54. Springer, Heidelberg (2004)

    Chapter  Google Scholar 

  5. Overview of the Grid Security Infrastructure at, http://www-fp.globus.org/security/overview.html

  6. Zhou, J.Y., Lam, K.Y.: Securing digital signatures for non-repudiation. Journal of Computer Communications 22(8), 710–716 (1999)

    Article  Google Scholar 

  7. Nagaraj, S.V.: Access control in distributed object systems: problems with access control lists. In: Proceedings of the Tenth IEEE International Workshops, WET ICE 2001. Enabling Technologies: Infrastructure for Collaborative Enterprises (2001)

    Google Scholar 

  8. Zhang, C.R., Lam, K.Y., Jajodia, S.: Scalable threshold closure. Theoretical Computer Science 226, 185–206 (1999)

    Article  MATH  MathSciNet  Google Scholar 

  9. Shamir, A.: How to share a secret. Communications of the ACM 22(11), 612–613 (1979)

    Article  MATH  MathSciNet  Google Scholar 

  10. Benaloh, J.C., Leichter, J.: Generalized secret sharing and monotone functions. In: Goldwasser, S. (ed.) CRYPTO 1988. LNCS, vol. 403, pp. 27–35. Springer, Heidelberg (1990)

    Google Scholar 

  11. Ito, M., Saito, A., Nishizeki, T.: Secret sharing scheme realizing general access structure. In: Globecom 1987, Tokyo, Japan, pp. 99–102 (1987)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. School of Comp Sci & Telecom Engrg, Jiangsu University, Zhenjiang, P.R. China

    Jian-Ping Yong

  2. School of Software, Tsinghua University, Beijing, P.R. China

    Kwok-Yan Lam, Ming Gu & Jia-Guang Sun

  3. School of Business Administration, The Open University of Hong Kong,  

    Siu-Leung Chung

Authors
  1. Jian-Ping Yong
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Kwok-Yan Lam
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Siu-Leung Chung
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Ming Gu
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Jia-Guang Sun
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. School of Software, Tsinghua University,  

    Chi-Hung Chi

  2. School of Software, Tsinghua University, Beijing, PR China

    Kwok-Yan Lam

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Yong, JP., Lam, KY., Chung, SL., Gu, M., Sun, JG. (2004). Enhancing the Scalability of the Community Authorization Service for Virtual Organizations. In: Chi, CH., Lam, KY. (eds) Content Computing. AWCC 2004. Lecture Notes in Computer Science, vol 3309. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30483-8_23

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-30483-8_23

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-23898-0

  • Online ISBN: 978-3-540-30483-8

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation