Research On Security Mechanism With GT4

Posted on:2008-05-26

Degree:Master

Type:Thesis

Country:China

Candidate:J G Zhou

Full Text:PDF

GTID:2178360215485721

Subject:Computer software and theory

Abstract/Summary:

PDF Full Text Request

The security issues of the Globus Computing, which has wide application as a new type distributed technology, is the hotspot in research. Along with the continuous deepening application, users how to maximize the use of existing systems is becoming an increasingly important factor affecting user's adoption of the grid, for it has direct relationship with the cost of Globus deployment. Providing interfaces between Globus and the local system is the one of the key to solve the issue.This paper, at first, introduces the architecture Globus, the Globus Toolkit 4.0 and the security mechanism included in GT4. And the analyses of challenges in integration the third party authorization service into Grid are followed. Then, The paper presents a secondary common authorization model for the integration. The model, bases on GT Authorization Framework, has a secondary structure, an agency service and an interface of authorization handler, to flat the differences such as security identity token, description of actions, etc. between GT and the third-part authorization service. When these differences are flatted, the model calls the API of the third-part authorization service to authorize the Grid user. In designing, for adaptability to variety third-part authorization Service, the model just defines the authorization handler's interface instead of the concrete implementation. The paper describes in detail how the model call the local authorization system's API to make the authorization decision with cooperation of agency service and the authorization handler after receiving a authorization request, and then, an assessment of the adaptability when the model in the face of variety authorization system and the effectiveness after integration was made. In addition, the installation of GSI under Windows platform is studied, and the procedure is given.Finally, a secure grid service is deployed under Windows. The service uses a third-part authz service for authorization through the secondary model. The result proves the GSI and the model both work well.

Keywords/Search Tags:

Globus Toolkit, GSI, Authorization Framework, Secondary common authorization model

PDF Full Text Request

Related items

1	Research On Key Technologies Of Authorization Management Based On Improved UCON Model
2	Research On Key Technologies Of Ontology Based Grid Authorization
3	Research On Key Technologies Of Trust Based Grid Authorization
4	Research On Key Technologies Of Authorization Management Oriented To Classified Protection
5	Research On Key Technologies Of Role Based Joint Authorization Administration
6	Research On The Access Authorization And Authentication System Of Grid Resource Based On GT4
7	The Design And Implementation Of Remote Authorization Management System For A Commercial Bank
8	Research On Secure And Consistent Authorization For Replicated Data In The Grid Environment
9	Research On Grid Authentication And Authorization Based On GLOBUS
10	Research On Authorization Management System Based On Improved UCON Model