| As a new network offspring, Computing Grid has grown vigorously and has been widely used in the world scale, with the rapid development of the Network Communication technology and the hardware and software technology. Due to the complexity of the Grid environment and diversity of entities in the Grid environment, specially, grid application was involved in enormous economic benefits; Grid security has become one of key problems to guarantee the Grid system work normally and legitimately, and has attracted more attention to by the academia and practice.In this paper, our research mainly focuses on entities authentication for Grid system; in addition, some new searches about the entities authentication for multi-trust domain from the theoretical and the practical aspect have been made. The main contributions of this paper are summarized as follows:The technology of existing entities authentication and its application in grid environment were discussed; typical authentication protocols in existing grid environment were studied, furthermore, the disadvantages and improved versions of these protocols were analyzed deeply.Subsequently, through analyzing the disadvantages and unsolvable problems of existing entities authentication models in Grid, and advantages of authentication models applying ID-PKC proposed by Shamir, ID-based authentication model in grid were studied deeply.Aimed at distributed multi-domain grid, considering the difficulty assumption of discrete logarithm and Gap Diffie-Hellman problem of elliptic curve, we proposed an identity-based designated multi-receiver signcryption scheme for grid environment. Not only the new scheme able to designate multi-receiver to decrypt and verify the signcryption by only one signature computation, but provide cross-domain authentication for grid nodes that belong to different trust domains. On this premise, a multi-domain authentication model which could achieve multi-entities authentication in once communication round was designed. This model meets the need of grid environment with multi independent and autonomous domains, while, the authentication efficiency among users, recourses and their proxy is improved. Our model is proved to be practically valuable. |
PDF Full Text Request