作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2006, Vol. 32 ›› Issue (15): 155-157,. doi: 10.3969/j.issn.1000-3428.2006.15.055

• 安全技术 • 上一篇    下一篇

网格计算访问控制的实现

戴节永;马 俊;顾 健   

  1. 江南计算技术研究所,无锡 214083
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2006-08-05 发布日期:2006-08-05

Implementation of Grid Computing Access Control

DAI Jieyong;MA Jun;GU Jian   

  1. Jiangnan Institute of Computing Technology, Wuxi 214083
  • Received:1900-01-01 Revised:1900-01-01 Online:2006-08-05 Published:2006-08-05

摘要: 随着网格应用的不断建立,解决网格访问控制问题愈发急迫。该文形式化描述了网格访问控制元素,定义了网格用户角色和角色委托概念,分析了网格计算访问控制特性、授权要素、授权模式、授权策略,结合使用代理证书和属性证书提出了一个基于角色的网格计算访问控制实现方案。

关键词: 网格, 虚拟组织, 委托, 授权, 信任状

Abstract: Resolving grid access control is more raring, while grid application is emerging quickly. Grid access control elements are formalized. Notion of role and role-delegation in Grid is defined. This paper analyzes the characteristics of grid access control, authorization elements, authorization module and authorization policy. It puts forward a paradigm of grid computing role-based access control which adoptes proxy certification and attribute certification.

Key words: Grid, Virtual organization(VO), Delegation, Authorization, Credential