摘要： 提出了一种基于资源状态和角色访问控制的授权方案，该方案利用授权服务器信息扩展网格信息服务，将资源站点本地角色作为访问目标资源，加入到授权服务器策略库中，支持对虚拟组织(VO)外用户的授权，并实现了基于资源当前负载状态的细粒度授权。实验表明，在大规模VO中，该方案能够优化授权速度，缓解授权服务器访问的瓶颈问题。

关键词: 资源状态, 授权, 社团授权服务, 虚拟组织

Abstract: This paper proposes an advanced scheme based on the resource states and role-based access control. The scheme extends the grid information service with the authorization server’s information, and defines the host local roles as the target resources in the policy database. It supports the authorization of the user outside virtual organization, and provides fine-grained authorization based on the resource’s states. The test shows that the scheme optimizes the authorization in the virtual organization with a large number of users and resources, and mitigates the bottleneck of the authorization server.

Key words: resource state, authorization, community authorization service, virtual organization(VO)

中图分类号: 

• TP309