Skip to Main Content
It is currently one of the hottest research areas of geospatial informatics to integrate OGC specifications with Globus-based Grid technology to develop geospatial Grid. In Grid systems, the security of resources outsourced from multiple organizations is very critical. However, the authorization mechanisms provided in the Globus Toolkit cannot realize the fine-grained and geospatial access control requirements of geospatial Grid Services. In this paper, we employ the GeoXACML specification to define geospatial access control policies and rules. In addition, we take advantage of the SAML Callout mechanism in the Globus Toolkit to resort to the third-party authorization service to secure the access to geospatial Grid services. The outer authorization service makes access decisions against GeoXACML-formatted policies and rules, which are defined according to the specific access control requirements. The system reference framework is also proposed and its components and control flow are explained.