By Topic

Cross-Domain Grid Authentication and Authorization Scheme Based on Trust Management and Delegation

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

The purchase and pricing options are temporarily unavailable. Please try again later.
2 Author(s)
Sunan Shen ; Sch. of Comput. Sci. & Eng., South China Univ. of Technol., Guangzhou, China ; Shaohua Tang

As grid¿s dynamic, distributed and open nature, the issue of mutual trust among grid entities is challenging, not only because of the entities in different domains, but also because the fact that those domains may deploy different security mechanisms. A federal authentication and authorization scheme based upon trust management and delegation is proposed. Different security domains can join in the federation through the interface that our approach provides. The establishment of trust relationship among domains is based on trust negotiation and PKI cross-certification. We make authorization relay on dynamic role translation and on delegation. The Security Assertion Markup Language (SAML) is adopted by exploiting its AttributeStatement to create Delegation Assertion for grid.

Published in:

Computational Intelligence and Security, 2008. CIS '08. International Conference on  (Volume:1 )

Date of Conference:

13-17 Dec. 2008