[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to main content
Springer Nature Link
Log in

Access Control Model for Inter-organizational Grid Virtual Organizations

  • Conference paper
On the Move to Meaningful Internet Systems 2005: OTM 2005 Workshops (OTM 2005)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 3762))

  • 558 Accesses

Abstract

The grid has emerged as a platform that enables to put in place an inter-organizational shared space known as Virtual Organization. The Virtual Organization (VO) encompasses users and resources supplied by the different partners for achieving the VO’s creation goal. Though many works offer solutions to manage a VO, the dynamic, on the fly creation of virtual organizations is still a challenge. Dynamic creation of VOs is associated with the automated generation of access control policy to trace its boundaries, specify the different partners’ rights within it and assure its management during its life time. In this paper, we propose an OrBAC (Organization Based Access Control model) based Virtual Organization model which serves as a corner stone in the VO creation automated process. OrBAC framework specifies the users’ access permissions/interdiction to the VO resources, where its administration model AdOrBAC flexibly models the multi-stakeholder administration in the Grid.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Nasser, B., Benzekri, A., Laborde, R., Grasset, F., Barrère, F.: Access Control Model for Grid Virtual Organizations. In: to appear in ICEIS conference (2005)

    Google Scholar 

  2. Grid Support for Ubiquitous Computing Research Group Global Grid Forum, http://ubigrid.lancs.ac.uk/ubicomp_rg_charter.html

  3. Fedak, G., Germain, C., Neri, V., Cappello, F.: XtremWeb: A Generic Global Computing System. In: CCGRID2001, workshop on Global Computing on Personal Devices. IEEE Press, Los Alamitos (2001)

    Google Scholar 

  4. Rajasekar, A., Wan, M., Moore, R., Schroeder, W., Kremenek, G., Jagatheesan, A., Cowart, C., Zhu, B., Chen, S.-Y., Olschanowsky, R.: Storage Resource Broker – Managing Distributed Data in a Grid. Available online: http://www.npaci.edu/DICE/Pubs/CSI-paper-sent.doc

  5. Foster, I., Kesselman, C., Tuecke, S.: The Anatomy of the Grid: Enabling Scalable Virtual Organizations. International J. Supercomputer Applications 15(3) (2001)

    Google Scholar 

  6. Cannon, S., Chan, S., Olson, D., Tull, C., Welch, V., Pearlman, L.: Using CAS to manage Role based VO sub-groups. In: CHEP, La Jolla, California (2003), available online http://www.globus.org/security/CAS/Papers/CAS-group-CHEP03.pdf

  7. Alfieri, R., Cecchini, R., Ciaschini, V., dell’Agnello, L., Frohner, A., Gianoli, A., Lörentey, K., Spataro, F.: VOMS, an authorization system for virtual organizations. In: DataGrid Project (2003), available online: http://grid-auth.infn.it/docs/VOMS-Santiago.pdf

  8. Djordjevic, I., Dimitrakos, T., Phillips, C.: An architecture for dynamic security perimeters of virtual collaborative networks. In: Proc. 9th IEEE/IFIP Network Operations and Management Symposium (NOMS 2004). IEEE-CS, Los Alamitos (2004)

    Google Scholar 

  9. Freudenthal, E., Pesin, T., Port, L., Keenan, E., Karamcheti, V.: dRBAC: Distributed Role-based Access Control for Dynamic Coalition Environments

    Google Scholar 

  10. Samarati, P., De Capitani di Vimercati, S.: Access Control: Policies, Models, and Mechanisms.

    Google Scholar 

  11. Sandhu, R., Coyne, E., Feinstein, H., Youman, C.: Role-Based Access Control Models. IEEE Computer 29(2), 38–47 (1996)

    Google Scholar 

  12. El Kalam, A.A., El Baida, R., Balbiani, P., Benferhat, S., Cuppens, F., Deswartes, Y., Miege, A., Saurel, C., Trouessin, G.: Organization Based Access Control, available online: http://www.rennes.enst-bretagne.fr/~fcuppens/articles/Or-BAC.pdf

  13. Sandhu, R., Munawer, Q.: The ARBAC99 Model for Administration of Roles. In: Proceeding of the 15th Annual Computer Security Applications Conference (ACSAC 1999), Phoenix, Arizona, December 6-10, pp. 229–241. IEEE Computer Society, Los Alamitos (1999)

    Chapter  Google Scholar 

  14. Cuppens, F., Miege, A.: Ad-ORBAC: An Administration Model forOr-BAC. Available online: http://www.rennes.enst-bretagne.fr/~fcuppens/articles/csse04.pdf

  15. Welch, V., Foster, I., Kesselman, C., Mulmo, O., Pearlman, L., Tuecke, S., Gawor, J., Meder, S., Siebenlist, F.: X.509 proxy certificate for dynamic delegation. In: Proceedings of the 3rd Annual PKI R&D Workshop (2004)

    Google Scholar 

  16. Czajkowski, K., Foster, I., Kesselman, C., Sander, V., Tuecke, S.: SNAP: A Protocol for Negotiation of Service Level Agreements and Coordinated Resource Management in Distributed Systems. In: Feitelson, D.G., Rudolph, L., Schwiegelshohn, U. (eds.) JSSPP 2002. LNCS, vol. 2537, pp. 153–183. Springer, Heidelberg (2002), Available online: http://www-unix.mcs.anl.gov/~schopf/ggf-sched/GGF5/sched-GRAAP.3.pdf

  17. Foster, I., Kesselman, C.: Globus: A Metacomputing Infrastructure Toolkit. Intl J. Supercomputer Applications 11(2), 115–128 (1997)

    Article  Google Scholar 

  18. Cohen, E., Thomas, R., Winsborough, W., Shands, D.: Models for coalition based access control (CBAC)

    Google Scholar 

  19. Nayak, N., Chao, T., Li, J., Mihaeli, J., Das, R., Derebail, A., Hoo, J.S.: Role of Technology in Enabling Dynamic Virtual Enterprises, Available online: http://cersi.luiss.it/oesseo2001/papers/13.pdf

Download references

Author information

Authors and Affiliations

  1. IRIT/SIERA, Université Paul Sabatier, 118 Rte de Narbonne, F31062 Cedex04, Toulouse, France

    B. Nasser, R. Laborde, A. Benzekri, F. Barrère & M. Kamel

Authors
  1. B. Nasser
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. R. Laborde
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. A. Benzekri
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. F. Barrère
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. M. Kamel
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. STARLab, Vrije Universiteit Brussel (VUB), Bldg G/10, Pleinlaan 2, 1050, Brussels, Belgium

    Robert Meersman

  2. School of Computer Science and Information Technology, RMIT University, Bld 10.10, 376-392 Swanston Street, 3001, Melbourne, VIC, Australia

    Zahir Tari

  3. Facultad de Informática, Universidad Politécnica de Madrid, Campus de Montegancedo S/N, 28660, Boadilla del Monte, Madrid, Spain

    Pilar Herrero

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Nasser, B., Laborde, R., Benzekri, A., Barrère, F., Kamel, M. (2005). Access Control Model for Inter-organizational Grid Virtual Organizations. In: Meersman, R., Tari, Z., Herrero, P. (eds) On the Move to Meaningful Internet Systems 2005: OTM 2005 Workshops. OTM 2005. Lecture Notes in Computer Science, vol 3762. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11575863_73

Download citation

  • DOI: https://doi.org/10.1007/11575863_73

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-29739-0

  • Online ISBN: 978-3-540-32132-3

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation