SENSORIA All Publications |
|
Copyright Information
The documents distributed by this server have been provided by the contributing authors as a means to ensure timely dissemination of
scholarly and technical work on a noncommercial basis. Copyright and all rights therein are maintained by the authors or by other
copyright holders, notwithstanding that they have offered their works here electronically. It is understood that all persons copying
this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without
the explicit permission of the copyright holder.
show main publications
Fine-grained and History-based Access Control with Trust Management for Autonomic Grid Services @INPROCEEDINGS{ICAS06, title = {{Fine-grained and History-based Access Control with Trust Management for Autonomic Grid Services}}, author = {{Hristo} {Koshutanski} and {Fabio} {Martinelli} and {Paolo} {Mori} and {Anna} {Vaccarelli}}, booktitle = {Proceedings of the 2nd International Conference on Autonomic and Autonomous Systems (ICAS'06)}, abstract = {Grid technology provides an Internet-wide environment where a very large set of entities share their resources. The main feature of a Grid environment is that resource providers belong to distinct administrative domains each with its own security policies and enforcement mechanisms. Even more, service providers and entities, exploiting the Grid infrastructure, typically have incomplete information about each other mainly because each administrative domain manages its policies and resources with high degree of autonomy. Thus, controlling access to Grid resources has become a major security issue and a Grid infrastructure has to provide a proper set of mechanisms and tools that allow for a fine-grained and history-based access control management.
This paper proposes a comprehensive access control and enforcement framework for Grid computational resources. The framework is based on a behavioral model that defines fine-grained and history-based monitoring and on a trust management model that provides access decisions and proper access rights management. The framework provides dynamic and context-aware access control enforcement by generating temporal credentials at run time while user’s applications are exploiting Grid’s resources. }, publisher = {IEEE Computer Society}, year = {2006}, url = {http://www.iit.cnr.it/staff/paolo.mori/reprint_icas_06.pdf}, month = {July}, partner = {ISTI}, status = {public}, task = {T3.1}, }
|