AUTHORIZATION AND ACCESS CONTROL TO SECURE WEB SERVICES IN A GRID INFRASTRUCTURE
Serena Pastore
2006
Abstract
Security in a grid infrastructure is implemented by adopting standard protocols that realize authentication, authorization and access control to shared distributed network nodes, resources and services. Despite of middleware used to built a grid, security components provide mutual authentication, delegation and single sign-on features while every virtual organization joining the grid sets own authorization policies. Access control and secure communication are the most important aspect of security that need to be addressed if the shared resources are web services. This paper reports about the strategy required for securing web services as means of an application packaged as a Web ARchive (WAR) file deployed in a grid node that has to be shared for grid users. Software implementation uses packages coming from different past and present grid projects that secure both web container and the application. Security chain is basically implemented by means of java libraries to provide a message handler technique for digital signing and validating SOAP message and an authorization engine compatible with methods adopted in grid.
References
- Foster, I. et al 2001. The Anatomy of the Grid: Enabling Scalable Virtual Organizations. In Journal Supercomputer Applications, 15(3).
- Public-Key Infrastructure (X.509). At url: http//www.ietf.org/.
- Alfieri, R. et. al, 2005. From gridmap-file to VOMS: managing authorization in a Grid environment. In Future Generation Computer System 21 549-558.
- DataGrid Software Architecture Models, 2004. At URL: https://edms.cern.ch/document/439938/1
- Pastore, et al., 2004. Enabling Access to astronomical databases through the grid: a case study. In Proc. of Astronomical Data Analysis III Conference.
Paper Citation
in Harvard Style
Pastore S. (2006). AUTHORIZATION AND ACCESS CONTROL TO SECURE WEB SERVICES IN A GRID INFRASTRUCTURE . In Proceedings of WEBIST 2006 - Second International Conference on Web Information Systems and Technologies - Volume 1: WEBIST, ISBN 978-972-8865-46-7, pages 264-267. DOI: 10.5220/0001252802640267
in Bibtex Style
@conference{webist06,
author={Serena Pastore},
title={AUTHORIZATION AND ACCESS CONTROL TO SECURE WEB SERVICES IN A GRID INFRASTRUCTURE},
booktitle={Proceedings of WEBIST 2006 - Second International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,},
year={2006},
pages={264-267},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001252802640267},
isbn={978-972-8865-46-7},
}
in EndNote Style
TY - CONF
JO - Proceedings of WEBIST 2006 - Second International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,
TI - AUTHORIZATION AND ACCESS CONTROL TO SECURE WEB SERVICES IN A GRID INFRASTRUCTURE
SN - 978-972-8865-46-7
AU - Pastore S.
PY - 2006
SP - 264
EP - 267
DO - 10.5220/0001252802640267