A dynamic, distributive and heterogeneous authorization policy management framework.
Grid computing enables computers on different networks to share their resources in an organized way. Authorized users can deploy the resources as if they were in the same organization. This resource sharing environment is called a Virtual Organization (VOs). To enable an open Grid to support resourc...
Other Authors: | |
---|---|
Format: | Others |
Language: | English Chinese |
Published: |
2007
|
Subjects: | |
Online Access: | http://library.cuhk.edu.hk/record=b6074374 http://repository.lib.cuhk.edu.hk/en/item/cuhk-344003 |
Summary: | Grid computing enables computers on different networks to share their resources in an organized way. Authorized users can deploy the resources as if they were in the same organization. This resource sharing environment is called a Virtual Organization (VOs). To enable an open Grid to support resource sharing between multiple heterogeneous VOs, an authorization policy management framework is required to support authorization for VOs using heterogeneous authorization systems. The challenges include dynamic Grid memberships, VO trust relationships, and heterogeneous authorization systems. === To solve these problems in a loose-coupling way, we propose a dynamic, distributive and heterogeneous authorization policy management framework. The framework is called Dynamic Policy Management Framework (DPMF). DPMF groups VOs of the same authorization systems to form a virtual cluster. Authorization policy management is divided into inter-cluster heterogeneous policy management, and intra-cluster homogeneous policy management. Inside a virtual cluster, the workloads of policy management can be distributed among the VOs according to their trust relationships. The Conflict Analysis with Partial Information (CAPI) mechanism is developed to make authorization decisions in open environments without complete policy information. A Heterogeneous Policy Management mechanism is developed for DPMF to support inter-cluster heterogeneous policy management. === Traditional authorization policy management frameworks work well in authorization for a single VO where the participating hosts agree to follow a global authorization system. However, they are not capable of authorization policy management for multiple VOs which deploys heterogeneous authorization systems. === Yu, Chiu Man. === "April 2007." === Adviser: Ng Kam Wing. === Source: Dissertation Abstracts International, Volume: 69-01, Section: B, page: 0447. === Thesis (Ph.D.)--Chinese University of Hong Kong, 2007. === Includes bibliographical references (p. 200-206). === Electronic reproduction. Hong Kong : Chinese University of Hong Kong, [2012] System requirements: Adobe Acrobat Reader. Available via World Wide Web. === Electronic reproduction. [Ann Arbor, MI] : ProQuest Information and Learning, [200-] System requirements: Adobe Acrobat Reader. Available via World Wide Web. === Abstracts in English and Chinese. === School code: 1307. |
---|