A holistic approach to network security in OGSA-based grid systems

Grid computing technologies facilitate complex scientific collaborations between globally dispersed parties, which make use of heterogeneous technologies and computing systems. However, in recent years the commercial sector has developed a growing interest in Grid technologies. Prominent Grid resear...

Full description

Bibliographic Details
Main Author: Loutsios, Demetrios
Format: Others
Language:English
Published: Nelson Mandela Metropolitan University 2006
Subjects:
Online Access:http://hdl.handle.net/10948/550
id ndltd-netd.ac.za-oai-union.ndltd.org-nmmu-vital-9736
record_format oai_dc
spelling ndltd-netd.ac.za-oai-union.ndltd.org-nmmu-vital-97362017-12-21T04:22:37ZA holistic approach to network security in OGSA-based grid systemsLoutsios, DemetriosComputer networks -- Security measuresGrid computing technologies facilitate complex scientific collaborations between globally dispersed parties, which make use of heterogeneous technologies and computing systems. However, in recent years the commercial sector has developed a growing interest in Grid technologies. Prominent Grid researchers have predicted Grids will grow into the commercial mainstream, even though its origins were in scientific research. This is much the same way as the Internet started as a vehicle for research collaboration between universities and government institutions, and grew into a technology with large commercial applications. Grids facilitate complex trust relationships between globally dispersed business partners, research groups, and non-profit organizations. Almost any dispersed “virtual organization” willing to share computing resources can make use of Grid technologies. Grid computing facilitates the networking of shared services; the inter-connection of a potentially unlimited number of computing resources within a “Grid” is possible. Grid technologies leverage a range of open standards and technologies to provide interoperability between heterogeneous computing systems. Newer Grids build on key capabilities of Web-Service technologies to provide easy and dynamic publishing and discovery of Grid resources. Due to the inter-organisational nature of Grid systems, there is a need to provide adequate security to Grid users and to Grid resources. This research proposes a framework, using a specific brokered pattern, which addresses several common Grid security challenges, which include: Providing secure and consistent cross-site Authentication and Authorization; Single-sign on capabilities to Grid users; Abstract iii; Underlying platform and runtime security, and; Grid network communications and messaging security. These Grid security challenges can be viewed as comprising two (proposed) logical layers of a Grid. These layers are: a Common Grid Layer (higher level Grid interactions), and a Local Resource Layer (Lower level technology security concerns). This research is concerned with providing a generic and holistic security framework to secure both layers. This research makes extensive use of STRIDE - an acronym for Microsoft approach to addressing security threats - as part of a holistic Grid security framework. STRIDE and key Grid related standards, such as Open Grid Service Architecture (OGSA), Web-Service Resource Framework (WS-RF), and the Globus Toolkit are used to formulate the proposed framework.Nelson Mandela Metropolitan UniversityFaculty of Engineering, the Built Environment and Information Technology2006ThesisMastersMTechxi, 132 leavespdfvital:9736http://hdl.handle.net/10948/550EnglishNelson Mandela Metropolitan University
collection NDLTD
language English
format Others
sources NDLTD
topic Computer networks -- Security measures
spellingShingle Computer networks -- Security measures
Loutsios, Demetrios
A holistic approach to network security in OGSA-based grid systems
description Grid computing technologies facilitate complex scientific collaborations between globally dispersed parties, which make use of heterogeneous technologies and computing systems. However, in recent years the commercial sector has developed a growing interest in Grid technologies. Prominent Grid researchers have predicted Grids will grow into the commercial mainstream, even though its origins were in scientific research. This is much the same way as the Internet started as a vehicle for research collaboration between universities and government institutions, and grew into a technology with large commercial applications. Grids facilitate complex trust relationships between globally dispersed business partners, research groups, and non-profit organizations. Almost any dispersed “virtual organization” willing to share computing resources can make use of Grid technologies. Grid computing facilitates the networking of shared services; the inter-connection of a potentially unlimited number of computing resources within a “Grid” is possible. Grid technologies leverage a range of open standards and technologies to provide interoperability between heterogeneous computing systems. Newer Grids build on key capabilities of Web-Service technologies to provide easy and dynamic publishing and discovery of Grid resources. Due to the inter-organisational nature of Grid systems, there is a need to provide adequate security to Grid users and to Grid resources. This research proposes a framework, using a specific brokered pattern, which addresses several common Grid security challenges, which include: Providing secure and consistent cross-site Authentication and Authorization; Single-sign on capabilities to Grid users; Abstract iii; Underlying platform and runtime security, and; Grid network communications and messaging security. These Grid security challenges can be viewed as comprising two (proposed) logical layers of a Grid. These layers are: a Common Grid Layer (higher level Grid interactions), and a Local Resource Layer (Lower level technology security concerns). This research is concerned with providing a generic and holistic security framework to secure both layers. This research makes extensive use of STRIDE - an acronym for Microsoft approach to addressing security threats - as part of a holistic Grid security framework. STRIDE and key Grid related standards, such as Open Grid Service Architecture (OGSA), Web-Service Resource Framework (WS-RF), and the Globus Toolkit are used to formulate the proposed framework.
author Loutsios, Demetrios
author_facet Loutsios, Demetrios
author_sort Loutsios, Demetrios
title A holistic approach to network security in OGSA-based grid systems
title_short A holistic approach to network security in OGSA-based grid systems
title_full A holistic approach to network security in OGSA-based grid systems
title_fullStr A holistic approach to network security in OGSA-based grid systems
title_full_unstemmed A holistic approach to network security in OGSA-based grid systems
title_sort holistic approach to network security in ogsa-based grid systems
publisher Nelson Mandela Metropolitan University
publishDate 2006
url http://hdl.handle.net/10948/550
work_keys_str_mv AT loutsiosdemetrios aholisticapproachtonetworksecurityinogsabasedgridsystems
AT loutsiosdemetrios holisticapproachtonetworksecurityinogsabasedgridsystems
_version_ 1718564823443177472