Access control decision-making device for grid computing environment

An access control and grid computing technology, applied in the direction of electrical components, transmission systems, etc., can solve problems such as inability to achieve authorization, and achieve the effect of easy real-time update and easy management

Inactive Publication Date: 2006-05-24
NANJING UNIV OF POSTS & TELECOMM
View PDF0 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] Currently, the existing grid access control models are based on attributes (static), that is, the decision to authorize or allocate resources is based on the attributes of users (subjects), objects (resources or services) and requested permissions, and are in progress. There are only two kinds of authorization results in access control authorization: grant or denial, and authorization with constraints and additional regulations cannot be realized, which leads to the fact that when this type of access control strategy is directly applied to grid computing with "dynamic" as a prominent feature The environment will inevitably lead to certain defects, we must formulate an access control model suitable for the grid computing environment according to the characteristics of the grid, maximize the utilization of resources, and realize a dynamic access control decision-making mechanism

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Access control decision-making device for grid computing environment
  • Access control decision-making device for grid computing environment
  • Access control decision-making device for grid computing environment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0044] Assuming that a scientist wants to submit a calculation task through the grid, he asks the CPU to calculate all the prime numbers from 1 to 1,000,000. Due to the needs of work schedule, he hopes to visit the grid between 12:00 p.m. and 3:00 a.m. Virtually organize the CPU resources of VO and require it to submit calculation results immediately, and the obligation that VO requires scientists to perform after serving it is to leave contact information, set it as an email address, and limit the time range for performing this obligation. Within five minutes of the access authority, the specific process of using the access control decision maker to realize the access control of scientists to the CPU is as follows:

[0045] Step 1: The scientist logs into the grid portal, enters his user name and authentication password, submits the relevant authentication information and waits for the authentication of the VO. If the VO passes a certain authentication method such as CA (Certi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The access control decision-making unit is a scheme to solve how to implement access control of resources and services to users. The scheme is a dynamic access control model of grid with four elements being appended. That is to say besides four basic elements: user, object, role and authority, the access control decision-making unit adds four elements: grant, obligation, condition and prescription so as to build access control decision-making mechanism of grid based on the model. Expanding access control functions based on role, the invention enhances dynamic characteristics of access control decision-making so as to provide a new mode of access control mechanism in grid security.

Description

technical field [0001] The invention is a scheme for solving how to realize the user's access control to resources or services in the grid computing environment. Aiming at the dynamic and heterogeneous characteristics of the grid computing environment, a grid access control model is proposed, and an access control decision maker is implemented using this model to solve the decision-making problem of access control in the grid computing environment. Computer software security technology field. Background technique [0002] Grid (Grid) technology is an important information technology that has emerged internationally in recent years. Its goal is to fully integrate various computing resources that are geographically widely distributed and system heterogeneous, and achieve high performance in the network virtual environment. Resource sharing and collaborative work. The grid computing environment has the following special properties: 1) the number of users is huge and changes d...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 王汝传王海艳杨庚
Owner NANJING UNIV OF POSTS & TELECOMM
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap