A review of grid authentication and authorization technologies and support for federated access control

Grid computing facilitates resource sharing typically to support distributed virtual organizations (VO). The multi-institutional nature of a grid environment introduces challenging security issues, especially with regard to authentication and authorization. This article presents a state-of-the-art r...

Full description

Saved in:
Bibliographic Details
Published inACM computing surveys Vol. 43; no. 2; pp. 1 - 26
Main Authors Jie, Wei, Arshad, Junaid, Sinnott, Richard, Townend, Paul, Lei, Zhou
Format Journal Article
LanguageEnglish
Published New York, NY Association for Computing Machinery 01.01.2011
Subjects
Access control
Applied sciences
Authentication
Authentication protocols
Authorizations
Communities
Computational grids
Computer science; control theory; systems
Computer systems and distributed systems. User interface
Distributed processing
Exact sciences and technology
Information sharing
Information systems. Data bases
Marketing
Memory and file management (including protection and security)
Memory organisation. Data processing
Middleware
Security
Software
State of the art
Studies
Virtual organization
Access control
High performance
Resource allocation
Grid
Resource sharing
Distributed system
grid security
Security
Distributed computing
authorization
Shibboleth technology
Authentication
Virtual enterprise
Licence procedure
Grid computing
Computer security
Online AccessGet full text

Cover

More Information
Summary:Grid computing facilitates resource sharing typically to support distributed virtual organizations (VO). The multi-institutional nature of a grid environment introduces challenging security issues, especially with regard to authentication and authorization. This article presents a state-of-the-art review of major grid authentication and authorization technologies. In particular we focus upon the Internet2 Shibboleth technologies and their use to support federated authentication and authorization to support interinstitutional sharing of remote grid resources that are subject to access control. We outline the architecture, features, advantages, limitations, projects, and applications of Shibboleth in a grid environment. The evidence suggests that Shibboleth meets many of the demands of the research community in accessing and using grid resources.
Bibliography:SourceType-Scholarly Journals-1
ObjectType-Feature-1
content type line 14
ObjectType-Article-1
ObjectType-Feature-2
content type line 23
ISSN:0360-0300
1557-7341
DOI:10.1145/1883612.1883619