2005 | OriginalPaper | Buchkapitel
A Grid Authentication System with Revocation Guarantees
verfasst von : Babu Sundaram, Barbara M. Chapman
Erschienen in: High Performance Computing – HiPC 2005
Verlag: Springer Berlin Heidelberg
Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.
Wählen Sie Textabschnitte aus um mit Künstlicher Intelligenz passenden Patente zu finden. powered by
Markieren Sie Textabschnitte, um KI-gestützt weitere passende Inhalte zu finden. powered by
Credential revocation is a critical problem in grid environments and remains unaddressed in existing grid security solutions. We present a novel grid authentication system that solves the revocation problem. It guarantees instantaneous revocation of both long-term digital identities of hosts/users and short-lived identities of user proxies. With our approach, revocation information is guaranteed to be fresh with high time-granularity. Our system employs
mediated RSA
(mRSA), adapts Boneh’s notion of
semi-trusted mediators
to suit security in virtual organizations and propagates proxy revocation information as in Micali’s
NOVOMODO
system. Our approach’s added benefits include a configuration-free security model for end-users of the grid and fine-grained management of users’ delegation capabilities.