Job-centric security model for open collaborative environment

Proceedings - 2005 International Symposium on Collaborative Technologies and Systems

Volumn 2005, Issue , 2005, Pages 69-77

  Demchenko, Yuri ^a   Gommans, Leon ^a   De Laat, Cees ^a   Oudenaarde, Bas ^a   Tokmakoff, Andrew ^b   Snijders, Martin ^b  

^a UNIVERSITY OF AMSTERDAM   (Netherlands)

^b TELEMATICA INSTITUUT   (Netherlands)

Author keywords

Authorisation framework; Jobcentric security model; Open collaborative environment; RBAC; SAML; XACML

Indexed keywords

JOB BASED ASSOCIATIONS; JOB CENTRIC SECURITY MODEL; JOBCENTRIC SECURITY MODEL; OPEN COLLABORATIVE ENVIRONMENT;

INFORMATION TECHNOLOGY; SECURITY OF DATA; SEMANTICS; TELECOMMUNICATION SERVICES; VIRTUAL REALITY; WORLD WIDE WEB;

COMPUTER SUPPORTED COOPERATIVE WORK;

EID: 33845490823     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ISCST.2005.1553296     Document Type: Conference Paper

References (22)

1. Booth, D., "Web Services Architecture," World Wide Web Consortium Working Group Note, 11 November 2004, available from http://www.w3.org/TR/ws-arch/
2. Foster, I. et al, "GFD.30, The Open Grid Services Architecture, Version 1.0," Global Grid Forum, 25 January 2005, available from http://www.gridforum.org/documents/GWD-I-E/GFD-I.030.pdf
3. Laat de, C., G. Gross, L. Gommans, J. Vollbrecht, D. Spence, "Generic AAA Architecture," Experimental RFC 2903. Internet Engineering Task Force, August 2000.
4. Vollbrecht, J., P. Calhoun, S. Farrell, L. Gommans, G. Gross, B. de Bruijn, C. de Laat, M. Holdrege, D. Spence, "AAA Authorization Framework," Informational RFC 2904. Internet Engineering Task Force, August 2000.
5. Lorch, M., D. Adams, D. Kafura, M. Koneni, A. Rathi, S. Shah, "The PRIMA System for Privilege Management, Authorization and Enforcement in Grid Environments," 4th Int. Workshop on Grid Computing - Grid 2003, 17 November 2003 in Phoenix, AR, USA, pp. 109-116.
6. Groep, D., "EGEE Site Access Control Architecture," EGEE Technical Report EGEE-JRA3-TEC-523948-DJRA3.2-V-0-3, 31 December 2004, available from https://edms.cern.ch/file/523948/.
7. Information Technology - Role Based Access Control, Document Number: ANSI/INCITS 359-2004, InterNational Committee for Information Technology Standards, 3 February 2004, 56 p.
8. Godik, S. et al, "eXtensible Access Control Markup Language (XACML) Version 2.0," OASIS Working Draft 04, 6 December 2004, available from http://docs.oasis-open.org/xacml/access_control-xacml-2_0-core-spec-cd-04.pdf
9. Lorch, M., B. Cowles, R. Baker, L. Gommans, P. Madsen, A. McNab, L. Ramakrishnan, K. Sankar, D. Skow, M. Thompson "GFD.38, Conceptual Grid Authorization Framework and Classification," Global Grid Forum, - 23 November 2004, http://www.ggf.org/documents/GWD-I-E/GFD-I.038.pdf
10. GT 3.9.4 Authorization Framework, http://www-unix.globus.org/toolkit/ docs/development/3.9.4/security/authzframe/
11. Demchenko, Y., L. Gommans, C. de Laat, B.Oudenaarde, A. Tokmakoff, M. Snijders, R. Buuren, "Security Architecture for Open Collaborative Environment," European Grid Conference, EGC 2005, Amsterdam, The Netherlands, February 14-16, 2005, Proceedings, Series: Lecture Notes in Computer Science, Volume 3470, 2005.
12. Tokmakoff, A., Y. Demchenko, M. Snijders, "Collaboration and security in CNL's virtual laboratory," Proceedings of WACE 2004, 23 September 2004.
13. Demchenko, Y., "Virtual Organisations in Computer Grids and Identity Management," Elsevier Information Security Technical Report, Volume 9, Issue 1, January-March 2004, pp. 59-76.
14. Web Services Security: SOAP Message Security 1.0 (WS-Security 2004), OASIS Standard 200401, March 2004, available from http://docs.oasis-open.org/ wss/2004/01/oasis-200401-wss-soap-message-security-1.0.pdf
15. Siddharth, B. et al, "Web Services Policy Framework (WS-Policy)," http://msdn.microsoft.com/ws/2002/12/Policy/, September 2004.
16. Siddharth, B. et al, "Web Services Policy Attachment (WS-PolicyAttachment)," http://msdn.microsoft.com/ws/2004/09/ PolicyAttachment/, September 2004.
17. Taal, A. et al, "A grammar for Policies in a Generic AAA Environment," Internet Draft work in progress, Internet Engineering Task Force, September 2004, available from http://www.ietf.org/internet-drafts/draft- irtf-aaaarch-generic-policy-06.txt
18. Li, N., W. Winsborough, J.C. Mitchell, "Distributed Credential Chain Discovery in Trust Management," Computer Security, Vol. 11, No. 1, 2003, pp. 35-86.
19. Andrieux, A. et al, "Web Services Agreement Specification (WS-Agreement)," August 2004, available from https://forge.gridforum.org/ projects/graap-wg/document/WS-AgreementSpecification/
20. Anjomshoaa, A. et al, "Job Submission Description Language (JSDL) Version 0.9.3", Global Grid Forum, March 2005, available from https://forge.gridforum.org/projects/jsdl-wg/document/draft-ggf-jsdl-spec/
21. Cantor, S. et al, "Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V2.0," Committee Draft 04, 14 January 2005, available from http://www.oasis-open.org/committees/download.php/10627/ sstc-saml-core-2.0-cd-03.pdf
22. Anderson, A. et al, "SAML 2.0 profile of XACML," OASIS Committee Draft 02, 11 November 2004, available from http://docs.oasis-open.org/ xacml/access_control-xacml-2.0-saml_profile-spec-cd-02.pdf