PKI-based authentication mechanisms in grid systems

International Conference on Networking, Architecture, and Storage, NAS 2007

Volumn , Issue , 2007, Pages 83-90

  Zhao, Shushan ^a   Aggarwal, Akshai ^a   Kent, Robert D ^a  

^a UNIVERSITY OF WINDSOR   (Canada)

Author keywords

[No Author keywords available]

Indexed keywords

AUTHENTICATION; COMMUNICATION SYSTEMS; GRID COMPUTING;

AD HOC GRIDS; ART TECHNOLOGIES; AUTHENTICATION MECHANISMS; DATA COLLABORATIONS; DISTRIBUTED COMPUTING; FUTURE WORKS; GRID SYSTEMS; INFRA STRUCTURES; POSSIBLE SOLUTIONS; PROXY CERTIFICATES; SECURITY WEAKNESSES;

ACCESS CONTROL;

EID: 47749148118     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/NAS.2007.42     Document Type: Conference Paper

References (47)

1. M. Abdalla, E. Bresson, O. Chevassut, B. Moller, and D. Pointcheval. Provably Secure Password-Based Authentication in TLS. In ACM ASIACCS '06, pages 35-45, 2006.
2. M. Ahsant, M. Surridge, T. A. Leonard, A. Krishna, and O.Mulmo. Dynamic trust federation in grids. In The 4th International Conference on Trust Management, 2006.
3. K. Amin, G. von Laszewski, and A. Mikler. Toward an architecture for ad hoc grids. In ADCOM 2004, 2004.
4. K. Amin, G. von Laszewski, M. Sosonkin, A. Mikler, and M. Hategan. Ad hoc grid security infrastructure. In The 6th IEEE/ACM International Workshop on Grid Computing, pages 69-76, 2005.
5. D. Boneh, X. Ding, and G. Tsudik. Fine-grained control of security capabilities. ACM Trans. Inter. Tech., 4(1):60-82, 2004
6. J. Burruss, T. Fredian, and M. Thompson. Security on the US fusion grid. In 5th IAEA TM on Control, Data Acquisition, and Remote Participation for Fusion Research, pages 1949-1955, 2006.
7. S. Cantor and J. Kemp. Liberty ID-FF Protocols and Schema Specification. At http://www.projectliberty.org/specs, 2004.
8. S. Chokhani, W. Ford, R. Sabett, C. Merrill, and S. Wu. Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework, 2003.
9. D. Cooper. A model of certificate revocation. In IEEE 15th Annual ACSAC, pages 256-264, 1999.
10. D. Cooper. A More Efficient Use of Delta-CRLs. In IEEE Symposium on Security and Privacy, pages 199-202, 2000.
11. T. Dierks and C. Allen. RFC 2246: The TLS protocol version 1, Jan. 1999.
12. W. Doster, M. Watts, and D. Hyde. The KX.509 protocol. Technical Report 01-2, University of Michigan, February 2001.
13. C. Ellison, B. Frantz, B. Lampson, R. Rivest, B. Thomas, and T. Ylonen. RFC2693: SPKI Certificate Theory, 1999.
14. Enforcer Group. Enforcer Homepage. At http://enforcer.sourceforge.net/, 2006.
15. T. Friese, M. Smith, and B. Freisleben. Hot service deployment in an ad hoc grid environment. In ACM ICSOC '04, pages 75-83, New York, NY, USA, 2004.
16. S. Garfinkel. PGP: Pretty Good Privacy. O'Reilly, USA, 1994.
17. T. J. Genovese and M. Helm. Grid PKI Disclosure Statement. At http://caops.es.net/Documents/LastCALL/gridpds.pdf, 2003.
18. C. Gentry. Certificate-Based Encryption and the Certificate Revocation Problem. Advances in Cryptology CEU-ROCRYPT, Springer, 2003.
19. D. Gollmann. Computer security. John Wiley & Sons, Inc., New York, NY, USA, 1999.
20. D. Groep. International grid trust federation(v1.0). At http://eugridpma.org/igtf/, 2005.
21. P. Gutmann. How to Build a PKI That Works. In 3rd Annual PKI R&D workshop. Springer, 2004.
22. H. Hexmoor, S. Wilson, and S. Bhattaram. A theoretical inter-organizational trust-based security model. Knowl. Eng. Rev., 21(2):127-161, 2006.
23. M. Humphrey, M. Thompson, and K. Jackson. Security for grids. In Proceedings of the IEEE, pages 644-652, 2005.
24. IBM. Research for Advancing Trusted Computing. At http://domino.watson. ibm.com/comm/research.nsf/pages/r.security.innovation.html, 2007.
25. International Telecommunication Union. ITU-T Recommendation X.509, 1997.
26. P. Kocher. On certificate revocation and validation. Financial Cryptography ,Springer-Verlag, 1465:172-177, 1998.
27. O. Kornievskaia, P. Honeyman, B. Doster, and K. Coffman. Kerberized credential translation: A solution to web access control. In 10th Usenix Security Symposium, pages 235-250, 2001.
28. E. Korpela, D. Werthimer, D. Anderson, J. Cobb, and M. Lebofsky. SETI@home-Massively Distributed Computing for SETI. IEEE MultiMedia, 3(1):78-83, 1996.
29. J. Leng and D. Xie. A novel approach to kernel construction of china bridge CA. In 11th Pacific Rim International Symposium on Dependable Computing, pages 258-268. IEEE Computer Society, 2005.
30. M. Li, Y. Ren, Z. Wang, J. Xie, and H. Yao;. A New Modified Bridge Certification Authority PKI Trust Model. In 1st International Symposium on Pervasive Computing and Applications, pages 23-26. IEEE Computer Society, 2006.
31. A. Lioy,M.Marian, N.Moltchanova, andM. Pala. PKI past, present and future. International Journal of Information Security, Springer Berlin, pages 18-29, 2006.
32. W. Mao, H. Jin, and A. Martin. Innovations for grid security from trusted computing. In International Symposium on Grid Computing, 2005.
33. J. Marchesini and S. Smith. Shemp: Secure hardware enhanced myproxy. Technical Report 05-532, Dartmouth College, February 2005.
34. J. Marchesini, S. Smith, O. Wild, and J. Barsamian. Opensource applications of TCPA hardware. In 20th ACSAC, 2004.
35. P. McDaniel and S. Jamin. Windowed Certificate Revocation. In INFOCOM 2000, 2000.
36. S.Micali. NOVOMODO: Scable Certificate Validation And Simplified PKI Management. In 1st Annual PKI Research Workshop, 2002.
37. MicroSoft. Next-Generation Secure Computing Base(NGSCB). At http://www.microsoft.com/resources/ngscb/, 2007.
38. A. Shamir. Identity-Based Cryptosystems and Signature Schemes. Crypto 1984, Springer-Verlag, pages 47-53, 1985.
39. B. Sundaram and B. Chapman. Addressing credential revocation in grid environments. In The 6th IEEE/ACM International Workshop on Grid Computing, pages 3-17, 2005.
40. TACAR Group. TERENA Academic CA Repository. At http://www.tacar.org/, 2006.
41. TCPA Group. Trusted Computing Platform Alliance. At http://www. trustedcomputinggroup.org, 2006.
42. S. Tuecke, V. Welch, D. Engert, L. Perlman, and M. Thompson. RFC3820: Internet X.509 Public Key Infrastructure (PKI) Proxy Certificate Profile, 2004.
43. G. Vanrenen, S. Smith, and J. Marchesini. Distributing Security-mediated PKI. International Journal of Information Security, Springer, pages 3-17, 2006.
44. G. von Laszewski, J. Gawor, C. J. Pena, and I. Foster. Infogram: A peer-to-peer information and job submission service. In 11th Symposium on High Performance Distributed Computing, pages 33-42, 2002.
45. S. Zhao, A. Aggarwal, and R. D. Kent. Proxy certificate revocation in grid and a practical implementation framework. In Proc. 8th ACIS/IEEE SNPD, 2007.
46. P. Zheng. Tradeoffs in certificate revocation schemes. ACM SIGCOMM Comput. Commun. Rev., 33(2):103-112, 2003.
47. L. Zhou and Z. J. Haas. Securing ad hoc networks. IEEE Network, 13(6):24-30, 1999.