The Community for Technology Leaders
Parallel and Distributed Processing Symposium, International (2002)
Fort Lauderdale, Florida
Apr. 15, 2002 to Apr. 19, 2002
ISBN: 0-7695-1573-8
pp: 8 pp
A. R. Butt , Sch. of Electr. & Comput. Eng., Purdue Univ., West Lafayette, IN, USA
S. Adabala , Sch. of Electr. & Comput. Eng., Purdue Univ., West Lafayette, IN, USA
N. H. Kapadia , Sch. of Electr. & Comput. Eng., Purdue Univ., West Lafayette, IN, USA
ABSTRACT
Computational grids provide computing power by sharing resources across administrative domains. This sharing, coupled with the need to execute untrusted code from arbitrary users, introduces security hazards. This paper addresses the security implications of making a computing resource available to untrusted applications via computational grids. It highlights the problems and limitations of current grid environments and proposes a technique that employs run-time monitoring and a restricted shell. The technique can be used for setting up an execution environment that supports the full legitimate use allowed by the security policy of a shared resource. Performance analysis shows up to 2.14 times execution overhead improvement for shell-based applications. The approach proves effective and provides a substrate for hybrid techniques that combine static and dynamic mechanisms to minimize monitoring overheads.
INDEX TERMS
Access control, Grid computing, Security, Monitoring, Runtime environment, Hazards, Computer applications, Performance analysis, Authorization, World Wide Web
CITATION
A. R. Butt, S. Adabala, N. H. Kapadia, R. Figueiredo, J. A. B. Fortes, "Fine-grain access control for securing shared resources in computational grids", Parallel and Distributed Processing Symposium, International, vol. 00, no. , pp. 8 pp, 2002, doi:10.1109/IPDPS.2002.1015496
81 ms
(Ver 3.3 (11022016))