Multimedia and Ubiquitous Engineering, International Conference on (2007)
Apr. 26, 2007 to Apr. 28, 2007
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MUE.2007.18
Chiu -Man Yu , Chinese University of Hong Kong
Kam-Wing Ng , Chinese University of Hong Kong
<p>In order to enable an open Grid to support resource sharing between multiple heterogeneous Virtual Organizations (VOs), an auhtorization policy management framework is required to support authorization for heterogeneous authorization systems. Traditional authorization policy management frameworks work well in authorization for a single VO where the participating hosts agree to follow a global authorization system. However they are not capable of policy management for multiple VOs which deploy heterogeneous authorization systems.</p> <p>To solve these problems in a loose-coupling way, we propose a dynamic, distributive and heterogeneous authorization policy management framework called Dynamic Policy Management Framework (DPMF). DPMF groups VOs of the same authorization systems to form a virtual cluster. Authorization policy management is divided into inter-cluster heterogeneous policy management, and intra-cluster homogeneous policy management.</p> <p>A Heterogeneous Authorization Policy Management mechanism is developed for DPMF to support inter-cluster heterogeneous policy management. In the mechanism, there is an Account Mapping mechanism for mapping accounts on heterogeneous access control models, and a Policy Mapping mechanism for mapping accounts on heterogeneous authorization policy models.</p>
K. Ng and C. -. Yu, "A Heterogeneous Authorization Policy Management Mechanism for Grid Environments," 2007 International Conference on Multimedia and Ubiquitous Engineering (MUE'07)(MUE), Seoul, 2007, pp. 381-386.