Security challenges for the next generation of Highly Available systems

Nowadays Highly Available (HA) systems are a must for almost any business process. More recently, the need for HA systems has increased as electronic commerce and other internet-based applications have become widely used with the growing web usage. Security is a major concern for these systems. Companies want to make sure that their security systems are working flawlessly and efficiently. Making sure that these systems are available to allow the night people access to die right areas of the company is imperative. Traditionally, HA systems consist of proprietary hardware and software components. However, the price/performance advantages of commercial-off-the-shelf (COTS) based clusters have had a compelling affect on HA vendors and their marketplace. The emergence of Computational Grids makes it feasible to develop cost-effective, large-scale geographically distributed HA systems. Making sure that critical applications on this new generation of HA systems are secure is a challenging proposition. In this article, we have identified a list of challenges for the next generation of Grid-based HA systems. We have explored the virtualization of security services with their pluggable implementation to address the security needs of these aid-based HA systems. The main advantages of this solution include independence with respect to the underlying security mechanisms; best trade-off between guarantees and processing capabilities; configurability of security architecture; better portability across heterogeneous platforms; and a smaller application development cycle for die HA functionality in the system.