共 2 条
- [1] AHSANT M, 2006, P 7 IEEE ACM INT C G
- [2] Workflow-based authorization service in Grid[J]. FOURTH INTERNATIONAL WORKSHOP ON GRID COMPUTING, PROCEEDINGS, 2003, : 94 - 100Kim, SHKim, JHong, SJKim, S
Least-privilege-based access control model for job execution in Grid
被引:1
作者:
Tang, Shaohua
[1
]
Ke, Xue
[1
]
Ge, Lina
[1
]
机构:
[1] South China Univ Technol, Sch Comp Sci & Engn, Guangzhou 510000, Guangdong, Peoples R China
来源:
PROCEEDINGS OF THE FIRST INTERNATIONAL SYMPOSIUM ON DATA, PRIVACY, AND E-COMMERCE
|
2007年
基金:
中国国家自然科学基金;
关键词:
D O I:
10.1109/ISDPE.2007.120
中图分类号:
TP [自动化技术、计算机技术];
学科分类号:
0812 ;
摘要:
In current Grid systems there is a tradeoff between flexibility and security in the context of delegation. Based on the traditional Role-Based-Access-Control module, in order to fulfill the "least privilege" principle, a new delegation model is proposed. This model introduces a task-policy based method to restrict the max privileges a task can delegate; combines static and dynamic delegation method to avoid task being interrupted by lack of privileges during execution; makes use of the credit card mechanism to ensure convenience and reduce risks.
引用
收藏
页码:301 / +
页数:2
相关论文