NIST logo

Publication Citation: Access Control Policy Combinations for the Grid Using the Policy Machine

NIST Authors in Bold

Author(s): Chung Tong Hu; David F. Ferraiolo; Karen A. Scarfone;
Title: Access Control Policy Combinations for the Grid Using the Policy Machine
Published: May 14, 2007
Abstract: Many researchers have tackled the architecture and requirements aspects of grid security, concentrating on the authentication or authorization mediation instead of authorization techniques, especially the topic of policy combination. Policy combination is an essential requirement of grid, not only because of the required remote (or global) vs. local interaction between grid members, but also the dynamic scalability nature of handling the joining and leaving of grid membership. However, evolving from the general security requirements of grid, the independency of a grid member?s access control system is critical and needs to be maintained when the access decision is determined by the combination of global and local access control policies. The Policy Machine (PM) provides features which not only can meet the significant independency requirement but also have better performance, easier management, and more straightforward policy expression than most of the popular policy combination techniques for grid.
Conference: Seventh IEEE International Symposium on Cluster Computing and the Grid (CCGrid 2007)
Pages: pp. 225 - 232
Keywords: access control;access control policy;grid computing
Research Areas: Cybersecurity
PDF version: PDF Document Click here to retrieve PDF version of paper (262KB)