期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

网格环境中跨异构域身份鉴别系统的研究与实现 被引量:6

Research and Implementation of Identity Authentication System Crossing Heterogeneous Regions in Grid Environment
在线阅读 下载PDF
导出
摘要 针对跨异构域的身份鉴别问题进行研究,设计并实现了一个身份映射和信任证转换系统CredFed(CredentialFederation),解决了分别使用PKI和Kerberos作为鉴别机制的异构域之间身份鉴别的问题。CredFed是目前唯一在网格环境中解决此问题的系统。CredFed被设计为具有良好的互操作性和可扩展性的系统,使其不仅适用于网格环境,也适用于面向异构域的大规模分布式系统。该文对国内外相关工作作出了比较,简要地介绍了CredFed在CROWN网格安全平台中的应用并给出了实验结果对系统性能作出评估。 Researching on identity authentication crossing heterogeneous regions, designing and implementing an identity mapping and credentials converting system CredFed(credentials federation), resolving the problem about identity authentication of di-direction between the heterogeneous regions one of which employs the PKI mechanism and the other one employs the Kerberos mechanism. The CredFed is the only one in the world to resolve that problem. The CredFed is interoperable and flexible, the design of which not only can be used in grid environment but also in large scale distributed systems. This paper compares the CredFed with the related works in the world, briefly introduces the implementation of the system in CROWN project, finally gives the results of experiments testing the performance of the CredFed and evaluates this system.
作者 罗琛 李沁 马殿富
机构地区 北京航空航天大学计算机学院
出处 《计算机工程》 EI CAS CSCD 北大核心 2005年第22期67-69,112,共4页 Computer Engineering
基金 国家自然科学基金资助项目(90412011) 国家"863"计划基金资助项目(2003AA144150)
关键词 网格 异构域 PKI KERBEROS 鉴别 信任证 安全会话 信任证转换 Grid Heterogeneous regions PKI Kerberos Authentication Credentials Secure conversation Credentials converting
分类号 TP393.08 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献12

  • 1Yu T, Winslett M. A Unified Scheme for Resource Protection in Automated Trust Negotiation[A]. IEEE Symposium on Security and Privacy, Berkeley, California, 2003-05.
  • 2Doster W, Watts M, Hyde D. The KX.509 Protocol[EB/OL].http://www.citi.umich.edu/techreports/reports/citi-tr-O1-2.pdf, 2001.
  • 3Kornievskaia O, Honeyman R Doster B. Kerberized Credential Tranlation:A Solution to Web Access Control[EB/OL].http://www.citi.umich.edu/techreports/reports/citi-tr-01-5.pdf, 2001.
  • 4Novotny J, Tuecke S, Welch V.An Online Credential Repository for the Grid: MyProxy[A]. In: Proceedings, HPDC-10, 2001:104.
  • 5Huai J, Liu Y, Li X, et al. Early Experiences with CROWN Grid. Technical Report, School of Computer Science, Beihang University, 2005.
  • 6Nadalin A, Kaler C, Hallam-Baker P. Web Services Security1.0 [EB/OL]. http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security- 1.0.pdf, 2004-05.
  • 7Bajaj S, Della-libera G, Dixon B, et al. Web Services Federation Language[EB/OL]. fttp ://www6.software.ibm.com/so ftware/developer/library/ws- fed.pdf, 2003-06.
  • 8Anderson S, Bohren J, Boubez T, et al. Web Services Trust Language[EB/OL], fttp: //www6.software.ibm.com/software/developer/1ibrary/ws-trust.pdf, 2005-02.
  • 9Vecchio D D, Basney J, Nagaratnam N. CredEx: User-centric Credential Management for Grid and Web Services.IEEE International Conference on Web Services (ICWS 2005), Orlando, FL,2005 -06-12.
  • 10Anderson S, Bohren J, Boubez T, et al. Web Services Secure Conversation Language[EB/OL].http ://specs.xmlsoap.org/ws/2005/02/sc/WS -SecureConversation.pdf, 2005-02.

同被引文献41

引证文献6

二级引证文献18

计算机工程
2005年 第22期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部