面向科学计算云服务平台的访问控制模型CAQF 被引量：1

An Access Control Model for Scientific Computing Cloud Service——CAQF

导出

摘要本文针对科学计算云服务平台在运行和管理中面临的授权问题,在传统访问控制模型的基础上综合考虑了资源层次虚拟化的特点和科学计算领域的特点,提出了访问控制模型CAQF(Clusters,Applications,Queues and Files),并基于SCE中间件实现了该模型。CAQF模型分析了科学计算领域中资源的基本特征和虚拟化关系,明确了资源之间的关系,并定义了灵活的访问控制策略,可以有效的满足科学计算云服务平台在集群变更管理、专用队列/应用设置和技术支持场景的需求。 To address the problem of access control in Scientiifc Computing Cloud Platform, this paper proposes an access control model CAQF （Clusters, Applications, Queues and Files）, which is suitable for scientiifc computing with varieties of virtualized and layered resources. This paper implements CAQF model based on SCE, which is a middleware in Scientiifc Computing Cloud Platform. In CAQF model, we analyze resource characteristics and relationships between resources in different layers, and defined flexible access control policies. CAFQ model is demonstrated to be effective for requirements including cluster maintenance, dedicated queues or applications set, and technique supports.

作者王小宁肖海力卢莎莎

机构地区中国科学院计算机网络信息中心

出处《科研信息化技术与应用》 2014年第5期10-18,共9页 E-science Technology & Application

基金中国科学院信息化专项项目(XXH2503-02) 中国科学院计算机网络信息中心青年基金项目(CNIC_QN_1306) 中国科学院计算机网络信息中心一三五规划重点培育方向专项项目(CNIC_PY_1404)

关键词科学计算云服务访问控制信息安全 scientiifc computing cloud service access control information security

分类号 TP309 [自动化与计算机技术—计算机系统结构]

引文网络
相关文献

参考文献14

1MILLER M.Cloud Computing:Web-Based Applications ThatChange the Way You Work and Collaborate Online[M].Que Print Publication, 2008.
2金钟,朱鹏,肖海力,等.中国科学院超级计算环境及其应用[M].中国科研信息化蓝皮书.2011:144-155.
3迟学斌,肖海力,王小宁,曹荣强,卢莎莎,张宏海.面向科学计算的网格环境[J].集成技术,2012,1(1):68-76. 被引量：11
4AI IIJ1A SA, CHANYY.Cloud computing securitymanagement [A]. Proceedings of the InternationalApplications[C].Sharjah, UAE, 2010:1-7.
5YUAN E,TONG J, . Attributed based access control(ABAC) for Web services; proceedings of the the IEEEInternational Conference on Web Services 2005 [C]. IEEEComputer Society, 561-569.
6LANG B, FOSTER I,SIEBENLIST F, et al A FlexibleAttribute Based Access Control Method for GridComputing [J]. Journal of Grid Computing, 2009, 7(2):169-180.
7SIRISHA A,KUMARI G.G. API access control in cloudusingthe role based access control model. Trendz inInformation Sciences and Computing (TISC2010)[C] .17-19Dec. 2010: 135-137.
8JUNG Y,CHUNG M.Adaptive security man agementmodel in thecloud computing environment[A].Proceedings of the IntemationalConference on AdvancedCommunication Technology[C].Washing—ton D C, USA,2010:1664-1669.
9Pearlman, V. Welch, I. Foster, etc. A CommunityAuthorization Service for Group Collaboration.Proceedings of the IEEE 3rd International Workshopon Policies for Distributed Systems and Networks.2002.
10R. Alfieri, R. Cecchini, V. Ciaschini, etc. “VOMS,anAuthorization System for Virtual Organizations” . http://grid-auth.infh.it/docs/VOMS-Santiago.pdf.

二级参考文献14

1Jin H.ChinaGrid: Making Grid Computing a Reality. Digital Libraries: International Collaboration and Cross-Fertilization . 2005
2Youchan Zhu,Pengfei Shen.Bring AJAX to web application based on grid service. 2009 International Conference on Intelligent Human-Machine Systems and Cybernetics, IHMSC 2009 . 2009
3C. Catlett,W.E. Allcock,P. Andrews,R. Aydt,R. Bair,N. Balac,B. Banister,T. Barker,M. Bartelt,P. Beckman, and others."Teragrid:Analysis of organization, system architecture, and middleware enabling new types of applications,". HPC and Grids in Action . 2007
4Foster I,Kesselman C.The Grid 2: Blueprint for a New Computing Infrastructure. . 2004
5J Zhou,K Li,L Tang.Towards a fully distributed P2P web search engine. Proceedings of the 10th IEEE International Workshop on Future Trends of Distributed Computing Systems (FTDCS＇04) . 2004
6Grid computing. http://www.gridcomputing.com/ .
7Cao R Q,Chi X B,Cao Z Y,et al.USGPA:a user-centric and secure grid portal architecture for high-performance computing. IEEE International Symposium on Parallel and Distributed Processing with Application . 2009
8Yang X,Allan R.Bringing AJAX to grid portals. Collaborative Technologies and Systems.2007CTS International Symposium . 2007
9Xiao H L,Wu H,Chi X B.SCE:grid environment for scientific computing. Proceedings of GridNets’’08 . 2008
10EGEE. http://public.eu-egee.org/ .

共引文献10

1曹荣强,肖海力,王小宁,卢莎莎,刘芳,王彦棡.科学计算环境文件传输和共享服务[J].科研信息化技术与应用,2018,9(3):26-33. 被引量：1
2邓子云,章兢,刘杨兵,肖久如.“天河一号”工业设计仿真云平台中间件研究[J].中国机械工程,2015,26(6):766-772. 被引量：4
3张博尧,刘纯,陈亭,姜金荣,邓笋根.数值天气预报一体化平台构建[J].计算机工程与设计,2016,37(12):3394-3399.
4赵一宁,肖海力.网格环境日志分析框架LARGE的设计[J].科研信息化技术与应用,2016,7(3):3-7. 被引量：6
5王小宁,肖海力,曹荣强.面向高性能计算环境的作业优化调度模型的设计与实现[J].计算机工程与科学,2017,39(4):619-626. 被引量：19
6迟学斌,肖海力,王小宁,曹荣强.国家重点研发计划助力国家高性能计算环境服务化建设迈上新台阶[J].科研信息化技术与应用,2016,7(4):84-88. 被引量：4
7陈新宇,刘倩,张宝花,金钟.基于高性能计算环境的科学计算应用平台设计与实现[J].科研信息化技术与应用,2016,7(5):43-51. 被引量：6
8赵一宁,肖海力.对于大规模系统日志的日志模式提炼算法的优化[J].计算机工程与科学,2017,39(5):821-828. 被引量：7
9曹荣强,王小宁,卢莎莎,解晓伟,肖海力.基于Portlet的高性能计算应用集成组件[J].科研信息化技术与应用,2017,8(2):18-30. 被引量：3
10白汉利,陈晓梦,蒲巧.国家数值风洞(NNW)集成框架系统研发[J].空气动力学学报,2020,38(6):1149-1157. 被引量：1

同被引文献15

1中国科学超级计算环境,http://cscgrid.cas.cn/gywm/gl,2014.
2Fielding, R. T. and Taylor, R. N. 2002. Principled design of the modern Web architecture. ACM Trans. Internet Tecbnol. 2, 2 (May. 2002), 115-150.
3Cholia, S., Skinner, D. and Boverhof, J. NEWT: A RESTfulservice for building High Performance Computing web applications. Gateway Computing Environments Workshop(GCE), 2010.
4Cholia, S.; Sun, T., "The NEWT Platform: An Extensible Plugin Framework for Creating ReSTful HPC APIs," Gateway Computing Environments Workshop (GCE), 2014 9tb, vol., no., pp.17,20, 21-21 Nov. 2014[1].
5Chard, K.; Lidrnan, M.; Bryan, J.; Howe, T.; McCollam,B.; Ananthakrishnan, R.; Tuecke, S.; Foster, I., "Globus Nexus: Research Identity, Profile, and Group Management as a Service," e-Science (e-Science), 2014 IEEE 10th International Conference on, vol. 1, no., pp.31,38, 20-24 Oct. 2014.
6Madduri, R., et al., The Globus Galaxies platform: delivering science gateways as a service. Concurrency and Computation: Practice and Experience, 2015.
7jersey-Restful Web Service in Java, https://jersey.java.net, 2015.
8Risto Vaarandi, A Data Clustering Algorithm for Mining Patterns From Event Log, Proceedings of the 2003 IEEE Workshop on IP Operations and Management, 2003.
9Massie, Matthew L, B. N. Chun, and E. David, The Ganglia Distributed Monitoring System, Design Implementation & Experience Parallel Computing, 2004.
10Nagios项目,www.nagios.org.

引证文献1

1刘倩,肖海力,曹荣强,赵一宁,金钟.基于云服务的计算化学社区[J].科研信息化技术与应用,2016,7(2):35-47. 被引量：2

二级引证文献2

1陈义夫,刘威尔,冯仰德.基于高性能计算环境的计算应用社区[J].计算机系统应用,2020(10):61-67.
2周超,徐蕴琪,何连花,刘倩.基于国家高性能计算环境的生物医药应用服务社区的移动端服务开发[J].科研信息化技术与应用,2019,10(3):79-83.

1小黑子.密码——别以为我拿你“无可奈何”[J].网友世界,2006(17):58-58.
2徐崎峤.Chrome16浏览器测试版增加多帐户同步功能[J].电子乐园,2011(11):82-82.
3聊天省流量综合设置方法[J].电脑爱好者,2013(8):44-44.
4重剑.手机系统上演饿狼传说[J].电脑爱好者,2016,0(3):39-39.
5王松磊,陈永生.基于消息队列的独立通信层的设计与应用[J].计算机应用,2010,30(12):21-22. 被引量：2
6黄文明,崔亚楠,朱英.基于Agent的网格资源层次发现方法[J].计算机系统应用,2009,18(5):76-80. 被引量：3
7断离.宽屏显示器应用设置小技巧——教你舒爽玩宽屏[J].微型计算机,2006(34):131-133.
8谷歌iPhone版软件升级欲借Macworld东风[J].移动通信,2008,32(2):63-63.
9孙敏.为每款应用设置不同的屏幕超时[J].电脑迷,2012,0(10S):50-50.
10陆志烽.Linux下Apache服务器的搭建[J].数字技术与应用,2016,34(5):100-100. 被引量：5

科研信息化技术与应用

2014年第5期

浏览历史

内容加载中请稍等...