Security issues in on-demand grid computing

Type :

Term papers

Pages :

7 pages

Format :

.pdf

Published date :

10/08/2009

Category :

Science & technology

Sub category :

Computer science

Oboulo.com selection criteria

$ 14.95 Add to cart

Summary :

Abstract
Introduction
Security fundamentals
1. Authentication
2. Access control
3. Data integrity
4. Data confidentiality
5. Key management
Important grid security terms
1. Symmetric encryption
2. Asymmetric encryption
3. Secure Socket Layer/Transport Layer Security (SSL/TLS)
4. Public Key Infrastructure (PKI)
5. Mutual authentication
Symmetric key encryption
Asymmetric key encryption
The certificate authority
1. The CA's private key
2. CA cross certification
Digital certificates
1. Verification of the user
2. Different types of certificates
3. Certificate revocation list
4. Path validation
Authentication and authorization
Delegation
Grid security communication
Grid security policies and procedures
1. Certificate authority
2. CA implementation
Security controls review
1. Potential security risks
2. PKI vulnerabilities
3. Grid server vulnerabilities
Conclusion
References

Abstract

Utility computing is defined to be the on demand delivery of infrastructure, applications, and business processes in security-rich, shared, scalable, and standards-based computer environment over the Internet through fee. Customers will hit into IT resources - and pay for them - as easily as they now get heir electricity or water. security requirements are fundamental to the grid design. The basic security components within the Globus Toolkit provide the mechanisms for authentication, authorization, and confidentiality of communication between grid computers. Without this functionality, the integrity and confidentiality of the data processed within the grid would be at risk. In the on-demand paradigm, computational peak loads or free resources are outsourced to organizations offering computational power or the required resources. For this it is desirable to be able to dynamically rent resources with only a minimal administrative overhead. Thus, it must be possible to acquire and configure the needed resources without requiring the administrator to manually facilitate each and every transaction. This creates a number of emergent security threats.