1 / 14

Gridshell Security

Gridshell Security. Master Project Akylbek Zhumabayev Rochester Institute of Technology. Agenda. Problem Statement Approach to solution Grid and Gridshell Web Service Security Standards Solution. Problem Statement. Security solution for gridshell:

braima
Download Presentation

Gridshell Security

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Gridshell Security Master Project Akylbek Zhumabayev Rochester Institute of Technology

  2. Agenda • Problem Statement • Approach to solution • Grid and Gridshell • Web Service • Security • Standards • Solution

  3. Problem Statement Security solution for gridshell: • Easy setup and configuration of client • Integrated with grid systems • Supports all security dimensions • Can be applied to popular web platform • Scalable: nodes, layers • Optimized for better performance • Reliable: message delivery, QoS

  4. Approach to Solution • Solution – specification for developers • Examples of implementation • Based on technologies considered secure • Designed on open security standards • Web Services – solution platform • Combination of transport and message security

  5. Grid • HPC nodes • Middleware HPC HPC Server HPC Client Client

  6. Gridshell • Teragrid • Simple API • Features Client Client Gridshell Web Service Grid 1 Grid 3 Grid 2

  7. Web Service (WS) • Proved platform for distributed systems • Popular XML-based web technology WS Client SOAP Message Transport Layer

  8. Security Access Control Trust Delegation • Cryptography • Security Context Message security context Message security context WS Client Grid SOAP Transport security context Transport security context

  9. Security Standards for WS Secure Context WS-SecureConversation (IBM) Reliability WS-Reliability (OASIS) WS-Reliable Messaging (OASIS) Trust WS-Trust (OASIS) XKMS (W3C) WS-Federation (IBM) IDFF Shibboleth Policy WS-Policy (W3C) WS-Security Policy (OASIS) Resource XACML (OASIS) RBAC (NIST) EPAL (IBM) SOAP WS-Security (OASIS) WS-Addressing (W3C) U/P SAML X.509 Kerberos REL XML XML Encryption (W3C) XML Signature (W3C)

  10. Popular WS Solutions • Microsoft WCF • Sun Metro • Apache Axis2 • Apache CXF • IBM WebSphere • BEA WebLogic • WSO2 WSF

  11. WS-* Stack Secure Context WS-SecureConversation (1,2,3) Reliability WS-Reliability (2) WS-Reliable Messaging Trust WS-Trust (1,2,3) XKMS WS-Federation IDFF Shibboleth Policy WS-Policy (1,2,4) WS-Security Policy (1,2) Resource XACML RBAC EPAL SOAP WS-Security WS-Addressing U/P SAML X.509 Kerberos (1,2) REL XML XML Encryption XML Signature Implemented in all solutions Partially implemented Not implemented

  12. GSI • Grid Community did much in security field • Security standard for grid systems • Supports some open security standards

  13. Solution • Common specifications • Platform-dependent specifications • Gridshell modules • Security dimensions • Performance • Client security infrastructure • Third-party products

  14. Examples • Microsoft WCF • Sun Metro + Apache

More Related