| Article ID | Journal | Published Year | Pages | File Type |
|---|---|---|---|---|
| 425133 | Future Generation Computer Systems | 2011 | 16 Pages |
There are a few issues that still need to be covered regarding security in the Grid area. One of them is authorization where there exist good solutions to define, manage and enforce authorization policies in Grid scenarios. However, these solutions usually do not provide Grid administrators with semantic-aware components closer to the particular Grid domain and easing different administration tasks such as conflict detection or resolution. This paper defines a proposal based on Semantic Web to define, manage and enforce security policies in a Grid scenario. These policies are defined by means of semantic-aware rules which help the administrator to create higher-level definitions with more expressiveness. These rules also permit performing added-value tasks such as conflict detection and resolution, which can be of interest in medium and large scale scenarios where different administrators define the authorization rules that should be followed before accessing a resource in the Grid. The proposed solution has been also tested providing some reasonable response times in the authorization decision process.
Research highlights► Based on Semantic Web and able to define, manage and enforce security policies in a Grid scenario. ► The use of semantic-aware rules helps Grid administrators to create higher-level definitions with more expressiveness. ► These rules also permit performing added-value tasks such as conflict detection and resolution. ► This architecture can be used in medium and large scale scenarios where different administrators define the authorization rules that should be followed before accessing a resource in the Grid.
