Home
Conference
Schedule
SCHEDULE: NOV 11-17, 2006
Warning: It appears you do not have Javascript enabled.
If so, you will have trouble creating and viewing your itinerary information.
Evaluating Grid Portal Security
Session:
Grid Networks and Portals
Event Type:
Paper
Time:
11:30am - 12:00pm
Session Chair
:
Dennis Gannon
Author(s)
:
David Del Vecchio, Victor Hazlewood, Marty Humphrey
Location:
20-21
Abstract:
Grid portals are an increasingly popular mechanism for creating customizable interfaces to Grid services and resources. The security of any Grid portal cannot be taken lightly, particularly if the portal is running inside of the trusted perimeter, such as on an SDSC machine for access to the TeraGrid. To assess potential vulnerabilities of Grid portal security, we analyze the three most popular Grid portal frameworks: GridSphere, OGCE and Clarens. We explore general challenges in the areas of authentication (including user identification), authorization, auditing (logging) and session management then contrast how the different Grid portal implementations address these challenges. We find that although most Grid portals address these security concerns to a certain extent, there is still room for improvement, particularly in the areas of secure default configurations and comprehensive logging and auditing support. We conclude with specific recommendations for designing, implementing and configuring secure Grid portals.
This paper can be found in the ACM and IEEE Digital Libaries
Click here for ACM
Click here for IEEE
Chair/ Author Details:
Dennis Gannon (Chair)
School of Informatics
David Del Vecchio
University of Virginia
Victor Hazlewood
San Diego Supercomputing Center
Marty Humphrey
University of Virginia
Home
|
About
|
Contact Us
|
Registration
|
Sitemap
Schedule 
