YU Jiong,CAO Yuan-da,ZHANG Chang-you

DOI: https://doi.org/10.3969/j.issn.1000-2839.2007.03.005

2007-01-01

Abstract:The wide acceptance of the grid technology has created pressure to add some features that were not part of its original design, such as security, privacy, and quality-of-service support. In this paper, we have proposed the enhanced grid security and privacy (EGSP) system architecture including EGSP system model, identity protection system, onion routing system, reputation system, and security technology. We also present a network simulation of the model and analyze its scalability.

Jiong Yu,Xianhe Sun,Yuanda Cao,Yonggang Lin,Changyou Zhang

DOI: https://doi.org/10.1007/11610496_75

2006-01-01

Abstract:The wide acceptance of the grid technology has created pressure to add some features that were not part of its original design, such as security, privacy, and quality-of-service support. In this paper, we have proposed the enhanced grid security and privacy (EGSP) system architecture including EGSP system model, identity protection system, onion routing system, reputation system, and security technology. We also present a network simulation of the model and analyze its scalability.

Xiaoxi Wang

2010-01-01

Abstract:This paper analyzes the features of and challenges faced by grid security technology,sums up the main contents of the current research on grid security,makes the overview of the recent advances in the research on grid security,and discusses some problems still existing in this field and the future trends of grid security that possess preferable reference value to the research on grid security technology.

Jie Jiang,TieMing Chen,Bo Chen,Limin Jin,Deren Chen

2008-01-01

Abstract:In order to solve the security problems introduced by the dynamic characteristics of grid services in authentication and authorization, a security services access platform based on Grid Security Infrastructure is proposed, which can provide the security grid services including the single sign-on and unified authentication and dynamic authorization. In this platform, a self-signed proxy certificate technique and improved context-constrains role based access control mechanism are deployed. The application in Country Emergency Response Grid Service System shows that the proposed platform can satisfy the need of security for grid services access through the grid portal.

Xiangming Fang,Shoubao Yang,Leitao Guo,Lei Zhang

DOI: https://doi.org/10.1007/978-3-540-24679-4_96

2004-01-01

Abstract:This paper analyzes security problems existing in Grid Computing System and describes the security mechanism in Grid Computing System. After briefly introducing the security abstract of grid computing system at Grid Security Basic Layer, several protocols are defined at Grid Security Protocol Layer based on security architecture model. Broker protocols are then thoroughly discussed.

XU Jing-jing,DAI Hong-lei,ZHA Li,XU Zhi-wei

DOI: https://doi.org/10.3969/j.issn.1001-3695.2006.07.070

2006-01-01

Abstract:The Community-based VEGA Grid Operating System(VEGA GOS) is an environment and platform that support development and running of the grid applications.Combining with community that centralize the user and resource locally,we form a cross domain authorization model in subject,resource and operating space to solve the issues of versatile,autonomous control and easy-to-use in grid environment.This paper introduces the design and implementation of the community-based multi-grained authorization and access control mechanism,and take a measurement and analysis to the performance penalty due to the use of security mechanism.

Wang Qianghua,Zhou Mingquan,Geng Guohua,Xu Ti

DOI: https://doi.org/10.3969/j.issn.1000-386X.2006.11.010

2006-01-01

Abstract:Grid is an open distributed system environment.The purpose of Grid is to provide for sharing the resources between virtual organizations with distributed,heterogeneous,dynamic characteristics.Security is one of the key factors in Grid environment.The Grid security include data integrity,data privacy,authentication,authorization and audit.In this paper,the security model and the authentication,authorization framework of open system environment are analyzed,the security protocols and infrastructures of the OGSA grid service are discussed.

郑轲,王成良

DOI: https://doi.org/10.3969/j.issn.1671-0428.2008.10.021

2008-01-01

Abstract:Grid computing environment must be the existing Internet as communications support platform, due to the openness and heterogeneous of the Internet itself, determine that the grid computing faces a variety of security threats, so grid security has become a core issue in the Grid computing environment. The paper briefly describes the requirements for Grid Security, analyses the technology of Grid Security technology, and given the main technical means of the grid security based on the Globus project.

YAN Jian-wei,LIANG Li,LIU Yong

DOI: https://doi.org/10.3969/j.issn.1001-3695.2005.08.035

2005-01-01

Abstract:Introduces some prototypes of computational grid security. According to the domestic research actuality, this paper proposes a new grid security model with group authentication and collaboration. This model extends the current grid security model. The paper also discusses the security framework and collaboration mechanism in detail.

Xia Xiao-son,Jin Uk Ha,Deqing Zou

2005-01-01

Abstract:The security system architecture in service grids has been investigated in this paper. At first, we propose a service grid security model at the protocol level, which is coupled with the Web Services security technology. Then, we discuss the realization of a security mechanism in the HowH prototype system. At last, we describe the security service access model and the procedure that service instances are created securely at the server end.

HUANG Jia-wei,FEI Hong-xiao

DOI: https://doi.org/10.3969/j.issn.1007-1423-b.2004.12.008

2004-01-01

Abstract:Grid ,a important method to solve complex application ,is growing more successful in distributed computing. The grid security problem is the key of grid computing success ,so studying the grid security problem is very important . This paper outlines the definition of grid and analyzes the security problems. Then the security policy is given in detail.

JH Pu,Z Xiong,ZX Wu

DOI: https://doi.org/10.1109/icct.2003.1209857

2003-01-01

Abstract:Grid computing is a hotspot in recent years. It is believed that every application will be based on grid computing in the near future. This paper analyzes the importance of research on grid quality of service (QoS) and presents many QoS problems. Then, our solution to QoS of open grid services architecture (OGSA) is proposed and sketched. The solution is very flexible and is typical of grid QoS.

Shaohua Li,Kaiping Xue

DOI: https://doi.org/10.48550/arXiv.1810.01651

2018-10-03

Abstract:Smart grid adopts two-way communication and rich functionalities to gain a positive impact on the sustainability and efficiency of power usage, but on the other hand, also poses serious challenges to customers' privacy. Existing solutions in smart grid usually use cryptographic tools, such as homomorphic encryption, to protect individual privacy, which, however, can only support limited and simple functionalities. Moreover, the resource-constrained smart meters need to perform heavy asymmetric cryptography in these solutions, which is not applied to smart grid. In this paper, we present a practical and secure SGX-enabled smart grid system, named SecGrid. Our system leverage trusted hardware SGX to ensure that grid utilities can efficiently execute rich functionalities on customers' private data, while guaranteeing their privacy. With the designed security protocols, the SecGrid only require the smart meters to perform AES encryption. Security analysis shows that SecGrid can thwart various attacks from malicious adversaries. Experimental results show that SecGrid is much faster than the existing privacy-preserving schemes in smart grid.

Cryptography and Security

F Li,Jz Luo

DOI: https://doi.org/10.1007/978-3-540-24679-4_171

2004-01-01

Abstract:This paper analyzes the necessity of building a security policy implementation model in the Computational GRID. By choosing and establishing the functional entity in the model, defining the mutual course, stipulating the warrants used in the mutual course, we finally put forward a feasible security policy implementation model.

吴爽,蒋昌俊

DOI: https://doi.org/10.3969/j.issn.1001-3695.2004.05.058

2004-01-01

Abstract:Grid is the trend of Internet and the current research hotspot. For Grid is quite different from traditional Web in architecture, grid has its own features in security problem. After analyzing grid security problem with expanded P~2DR security model,this paper introduce security architecture of OGSA and its realization in Globus Toolkit 3

Yixin Jiang,Yunan Zhang,Aidong Xu,Xiaoyun Kuang,Jiaxiao Meng,Lin Chen,Boya Ma

DOI: https://doi.org/10.1088/1755-1315/693/1/012034

2021-01-01

IOP Conference Series Earth and Environmental Science

Abstract:The emergence of edge computing technology brings new development direction to the construction of power grid industry. At present, for the edge computing technology of China is still in the exploratory stage, the combination of power grid and edge computing may face new security risks. This paper analysed the security risks that may occur in grid edge computing under the circumstances of identification system, communication technology, equipment protection and resource constraints, and put forward the relevant security risk analysis model and defence, aiming at solving the security problems of grid edge computing and promoting the better development of power grid.

Kai Hwang,Yu-Kwong Kwok,Shanshan Song,Min Cai Yu Chen,Ying Chen,Runfang Zhou,Xiaosong Lou

DOI: https://doi.org/10.1007/11428862_27

2005-01-01

Abstract:The USC GridSec project develops distributed security infrastructure and self-defense capabilities to secure wide-area networked resource sites participating in a Grid application. We report new developments in trust modeling, security-binding methodology, and defense architecture against intrusions, worms, and flooding attacks. We propose a novel architectural design of Grid security infrastructure, security binding for enhanced Grid efficiency, distributed collaborative IDS and alert correlation, DHT-based overlay networks for worm containment, and pushback of DDoS attacks. Specifically, we present a new pushback scheme for tracking attack-transit routers and for cutting malicious flows carrying DDoS attacks. We discuss challenging research issues to achieve secure Grid computing effectively in an open Internet environment.

Liu Sifeng,Jia Jinyuan

DOI: https://doi.org/10.3969/j.issn.1000-386X.2007.02.061

2007-01-01

Abstract:Trust has become an important factor of security in grid computing,generally,it is fuzzy and varies temporally and spatially.This paper firstly studied the fuzzy,dynamic and complex natures of trust in grid computing,then,proposed a good solution,dynamic VOs trust domain,to grid security based on fuzzy logic theory,and finally designed a trust management architecture of grid security by incorporating a novel trust model,which is capable of capturing various types of trust relationships that exist in a Grid system and providing mechanisms for trust evaluation.

YANG Shengwen,SHI Meilin,JIANG Jinlei,XU Jun

DOI: https://doi.org/10.3321/j.issn:1000-0054.2005.10.034

2005-01-01

Abstract:Security is a challenging issue in grid systems.A service-oriented security architecture was developed to provide security in learning assessment grid(LAGrid),an e-Learning oriented grid system.A symmetric key infrastructure was used in for single sign on enabled authentication and role-based authorization.A security token service was designed to give message-level encryption and signature mechanisms.The service-oriented security architecture has been successfully implemented in LAGrid system which supports wide-area resource sharing and large-scale cross-organizational collaborative work.In addition,the system provides a secure,transparent and web-based user environment.

Deqing Zou,Hai Jin,Xueguang Chen,Zongfen Han

DOI: https://doi.org/10.1109/FGCN.2007.142

2007-01-01

Abstract:Grid computing emerges as an effective technology to couple geographically distributed resources and solve large-scale computational problems in wide area networks. There are several popular grid platforms, such as UNICORE and Globus Toolkit. Many famous grid projects are constructed with these platforms, each of which manages different distributed resources. In order to aggregate resources managed by different grid platforms, it is necessary to implement the interoperation among these grid platforms. Security interoperation is one of key issues for the interoperation. CGSP (ChinaGrid Support Platform) and VEGA are two popular grid platforms in China. To achieve security interoperation between these two platforms, four mapping policies, including user-user mapping, user-agora mapping, role-user mapping, role-agora mapping, are proposed in this paper. The security interoperation process is proposed based on SAML specification and the mapping policies. We also analyze the flexibility of mapping policies and the security of the interoperation process.