Title
Fine-grained access control for GridFTP using SecPAL
Abstract
Grid access control policy languages today are generally one of two extremes: either extremely simplistic, or overly complex and challenging for even security experts to use. In this paper, we explicitly identify requirements for an access control policy language for Grid data and then consider six specific data access use-cases that have been problematic in today’s Grids: attribute-based access, role-based access, “role-deny” access, impersonation-based access, delegation-based access, and capability-based access. We evaluate the Security Policy Assertion Language (SecPAL) against those requirements, specifically in the context of these six use-cases involving GridFTP.NET. We find that while some of these six use-cases are individually possible via existing Grid authorization systems, we believe that SecPAL uniquely offers a single approach that meets the requirements of a Grid access control policy language, thereby creating support for a wide range of expanded scenarios for Grid data access.
Year
DOI
Venue
2007
10.1109/GRID.2007.4354136
GRID
Keywords
Field
DocType
fine-grained access control,specific data access use-cases,grid data access,grid access control policy,grid authorization system,capability-based access,delegation-based access,impersonation-based access,role-based access,access control policy language,attribute-based access,security policy,authorisation,information retrieval,role based access,access control,grid computing,use case,data access
Computer access control,Computer security,Computer science,Data grid,Role-based access control,Discretionary access control,Access control,Security policy,Physical access,Data access
Conference
ISSN
ISBN
Citations 
2152-1085
978-1-4244-1559-5
4
PageRank 
References 
Authors
0.51
15
8
Name
Order
Citations
PageRank
Marty Humphrey11922147.55
Sang-Min Park222321.45
Jun Feng340.51
Norm Beekwilder46711.05
Glenn Wasson530040.41
Jason Hogg640.51
Brian A. LaMacchia7804103.59
Blair Dillaway881.63