Authorization of Data Access in Distributed Storage Systems
GRID '05: Proceedings of the 6th IEEE/ACM International Workshop on Grid Computing(2005)
摘要
This paper describes an efficient method for access authorization in distributed (grid) storage systems. Client applications obtain "access tokens" from an organization's file catalogue upon execution of a file name resolution request. Whenever a client application tries to access the requested files, the token is transparently passed to the target storage system. Thus the storage service can decide on the authorization of a request without itself having to contact the authorization service. The token is protected from access and modification by external parties using public key infrastructure. A prototype using the AliEn grid file catalogue and xrootd as a data server has been implemented. A detailed description of the prototype implementation is presented.
更多查看译文
关键词
data access,storage systems,authorisation,public key infrastructure,public key cryptography,information retrieval,storage system,grid computing,message authentication
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要