資源描述:
《支持OGSA的網格安全基礎設施研究和改進》由會員上傳分享���,免費在線閱讀����,更多相關內容在學術論文-天天文庫。
1����、浙江工業(yè)大學碩士學位論文支持OGSA的網格安全基礎設施研究和改進姓名:馬珂絳申請學位級別:碩士專業(yè):計算機應用技術指導教師:蔡家楣20050501浙江工業(yè)大學foi{Ij研究生學位論義嘲格立牟環(huán)境支撐’嚴臺模型的研究年n改進增強ResearchandImprovementofGridSecurityInfrastructureSupportingOGSAABSTRACTGridisaglobalsolutiontoaddresstherequirementsofmoreandmorecomputingability.Gr
2��、idisdifferentfromtraditionalnetwork.Computingresourcesandusersaredistributedinagridisdynamic.Avirtualtrustrelationshipmustbeestablishedanddestroyeddynamically.ThevirtualtrustrelationshipneedtObreakthroughthelocationofgeogmphNthemeansofshareorcooperation���,andconstr
3���、alnsofusingcomputationalresourcesineachindependentsecuritymechanism.Gridcomputingsystemwillhelppeopletosolvemanyproblemsthatcouldnotbesolvedpreviously.Itisanewway,looserandmoreconvenient.Incontrasttotraditionalnetworkenvironment���,鰣denvironmentshaveabroaderrangofse
4、curityrequirements.Howtoshareresourcessafelyinadynamic���,interdomalnanddistributedcomputingenvkonmenLandhowtointeroperatewith,ratherthanreplaceandmodify,thosesecuritymechanismsisagreaterchallengeforgridcomputingsystem���,andisalsotheprincipalproblemofthesecurityenviro
5、nmentplatformforgrid.GridSecurityInfrastructure(GSI)istheimplementationofexistinggridsecuritysolutionofOGSAinGlobusToolkit.BasedonGSIandadvancedinforrnationsecuritytechnologies���,thispaperpresentsseveralopinionstoimproveandstrengthenthesafety,flexibilityandpractica
6、bilityofgridsecurity.Intheaspectsofprotocols��,trustmodelandsecurityinfrastructure�,performanceofgridsecurity,themechanismofauthorizationandthemanagementofproxycertificationareimproved.1.InordertoenhanceperformanceofMutualAuthenticationbetweentwoentities�,certificate
7����、sCachingisimportedtoexpandWebServicesSecurityprotoc01.2.Role-basedmulti-identitiespartialprivilegedelegationtrustedmodelisintroduced.Role—basedauthorizationmappingCanbesolvedinaninterdomancomputingenvironment.Identity—mappinginGSIisreplacedbysecurityoperation-ori
8���、enteddelegation.Correspondingarithmeticofsecurityoperation-orienteddelegationisputforward.(Role—basedcredentialmappingandaccesscontr01).3.ACredentialWalletserv
