Abstract
In this paper, we propose a grid security infrastructure based on identity cryptography. We mainly discuss the grid security authentication and authorization architecture by using Tate Pairing. We propose a private key generator security infrastructure and secure group communication scheme by using non-interaction secret sharing protocol and one round tripartite Diffie-Hellman protocol. Finally, we present the advantages and disadvantages of our ID-based security infrastructure comparing with the public key infrastructure in grid circumstance.
This paper is supported by SEC E-Institute: Shanghai High Institutions Grid project, the 863 High Technology Program of China (No. 2004AA104340 and No. 2004AA104280), Natural Science Foundation of China (No. 60433040 and No. 60473092) and ChinaGrid Program of MOE of China.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Foster, I., Kesselman, C., Tsudik, G.: A Security Architecture for Computational Grids. ACM Conference on Computers and Security, 83–89 (1998)
Mao, W. B.: An Identity-based Non-interactive Authentication Framework for Computational Grids (May 29, 2004), http://www.hpl.hp.com/techreports/2004/HPL-2004-96.pdf
Welch, V., Siebenlist, F., Foster, I.: Security for grid services. In: Proceedings of the 12th IEEE International Symposium on High Performance Distributed Computing, HPDC 2003 (2003)
Butler, R., Foster, D., Kesselman, I.: A National-Scale Authentication Infrastructure. IEEE Computer 33(12), 60–66 (2000)
Gasser, M., McDermott, E.: An Architecture for Practical Delegation in a Distributed System. In: Proc. 1990 IEEE Symposium on Research in Security and Privacy, pp. 20–30. IEEE Press, Los Alamitos (1990)
Shamir, A.: Identity-based cryptosystems and signature schemes. In: Blakely, G.R., Chaum, D. (eds.) CRYPTO 1984. LNCS, vol. 196, pp. 47–53. Springer, Heidelberg (1985)
Boneh, D., Franklin, M.: Identity-Based Encryption from the Weil pairing. In: Kilian, J. (ed.) CRYPTO 2001. LNCS, vol. 2139, pp. 213–229. Springer, Heidelberg (2001)
Boneh, D., Lynn, B., Shacham, H.: Short Signatures from the Weil pairing. In: Boyd, C. (ed.) ASIACRYPT 2001. LNCS, vol. 2248, pp. 514–532. Springer, Heidelberg (2001)
Joux, A.: A one-round protocol for tripartite Diffie-Hellman. In: Bosma, W. (ed.) ANTS 2000. LNCS, vol. 1838, pp. 385–394. Springer, Heidelberg (2000)
Joux, A.: A One Round Protocol for Tripartite Diffie-Hellman. Journal of Cryptology 17, 263–276 (2004)
Introduction to grid computing with globus, http://www.ibm.com/redbooks
Sakai, R., Ohgishi, K., Kasahara, M.: Cryptosystems based on pairing. In: SCIS, Okinawa, Japan (2000)
Lock, R., Sommerville, I.: Grid Security and its use of X.509 Certificates, http://www.comp.lancs.ac.uk/computing/
Internet X.509 Public Key Infrastructure Certificate and CRL profile, RFC3280 (2002)
Lim, H.W., Robshaw, M.J.B.: On Identity-Based Cryptography and Grid Computing. In: Bubak, M., van Albada, G.D., Sloot, P.M.A., Dongarra, J. (eds.) ICCS 2004. LNCS, vol. 3036, pp. 474–477. Springer, Heidelberg (2004)
Chen, L., Harrison, K., Moss, A., Soldera, D., Smart, N.P.: Certification of Public Keys Within an Identity Based System. In: Chan, A.H., Gligor, V.D. (eds.) ISC 2002. LNCS, vol. 2433, pp. 322–333. Springer, Heidelberg (2002)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Huang, X., Chen, L., Huang, L., Li, M. (2005). An Identity-Based Model for Grid Security Infrastructure. In: Ramos, F.F., Larios Rosillo, V., Unger, H. (eds) Advanced Distributed Systems. ISSADS 2005. Lecture Notes in Computer Science, vol 3563. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11533962_23
Download citation
DOI: https://doi.org/10.1007/11533962_23
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-28063-7
Online ISBN: 978-3-540-31674-9
eBook Packages: Computer ScienceComputer Science (R0)