Abstract
Scalable and fine-grained Grid authorization requires the move away from gridmap-file based access control and 1-to-1 mappings to individual operating system user accounts. This is recognized and addressed by virtual organization authorization services and user management systems e. g. Virtual Organization Membership Service (VOMS), Local Centre Authorization System (LCAS), Local Credential MAPping Service (LCMAPS) and Community Authorization Service (CAS). They do, however, not address user operating system account management and isolation/sandboxing requirements, such as flexible pooling of accounts while maintaining auditing records. In this paper we compare existing systems which solve the above shortcomings and are currently used in real production grids.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Křenek, A., Sebestianová, Z.: Perun – Fault-Tolerant Management of Grid Resources. In: Cracow 2004 Grid Workshop Proceedings (2004)
Křenek, A., Sebestianová, Z., Sitera, J.: Perun (In Czech). Technical Report 1/2004, CESNET, z.s.p.o. (2004)
Kupczyk, M., Lawenda, M., Meyer, N., Wolniewicz, P.: Using Virtual User Account System for Managing Users Account in Polish National Cluster. In: Hertzberger, B., Hoekstra, A.G., Williams, R. (eds.) HPCN-Europe 2001. LNCS, vol. 2110, pp. 587–590. Springer, Heidelberg (2001)
Jankowski, M., Meyer, N., Wolniewicz, P.: Virtual User System for Globus Based Grids. In: Cracow 2004 Grid Workshop Proceedings (2004)
Foster, I., Kesselman, C., Tuecke, S.: The Anatomy of the Grid: Enabling Scalable Virtual Organizations. International Journal of Supercomputer Applications 15(3) (2001)
Keahey, K., Doering, K., Foster, I.: From sandbox to playground: Dynamic virtual environments in the grid. In: GRID 2004. Proceedings of the Fifth IEEE/ACM International Workshop on Grid Computing (GRID 2004), Washington, DC, USA, pp. 34–42. IEEE Computer Society, Los Alamitos (2004)
Keahey, K., Ripeanu, M., Doering, K.: Dynamic creation and management of runtime environments in the grid. In: Workshop on Designing and Building Grid Services, GGF-9 (2003)
Keahey, K., Doering, K., Foster, I.T.: From sandbox to playground: Dynamic virtual environments in the grid. In: Grid, pp. 34–42 (2004)
Dymaczewski, W., Meyer, N., Stroiński, M., Wolniewicz, P.: Virtual Users Account System for Distributed Batch Processing. In: Sloot, P.M.A., Hoekstra, A.G., Bubak, M., Hertzberger, B. (eds.) HPCN-Europe 1999. LNCS, vol. 1593, pp. 1231–1234. Springer, Heidelberg (1999)
Alfieri, R., Cecchini, R., Ciaschini, V., Dell’Agnello, L., Frohner, A., Gianoli, A., Lïentey, K., Spataro, F.: VOMS: an Authorization System for Virtual Organizations. In: 1st European Across Grids Conference, Santiago de Compostela (2003)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Denemark, J. et al. (2006). Best Practices of User Account Management with Virtual Organization Based Access to Grid. In: Wyrzykowski, R., Dongarra, J., Meyer, N., Waśniewski, J. (eds) Parallel Processing and Applied Mathematics. PPAM 2005. Lecture Notes in Computer Science, vol 3911. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11752578_76
Download citation
DOI: https://doi.org/10.1007/11752578_76
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-34141-3
Online ISBN: 978-3-540-34142-0
eBook Packages: Computer ScienceComputer Science (R0)