Other formats:
BibTeX
LaTeX
RIS
@inproceedings{589062,
author = {Kouřil, Daniel and Basney, Jim},
address = {Seattle, USA},
booktitle = {Proceedings of the 6th IEEE/ACM International Workshop on Grid Computing (GRID'05)},
keywords = {long-running jobs; credential renewal; grid authentication and authorization},
location = {Seattle, USA},
isbn = {0-7803-9493-3},
pages = {63-68},
publisher = {IEEE Computer Society},
title = {A Credential Renewal Service for Long-Running Jobs},
year = {2005}
}
TY - JOUR
ID - 589062
AU - Kouřil, Daniel - Basney, Jim
PY - 2005
TI - A Credential Renewal Service for Long-Running Jobs
PB - IEEE Computer Society
CY - Seattle, USA
SN - 0780394933
KW - long-running jobs
KW - credential renewal
KW - grid authentication and authorization
N2 - Jobs on the Grid require security credentials throughout their run for accessing secure Grid resources. However, delegating long-lived credentials to long-running jobs brings an increased risk that a credential will be compromised and misused. Additionally, it is often difficult to predict the run-time of jobs on the Grid, due to changes in application performance and resource load, making it difficult to set the lifetime of the delegated credential in advance. We have developed a solution to this problem for the EU DataGrid project using the MyProxy online credential repository and have further evolved it during the EGEE project. This system has been used for credential renewal in Grids in Europe for over three years. In this paper, we present the system design, describe our experiences, and discuss the security implications of this approach.
ER -
KOUŘIL, Daniel and Jim BASNEY. A Credential Renewal Service for Long-Running Jobs. In \textit{Proceedings of the 6th IEEE/ACM International Workshop on Grid Computing (GRID'05)}. Seattle, USA: IEEE Computer Society, 2005, p.~63-68. ISBN~0-7803-9493-3.
|
