ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Access control for a replica management database
Full text PdfPdf (154 KB)
Source Conference on Computer and Communications Security archive
Proceedings of the second ACM workshop on Storage security and survivability table of contents
Alexandria, Virginia, USA
SESSION: Protection and trust table of contents
Pages: 41 - 46  
Year of Publication: 2006
ISBN:1-59593-552-5
Authors
Justin M. Wozniak  University of Notre Dame, Indiana
Paul Brenner  University of Notre Dame, Indiana
Douglas Thain  University of Notre Dame, Indiana
Sponsors
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
ACM: Association for Computing Machinery
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 2,   Downloads (12 Months): 37,   Citation Count: 2
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1179559.1179567
What is a DOI?

ABSTRACT

Distributed computation systems have become an important tool for scientific simulation, and a similarly distributed replica management system may be employed to increase the locality and availability of storage services. While users of such systems may have low expectations regarding the security and reliability of the computation involved, they expect that committed data sets resulting from complete jobs will be protected against storage faults, accidents and intrusion. We offer a solution to the distributed storage security problem that has no global view on user names or authentication specifics. Access control is handled by a rendition protocol, which is similar to a rendezvous protocol but is driven by the capability of the client user to effect change in the data on the underlying storage. In this paper, we discuss the benefits and liabilities of such a system.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
The American Heritage Dictionary of the English Language, Fourth Edition Houghton Mifflin Company.
 
2
WordNet 2.0 Princeton University.
 
3
Ann L. Chervenak , Naveen Palavalli , Shishir Bharathi , Carl Kesselman , Robert Schwartzkopf, Performance and Scalability of a Replica Location Service, Proceedings of the 13th IEEE International Symposium on High Performance Distributed Computing (HPDC'04), p.182-191, June 04-06, 2004  [doi>10.1109/HPDC.2004.27]
 
4
I. Foster and C. Kesselman. Globus: A metacomputing infrastructure toolkit. International Journal of Supercomputer Applications 11, 1997.
5
Ian Foster , Carl Kesselman , Gene Tsudik , Steven Tuecke, A security architecture for computational grids, Proceedings of the 5th ACM conference on Computer and communications security, p.83-92, November 02-05, 1998, San Francisco, California, United States  [doi>10.1145/288090.288111]
6
Garth A. Gibson , Rodney Van Meter, Network attached storage architecture, Communications of the ACM, v.43 n.11, p.37-45, Nov. 2000  [doi>10.1145/353360.353362]
 
7
The Globus Alliance. http://www.globus.org.
8
John H. Howard , Michael L. Kazar , Sherri G. Menees , David A. Nichols , M. Satyanarayanan , Robert N. Sidebotham , Michael J. West, Scale and performance in a distributed file system, ACM Transactions on Computer Systems (TOCS), v.6 n.1, p.51-81, Feb. 1988  [doi>10.1145/35037.35059]
 
9
M. Litzkow, M. Livny, and M. Mutka. Condor -A hunter of idle workstations. In Proceedings of the 8th International Conference of Distributed Computing Systems 1988.
 
10
B. Clifford Neuman and Theodore Ts'o. Kerberos: An authentication service for computer networks. IEEE Communications 32, 1994.
 
11
Arcot Rajasekar , Michael Wan , Reagan Moore , George Kremenek , Tom Guptil, Data Grids, Collections, and Grid Bricks, Proceedings of the 20 th IEEE/11 th NASA Goddard Conference on Mass Storage Systems and Technologies (MSS'03), p.2, April 07-10, 2003
 
12
Tatyana Ryutov, Grig Gheorghiu, and Clifford Neuman. An authorization framework for metacomputing applications. In Proceedings of Cluster Computing 1999.
 
13
Gurmeet Singh , Shishir Bharathi , Ann Chervenak , Ewa Deelman , Carl Kesselman , Mary Manohar , Sonal Patil , Laura Pearlman, A Metadata Catalog Service for Data Intensive Applications, Proceedings of the 2003 ACM/IEEE conference on Supercomputing, p.33, November 15-21, 2003
 
14
K. Tai, S. Murdock, B. Wu, M. Ng, S. Johnston, H. Fanghor, S.J. Cox, P. Jeffreys, J.W. Essex, and M.S.P. Sansom. BioSimGrid: towards a worldwide repository for biomolecular simulations. Org. Biomol. Chem. 2, 2004.
 
15
Douglas Thain , Sander Klous , Justin Wozniak , Paul Brenner , Aaron Striegel , Jesus Izaguirre, Separating Abstractions from Resources in a Tactical Storage System, Proceedings of the 2005 ACM/IEEE conference on Supercomputing, p.55, November 12-18, 2005  [doi>10.1109/SC.2005.64]
 
16
Brian S. White, Michael Walker, Marty Humphrey, and Andrew S. Grimshaw. LegionFS: A secure and scalable file system supporting cross-domain high-performance applications. In Proceedings of Supercomputing 2001.
 
17
J.M. Wozniak, P. Brenner, D. Thain, A. Striegel, and J.A. Izaguirre. Generosity and gluttony in GEMS: Grid-Enabled Molecular Simulation. In Proceedings of the International Symposium on High Performance Distributed Computing 2005.
18
Justin M. Wozniak , Paul Brenner , Douglas Thain, Access control for a replica management database, Proceedings of the second ACM workshop on Storage security and survivability, October 30-30, 2006, Alexandria, Virginia, USA  [doi>10.1145/1179559.1179567]

CITED BY  2
Justin M. Wozniak , Paul Brenner , Douglas Thain, Access control for a replica management database, Proceedings of the second ACM workshop on Storage security and survivability, October 30-30, 2006, Alexandria, Virginia, USA
P. Brenner , J. M. Wozniak , D. Thain , A. Striegel , J. W. Peng , J. A. Izaguirre, Biomolecular committor probability calculation enabled by processing in network storage, Parallel Computing, v.34 n.11, p.652-660, November, 2008

INDEX TERMS

Primary Classification:
  H. Information Systems
  H.2 DATABASE MANAGEMENT
      H.2.7 Database Administration
          Subjects: Security, integrity, and protection

Additional Classification:
  H. Information Systems
  H.2 DATABASE MANAGEMENT
      H.2.7 Database Administration
          Subjects: Data warehouse and repository


General Terms:
Management, Security


Keywords:
GEMS, chirp, distributed access control, rendition protocol

Collaborative Colleagues:
Justin M. Wozniak: colleagues
Paul Brenner: colleagues
Douglas Thain: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player