摘要
由于分布式环境下的网格应用程序往往要跨域访问资源,如何构建统一的跨域安全令牌交换机制就成了网格应用中需解决的一个重要的问题。针对此问题,提出了一个可以进行跨域安全令牌交换的框架,此框架由认证中心和个体安全域组成,单个安全域的用户可以通过认证中心来获取不同安全域的安全令牌。从而为跨域安全令牌的交换提出了一种解决方法,最后框架在欧中网格合作项目(Bridge项目)中进行验证。
Because grid applications deployed in the distributed environment often need to access resources in different security domains, how to establish a uniformed mechanism to distribute security token has become a very import problem in the research of grid applications. To address this problem, a framework which can exchange security token among different security domains is proposed. This framework consists of tow parts: STS center and STS service in individual security domains, user in certain security domain can obtain security token ofanother domain via this framework. TheframeworkisfmallytestedintheEU-Chinagridcooperationprojects: BRIDGE project.
出处
《计算机工程与设计》
CSCD
北大核心
2009年第19期4383-4386,共4页
Computer Engineering and Design
关键词
网格
安全
令牌交换
分布式
异构环境
grid
security
token distribution
distribute system
heterogenouscomputing
