Computer Engineering and Applications ›› 2007, Vol. 43 ›› Issue (30): 11-14.

• 博士论坛 • Previous Articles     Next Articles

Study of distributed authorization framework in grid

YAO Hong-yan,LI Ming-chu   

  1. Software School,Dalian University of Technology,Dalian,Liaoning 116621,China
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-10-21 Published:2007-10-21
  • Contact: YAO Hong-yan



  1. 大连理工大学 软件学院,辽宁 大连 116621
  • 通讯作者: 姚红岩

Abstract: The paper explores deeply on authorization in grid with respect to some key concept,including authorization parameters,authorization sequence and authorization model,then proposes in theory a framework for distributed authorization.Framework divides authorization into five parts.They are called in turn the trust management,policy management,privilege management,authorization mechanism & protocol management and authorization request management.Each part’s function is also prescribed.Not only this framework makes technology development for each part is more specific,but also clarifies the way of establishing concrete authorization mechanism.

摘要: 对网格中的授权概念及授权过程涉及的主要理论模型和算法参数,进行全面地阐述,然后给出一个网格的分布式授权框架,框架对授权按层次划分为信任管理、策略管理、权限管理、授权机制与协议管理,授权请求管理,对各层分工也有明确描述。结合当前信任管理概念与框架的对比分析,表明框架的功能划分使各层实现技术的研究更具针对性,同时便于从整体上把握授权各环节,理顺建立授权机制的思路。