Jump to content

Grid Security Infrastructure

From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Gaius Cornelius (talk | contribs) at 22:41, 25 September 2006 (clean up, Replaced: a asymmetric encryption → an asymmetric encryption using AWB). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Grid Security Infrastructure is a specification for secret, tamper-proof, delegatable communication between software in the grid computing environment. Secure, authenticatable communication is enabled using an asymmetric encryption.

Authentication

Authentication is performed using digital signature technology (see digital signatures for an explanation of how this works); secure authentication allows resources to lock data to only those who should have access to it.

Delegation

Authentication introduces a problem: often a service will have to retrieve data from a resource independent of the user; in order to do this, it must be supplied with the appropriate privileges. GSI allows for the creation of delegated privileges: a new key is created, marked as a delegated and signed by the user; it is then possible for a service to act on behalf of the user to fetch data from the resource.

Security Mechanisms

Communications may be secured using a combination of methods:


Stub icon

This computing article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Grid_Security_Infrastructure&oldid=77801176"