A generic Grid security policy reconciliation framework

Lazaros Gymnopoulos (ICSS Laboratory, University of the Aegean, Samos, Greece)
Vassilios Tsoumas (ISDB Laboratory, Athens University of Economics and Business, Athens, Greece)
Ioannis Soupionis (ISDB Laboratory, Athens University of Economics and Business, Athens, Greece)
Stefanos Gritzalis (ICSS Laboratory, University of the Aegean, Samos, Greece)

Internet Research

ISSN: 1066-2243

Publication date: 1 December 2005

Abstract

Purpose

The purpose of this paper is to provide a framework for enhancing security policy management in the Grid.

Design/methodology/approach

The Grid security policy reconciliation problem is presented. A generic view on the security policy notion is adopted and the security policy ontology notion is introduced and used.

Findings

In the course of this work it was found that, in order to enhance security policy management in the Grid, Grid entities should have the ability to negotiate their security policies. It was also found that, in order to achieve security policy negotiation, effective security policy semantics manipulation towards security policy reconciliation is needed. Finally, it was established, through the use of an example, that if appropriate means are used for security policy reconciliation then incompatible security policy representations can be transformed into compatible ones.

Research limitations/implications

Research limitations stem from the adoption of a generic view on the security policy notion and the selection of identification and authentication security policies as the focal point of the proposed framework. Research implications include the possibility of examining how existing security policy reconciliation models can be incorporated in this generic framework. The possibility of investigating how such a framework can lead to a security policy knowledge management tool for Grid administrators is also demonstrated.

Practical implications

Practical implications of this work include the establishment of a common framework for security information exchange between Grid entities.

Originality/value

This paper proposes a framework for enhancing security policy management in the Grid. The proposed framework can be used by researchers as a reference and by security experts in order to reduce ambiguity concerning the interpretation of security policies expressed in different forms, by negotiating Grid entities.

Keywords

Citation

Gymnopoulos, L., Tsoumas, V., Soupionis, I. and Gritzalis, S. (2005), "A generic Grid security policy reconciliation framework", Internet Research, Vol. 15 No. 5, pp. 508-517. https://doi.org/10.1108/10662240510629457

Download as .RIS

Publisher

:

Emerald Group Publishing Limited

Copyright © 2005, Emerald Group Publishing Limited

Please note you might not have access to this content

You may be able to access this content by login via Shibboleth, Open Athens or with your Emerald account.
If you would like to contact us about accessing this content, click the button and fill out the form.
To rent this content from Deepdyve, please click the button.