DLR-Logo -> http://www.dlr.de
DLR Portal Home | Imprint | Contact | Deutsch
Fontsize: [-] Text [+]

Content-validation of Messages and Policy assurances for a Security-Proxy supporting Grid services

Metsch, Thijs (2005) Content-validation of Messages and Policy assurances for a Security-Proxy supporting Grid services. Diploma, Berufsakademie Mannheim.

PDF - Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader


Today Grid computing is an important technology that allows scientists and engineers to solve large and complex problems, to work in complex and heterogeneous environments, and to cooperate in various new ways. In Grid environments integrate distributed computing resources, networks, scientific instruments, data archives and databases, and visualization environments. The virtualization of these resources results in resource environments allowing the dynamic generation of Virtual Organizations (VO) to increase the productivity and quality of scientific work. This work describes a security concept for securing Grid Services in a Firewalled environment. The main aspect of this concept is a security gateway which performs content based checks on incoming Grid requests. This is an application level gateway and it checks SOAP messages of Grid Service requests and decides on the application level (OSI level 7) whether the message should pass the gateway or be blocked. In combination with packet filtering, provided by usual rewall solutions, and encrypted data transfer methods, this allows a shared secured use of Grid resources, separated by security gateways. This can be accomplished without changing the respective Grid middleware and without increasing security risks to an unacceptable level (e. g., by opening network ports). The work on this topic led to the conclusion that with an appropriate concept, modern services based distributed environments can be secured. This concept includes the use of Firewalls and security proxies.

Document Type:Thesis (Diploma)
Title:Content-validation of Messages and Policy assurances for a Security-Proxy supporting Grid services
AuthorsInstitution or Email of Authors
Number of Pages:45
Keywords:Grid Computing, Grid Security, Firewall, Application Level Gateway, Plug-In
Institution:Berufsakademie Mannheim
HGF - Research field:Aeronautics, Space and Transport (old)
HGF - Program:Space (old)
HGF - Program Themes:W SY - Technik für Raumfahrtsysteme
DLR - Research area:Space
DLR - Program:W SY - Technik für Raumfahrtsysteme
DLR - Research theme (Project):W - Vorhaben SISTEC (old)
Location: Köln-Porz
Institutes and Institutions:Institut of Simulation and Software Technology > Distributed Systems and Component Software
Deposited By: Andreas Schreiber
Deposited On:02 Mar 2009
Last Modified:12 Dec 2013 20:08

Repository Staff Only: item control page

Help & Contact
electronic library is running on EPrints 3.3.12
Copyright © 2008-2012 German Aerospace Center (DLR). All rights reserved.