Grid delegation is the procedure by which a valid user endows another user or aprogram or service with the ability to act on that user?¢a??a?¢s behalf. Delegation is theprimary form of authorization in grids. The large and geographically distributed,dynamic, heterogeneous and scalable grid environment poses unique delegationrequirements. Presently there are no standard mechanisms to guide griddelegation. As credential delegation has its own limitations in a dynamic gridenvironment, a new conceptual model is required to effectively formulate the griddelegation requirements. In this paper, we present a framework called Role-Based Grid Delegation Model (RB-GDM) for delegating access rights in grids.The basic unit of delegation in our model is role. Derived from the standardRBAC formalisms, this framework explores various approaches for authorizationand revocation of delegation.
展开▼