| Security in Distributed Metadata Catalogues (2008) | |||||||||||||||
Abstract | |||||||||||||||
| Abstract. Catalogue Services provide the discovery and location mechanisms that allow users and applications to locate data on Grids. Replication is a highly desirable feature in these services, since it provides the scalability and reliability required on large Data Grids and is the basis for federating catalogues from different organisations. Grid Catalogues are often used to store sensitive data and must have access control mechanisms to protect their data. Replication has to take this security policy into account, making sure that replicated information cannot be abused but allowing some flexibility like selective replication for the sites depending on the level of trust in them. In this paper we discuss the security requirements and implications of several replication scenarios for Grid Catalogues based on experienced gained within the EGEE project. Using the security infrastructure of the EGEE Grid as a basis, we then propose a security architecture for replicated Grid Catalogues, which, among other features, supports partial and total replication of the security mechanisms on the master. The implementation of this architecture in the AMGA Metadata Catalogue of the EGEE project is then described including the application to a complex scenario in a Biomedical application. 1 | |||||||||||||||
Publication details | |||||||||||||||
| |||||||||||||||