Securing the AliEn File Catalogue - Enforcing authorization with accountable file operations

Schreiner, S.; Bagnasco, S.; Banerjee, Subho S.; Betev, L.; Carminati, F.; Datskova, Olga; Furano, Fabrizio; Grigoras, A.; Grigoras, C.; Lorenzo, Patricia M. Di; Peters, A.; Sáiz, Pablo; Zhu, Jianlin

doi:10.1088/1742-6596/331/6/062044

Cited by 5 publications

(6 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The File Catalogue [5] is based on a MySQL cluster, deployed with a master-slave architecture. It stores the metadata of all files stored in the storage elements, like physical location (Physical File Name -PFN), owner, time of creation, size, type, checksum.…”

Section: Related Elements Of the Alice Grid Softwarementioning

confidence: 99%

Analysis of data integrity and storage quality of a distributed storage system

et al. 2021

Self Cite

View full text Add to dashboard Cite

CERN uses the world’s largest scientific computing grid, WLCG, for distributed data storage and processing. Monitoring of the CPU and storage resources is an important and essential element to detect operational issues in its systems, for example in the storage elements, and to ensure their proper and efficient function. The processing of experiment data depends strongly on the data access quality, as well as its integrity and both of these key parameters must be assured for the data lifetime. Given the substantial amount of data, O(200 PB), already collected by ALICE and kept at various storage elements around the globe, scanning every single data chunk would be a very expensive process, both in terms of computing resources usage and in terms of execution time. In this paper, we describe a distributed file crawler that addresses these natural limits by periodically extracting and analyzing statistically significant samples of files from storage elements, evaluates the results and is integrated with the existing monitoring solution, MonALISA.

show abstract

Section: Related Elements Of the Alice Grid Softwarementioning

confidence: 99%

Analysis of data integrity and storage quality of a distributed storage system

et al. 2021

Self Cite

View full text Add to dashboard Cite

show abstract

“…Since SEs as the storage subsystem are unaware of Grid users, authorized users must be provided with access credentials [19,7] upon request. Accordingly, we define the following security requirements.…”

Section: Security Characteristics Of the Alice Grid Servicesmentioning

confidence: 99%

“…In [7], a mechanism is presented to ensure authentic file information and consistent meta information in the Grid file catalogue with respect to the physical files on SEs as the storage devices. For both read and write accesses, a client receives a signed Access Ticket from a central service after successful authorization and is then able to use the ticket to access a SE and perform the operation.…”

Section: Certified Grid Filesmentioning

confidence: 99%

“…This document presents a new Grid security architecture, pursuing to achieve a high level of accountability and traceability of the interactions within a eScience Grid, while instantiating non-repudiation of creatorship and ownership of Grid files and jobs. Our approach is based on enhancements of signed storage tickets [7] and the model of Mediated Definite Delegation [8]. Along with the development of a new central Grid middleware for the ALICE Grid services, called jAliEn [9], the security architecture was implemented as a prototype and proof of concept.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A security architecture for the ALICE Grid Services

Schreiner¹

2012

Proceedings of the International Symposium on Grids and Clouds (ISGC) 2012 — PoS(ISGC 2012)

Self Cite

View full text Add to dashboard Cite

Globally distributed research cyberinfrastructures, like the ALICE Grid Services, need to provide traceability and accountability of operations and internal interactions. This document presents a new security architecture for the ALICE Grid Services, allowing to establish non-repudiation with respect to creatorship and ownership of Grid files and jobs. It is based on mutually authenticated and encrypted communication using X.509 Public Key Infrastructure and the Transport Layer Security (TLS) protocol. Introducing certified Grid file entries and signed Grid jobs by implementing a model of Mediated Definite Delegation it allows to establish long-term accountability concerning Grid jobs and files. Initial submissions as well as any alteration of Grid jobs are becoming verifiable and can be traced back to the originator. The architecture has been implemented as a prototype along with the development of a new central Grid middleware, called jAliEn.

show abstract

“…Taking this further, Ref. [23] describes a mechanism for trustable meta information on files in the File Catalogue to be provided by the underlying storage systems. In combination with s 2 JDL and gLExec it would then be possible to ensure not only a job's authenticity, but also the authenticity of the files referred to within its s 2 JDL.…”

Section: Certified Grid Jobs and Glexecmentioning

confidence: 99%

A Mediated Definite Delegation Model allowing for Certified Grid Job Submission

Schreiner,

Betev,

Grigoras

et al. 2011

Preprint

Self Cite

View full text Add to dashboard Cite

Grid computing infrastructures need to provide traceability and accounting of their users' activity and protection against misuse and privilege escalation. A central aspect of multi-user Grid job environments is the necessary delegation of privileges in the course of a job submission. With respect to these generic requirements this document describes an improved handling of multi-user Grid jobs in the ALICE ("A Large Ion Collider Experiment") Grid Services. A security analysis of the ALICE Grid job model is presented with derived security objectives, followed by a discussion of existing approaches of unrestricted delegation based on X.509 proxy certificates and the Grid middleware gLExec. Unrestricted delegation has severe security consequences and limitations, most importantly allowing for identity theft and forgery of delegated assignments. These limitations are discussed and formulated, both in general and with respect to an adoption in line with multi-user Grid jobs. Based on the architecture of the ALICE Grid Services, a new general model of mediated definite delegation is developed and formulated, allowing a broker to assign context-sensitive user privileges to agents.The model provides strong accountability and longterm traceability. A prototype implementation allowing for certified Grid jobs is presented including a potential interaction with gLExec. The achieved improvements regarding system security, malicious job exploitation, identity protection, and accountability are emphasized, followed by a discussion of nonrepudiation in the face of malicious Grid jobs.

show abstract

Securing the AliEn File Catalogue - Enforcing authorization with accountable file operations

Cited by 5 publications

References 4 publications

Analysis of data integrity and storage quality of a distributed storage system

Analysis of data integrity and storage quality of a distributed storage system

A security architecture for the ALICE Grid Services

A Mediated Definite Delegation Model allowing for Certified Grid Job Submission

Contact Info

Product

Resources

About