An efficient delegation protocol with delegation traceability in the X.509 proxy certificate environment for computational grids

Younho Lee; Heeyoul Kim; Yongsu Park; Hyunsoo Yoon

doi:10.1016/j.ins.2008.03.010

An efficient delegation protocol with delegation traceability in the X.509 proxy certificate environment for computational grids

Younho Lee
, Heeyoul Kim
, Yongsu Park
, Hyunsoo Yoon

Dept. of Industrial Engineering

Research output: Contribution to journal › Article › peer-review

3 Scopus citations

Abstract

The X.509 proxy certificate is widely used to delegate an entity's right to another entity in the computational grid environment. However, this proxy certificate has two drawbacks: the potential security threat caused by non-traceability of a delegation chain and the inefficiency caused by an interactive communication between the right grantor and the right grantee on the delegation protocol. To address these problems, a new delegation protocol is presented. The proposed protocol employs an ID-based key generation technique to support delegation traceability and non-interactive delegation. Since access-right delegation occurs frequently in the computational grid environment, the proposed protocol can enhance security by providing delegation traceability and can enhance efficiency by reducing the inter-domain communication cost.

Original language	English
Pages (from-to)	2968-2982
Number of pages	15
Journal	Information Sciences
Volume	178
Issue number	14
DOIs	https://doi.org/10.1016/j.ins.2008.03.010
State	Published - 15 Jul 2008

Keywords

Digital signature
Grid computing
ID-based signature
Proxy certificate
Right delegation
Security

Access to Document

10.1016/j.ins.2008.03.010

Cite this

@article{e80b4fedfb544f1d91fb210601c830c6,

title = "An efficient delegation protocol with delegation traceability in the X.509 proxy certificate environment for computational grids",

abstract = "The X.509 proxy certificate is widely used to delegate an entity's right to another entity in the computational grid environment. However, this proxy certificate has two drawbacks: the potential security threat caused by non-traceability of a delegation chain and the inefficiency caused by an interactive communication between the right grantor and the right grantee on the delegation protocol. To address these problems, a new delegation protocol is presented. The proposed protocol employs an ID-based key generation technique to support delegation traceability and non-interactive delegation. Since access-right delegation occurs frequently in the computational grid environment, the proposed protocol can enhance security by providing delegation traceability and can enhance efficiency by reducing the inter-domain communication cost.",

keywords = "Digital signature, Grid computing, ID-based signature, Proxy certificate, Right delegation, Security",

author = "Younho Lee and Heeyoul Kim and Yongsu Park and Hyunsoo Yoon",

year = "2008",

month = jul,

day = "15",

doi = "10.1016/j.ins.2008.03.010",

language = "English",

volume = "178",

pages = "2968--2982",

journal = "Information Sciences",

issn = "0020-0255",

number = "14",

}

TY - JOUR

T1 - An efficient delegation protocol with delegation traceability in the X.509 proxy certificate environment for computational grids

AU - Lee, Younho

AU - Kim, Heeyoul

AU - Park, Yongsu

AU - Yoon, Hyunsoo

PY - 2008/7/15

Y1 - 2008/7/15

N2 - The X.509 proxy certificate is widely used to delegate an entity's right to another entity in the computational grid environment. However, this proxy certificate has two drawbacks: the potential security threat caused by non-traceability of a delegation chain and the inefficiency caused by an interactive communication between the right grantor and the right grantee on the delegation protocol. To address these problems, a new delegation protocol is presented. The proposed protocol employs an ID-based key generation technique to support delegation traceability and non-interactive delegation. Since access-right delegation occurs frequently in the computational grid environment, the proposed protocol can enhance security by providing delegation traceability and can enhance efficiency by reducing the inter-domain communication cost.

AB - The X.509 proxy certificate is widely used to delegate an entity's right to another entity in the computational grid environment. However, this proxy certificate has two drawbacks: the potential security threat caused by non-traceability of a delegation chain and the inefficiency caused by an interactive communication between the right grantor and the right grantee on the delegation protocol. To address these problems, a new delegation protocol is presented. The proposed protocol employs an ID-based key generation technique to support delegation traceability and non-interactive delegation. Since access-right delegation occurs frequently in the computational grid environment, the proposed protocol can enhance security by providing delegation traceability and can enhance efficiency by reducing the inter-domain communication cost.

KW - Digital signature

KW - Grid computing

KW - ID-based signature

KW - Proxy certificate

KW - Right delegation

KW - Security

UR - https://www.scopus.com/pages/publications/43849099712

U2 - 10.1016/j.ins.2008.03.010

DO - 10.1016/j.ins.2008.03.010

M3 - Article

AN - SCOPUS:43849099712

SN - 0020-0255

VL - 178

SP - 2968

EP - 2982

JO - Information Sciences

JF - Information Sciences

IS - 14

ER -

An efficient delegation protocol with delegation traceability in the X.509 proxy certificate environment for computational grids

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this