A Novel Certificate-based Authentication Hybrid Broker Model Using Multi-party Key Agreement in Data Grids

Several recent studies have demonstrated that co-allocation techniques can improve network bandwidth and network transfer times by concurrently utilizing as many data grid replicas as possible. In our previous work, the anticipative recursively adjusting mechanism plus (ARAM+) model, It was based on co-allocation strategies and decentralized service broker, which provide comprehensive capabilities of data access for users' application. Although most of current grid systems use traditional PKI to authenticate grid members as also to secure resource allocation to them, it only provides the security of inter-grid communication. However, the challenges of co-allocation architectures continue to lie in the secured intra-grid communication against internal attacks. It is presented in this paper a new certificate-based authentication hybrid broker model by using multi-party key agreement for redundant parallel file transfer in ARAM+ model, where we designed and implemented service broker agent called ”resource broker”, that takes over the works of job monitoring of the service broker for each dynamic resource-group. Moreover, the multi-party key agreement protocol is used to provide security services for resource-group communications. Experimental results show that our approach achieves dependable performance with various loads of services, broker failures and possible attacks.