Research on the Access Control Model under Grid Environment

The protection of a more reasonable and safer means of grid authorization, which guarantees the efficient implementation of grid tasks, is required by the application and development of grid technology. Aiming at some difficult problems caused by Role-Based Access Control (RBAC), introducing the concept of context, tasks and conditions as well as the addition of monitoring devices, this paper proposes a Multi-restriction Access Control model on grounds of RBAC with reference to the existing traditional access control methods, meets the minimum privileges principle, and achieves the purpose of dynamic grid authorization, conditional sharing and secure interoperability among cross-domain resources. Experiments show that this approach can effectively avoid the insecurity of static authorization holders, and has superiority over other approaches in security.