A credential renewal service for long-running jobs

13 years 10 months ago

Download www.ncsa.illinois.edu

— Jobs on the Grid require security credentials throughout their run for accessing secure Grid resources, such as GridFTP data repositories. However, delegating long-lived credentials to long-running jobs brings an increased risk that a credential will be compromised and misused. Additionally, it is often difﬁcult to predict the run-time of jobs on the Grid, due to changes in application performance and resource load, making it difﬁcult to set the lifetime of the delegated credential in advance. We have developed a solution to this problem for the EU DataGrid project using the MyProxy online credential repository and have further evolved it during the EGEE project. Users store their long-lived credentials in a dedicated MyProxy server and delegate short-lived credentials to their jobs. When a job’s credential nears expiration, the Workload Management System retrieves a new short-lived credential from the MyProxy server on the user’s behalf and uses it to refresh the job’s c...

Daniel Kouril, Jim Basney

Real-time Traffic

Credential | GRID 2005 | Long-lived Credentials | MyProxy Server |

claim paper

Post Info
More Details (n/a)

Added	27 Jun 2010
Updated	27 Jun 2010
Type	Conference
Year	2005
Where	GRID
Authors	Daniel Kouril, Jim Basney

Comments (0)

Sciweavers

A credential renewal service for long-running jobs

Credential | GRID 2005 | Long-lived Credentials | MyProxy Server |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers