Á¤º¸°úÇÐȸ ³í¹®Áö A : ½Ã½ºÅÛ ¹× ÀÌ·Ð
Current Result Document : 7 / 7
ÇѱÛÁ¦¸ñ(Korean Title) |
X.509 ´ë¸® ÀÎÁõ¼ À§ÀÓÀ» À§ÇØ È®ÀåµÈ OAuth ÇÁ·ÎÅäÄÝ |
¿µ¹®Á¦¸ñ(English Title) |
An Extended OAuth Protocol For X.509 Proxy Certificate Delegation |
ÀúÀÚ(Author) |
Çã´ë¿µ
Ȳ¼±ÅÂ
Á¤°©ÁÖ
Daeyoung Heo
Suntae Hwang
Karpjoo Jeong
|
¿ø¹®¼ö·Ïó(Citation) |
VOL 38 NO. 05 PP. 0257 ~ 0262 (2011. 10) |
Çѱ۳»¿ë (Korean Abstract) |
±×¸®µå ¼ºñ½º¸¦ º¸ÆíÀûÀÎ À¥ ÀÎÅÍÆäÀ̽º ¹× À¥ ¼ºñ½º·Î »ç¿ëÀÚ¿¡°Ô Á¦°øÇϱâ À§ÇØ À¥ Ç¥ÁØ ±â¼ú¿¡ ±â¹ÝÀ» µÐ ±×¸®µå À¥ ¾ÖÇø®ÄÉÀ̼ÇÀÇ »ç¿ëÀÌ Áõ°¡ÇÏ°í ÀÖ´Ù. ±×·¯³ª À¥ Ç¥ÁØ º¸¾È ±¸Á¶¿¡¼ GSI(Grid Security Infrastructure)¿Í °°Àº ±×¸®µå º¸¾È ½Ã½ºÅÛ°ú µ¿ÀÏÇÑ À§ÀÓ ¹æ¹ýÀÌ ¾ø¾î À¥ ¾ÖÇø®ÄÉÀ̼ǿ¡ ±×¸®µå¸¦ ÅëÇÕÇÏ´Â °ÍÀº ¸Å¿ì ¾î·Æ´Ù. À̸¦ ÇØ°áÇϱâ À§Çؼ´Â MyProxy¿Í °°Àº ¿Â¶óÀÎ ÀÚ°Ý Áõ¸í ÀúÀå ¼ºñ½º¸¦ ÀÌ¿ëÇÏ¿© À¥ ¾ÖÇø®ÄÉÀ̼ǿ¡¼ ±×¸®µå ÀÎÁõ(Credential)À» »ç¿ëÇÒ ¼ö ÀÕµµ·Ï ÇØ¾ß ÇÑ´Ù. º» ³í¹®¿¡¼´Â ±×¸®µå À¥ ¾ÖÇø®ÄÉÀ̼ǰú »ç¿ëÀÚ °£ÀÇ »óÈ£ ½Å·Ú¸¦ ÀüÁ¦·Î ÇÏ´Â ¿Â¶óÀÎ ÀÚ°Ý Áõ¸í ÀúÀå ¼ºñ½ºÀÎ MyProxy¸¦ »ç¿ëÇÏ´Â ¹æ¹ýÀÇ ¹®Á¦Á¡À» ºÐ¼®ÇÏ°í, »óÈ£ ½Å·Ú¸¦ ¹ÙÅÁÀ¸·Î ÇÏÁö ¾Ê´Â ±×¸®µå ÀÎÁõÀ» À§ÀÓÇÏ´Â ÇÁ·ÎÅäÄÝÀ» Á¦¾ÈÇÑ´Ù. º» ³í¹®¿¡¼ Á¦¾ÈÇÏ´Â ÇÁ·ÎÅäÄÝÀº Á¦ 3ÀÇ ¼ºñ½º¿¡°Ô »ç¿ëÀÚÀÇ º¸È£µÈ µ¥ÀÌÅ͸¦ ÀÐÀ» ¼ö ÀÖµµ·Ï Çã°¡ÇÏ´Â QAuth ÇÁ·ÎÅäÄÝ¿¡ X.509 ´ë¸® ÀÎÁõ¼ À§ÀÓ ÀýÂ÷¸¦ Ãß°¡ÇÑ °ÍÀÌ´Ù. |
¿µ¹®³»¿ë (English Abstract) |
Grid web applications by standard web technology are increasingly used to provide Grid services to users as a normal web user interface and service. It is however difficult to integrate Grid security systems such as GSI (Grid Security Infrastructure) into web applications because the method of delegating standard web security is not the same as that of the Grid security. This can be solved by allowing web applications to get a Grid credential by using an online credential repository system such as MyProxy. In this paper, we investigate the problem that occurs when MyProxy, which assumes mutual trust between the user and Grid web application, is adapted for integrating security between web and Grid, and we propose a new protocol to delegate a Grid credential to the Web without assuming mutual trust. In this protocol, the X.509 proxy certificate delegation process is added to OAuth protocol that grants a third service to access protected user data. |
Å°¿öµå(Keyword) |
±×¸®µå º¸¾È
X.509 ÀÎÁõ¼ À§ÀÓ
Grid Security
X.509 Proxy Delegation
OAuth
|
ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|