VIRTUAL ORGANIZATIONS AND DATABASE ACCESS – A CASE STUDY

Mikko Pitkanen, Marko Niinimaki, John White, Tapio Niemi

Abstract

This paper presents a case study of using virtual organization technologies in database access. A virtual organization (VO) is a collection of people in the same administrative domain. A user can belong to many virtual organizations and have a different role (user, client, administrator,..) in each of them. An authorization of a user to different services within a VO is based on the user’s identity and a service called a Virtual Organization Membership Service (VOMS) that maps these identities with roles. The user’s identity can be established in two ways. If the user communicates with the service using his web browser, the user’s certificate must be included in the browser. Another possibility is to use a proxy certificate. There, in the proxy creation process, the program that writes the proxy adds the user’s proxy certificate information about his participation in different VO’s and his role in each of them. In order to demonstrate using these VO proxy certificates, we have extended the functionality of Spitfire, a relational database front end. This involves assigning the user a database role (read/write/update) based on the VO information in his certificate. There is also a graphical user interface for creating the mappings between VO roles and database access roles.

References

  1. Al eri, R., Cecchini, R., Ciashini, V., dell'Agnello, L., Frohner, A., Lorentey, K., and Spataro, F. (2003). VOMS an authorization system for virtual organizations. In Proceedings of the 1st European Across Grids Conference - Santiago de Compostela, Spain, 13-14 February 2003.
  2. Elmasri, R. and Navathe, S. B. (1994). Fundamentals of database systems (2nd ed). Benjamin / Cummings.
  3. Farrell, S. and Housley, R. (2002). Rfc 3281, an internet attribute certi cate pro le for authorization. Available on http://www.ietf.org/rfc/rfc3281.txt.
  4. Foster, I. and Kesselman, C. (1997). Globus: A metacomputing infrastructure toolkit. International Journal of Supercomputer Applications, 11(2).
  5. Foster, I., Kesselman, C., and Tuecke, S. (2001). The anatomy of the Grid: Enabling scalable virtual organizations. International Journal of Supercomputer Applications, 15(3).
  6. Housley, R., Ford, W., Polk, W., and Solo, D. (1999). Rfc 2459, internet x.509 public key infrastructure certi cate and crl pro le. Available on http://www.ietf.org/rfc/rfc2459.txt.
  7. Karppinen, J., Niemi, T., and Niinimaki, M. (2003). Mobile analyzer - new concept for next generation of distributed computing. The 3rd IEEE/ACM International Symposium on Cluster Computing and the Grid, (CCGrid 2003), Japan, May 2003. Available on http://ccgrid2003.apgrid.org/online posters.
  8. MySQL AB (2001). http://www.mysql.org.
Download


Paper Citation


in Harvard Style

Pitkanen M., Niinimaki M., White J. and Niemi T. (2004). VIRTUAL ORGANIZATIONS AND DATABASE ACCESS – A CASE STUDY . In Proceedings of the Sixth International Conference on Enterprise Information Systems - Volume 1: ICEIS, ISBN 972-8865-00-7, pages 514-517. DOI: 10.5220/0002602305140517


in Bibtex Style

@conference{iceis04,
author={Mikko Pitkanen and Marko Niinimaki and John White and Tapio Niemi},
title={VIRTUAL ORGANIZATIONS AND DATABASE ACCESS – A CASE STUDY},
booktitle={Proceedings of the Sixth International Conference on Enterprise Information Systems - Volume 1: ICEIS,},
year={2004},
pages={514-517},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002602305140517},
isbn={972-8865-00-7},
}


in EndNote Style

TY - CONF
JO - Proceedings of the Sixth International Conference on Enterprise Information Systems - Volume 1: ICEIS,
TI - VIRTUAL ORGANIZATIONS AND DATABASE ACCESS – A CASE STUDY
SN - 972-8865-00-7
AU - Pitkanen M.
AU - Niinimaki M.
AU - White J.
AU - Niemi T.
PY - 2004
SP - 514
EP - 517
DO - 10.5220/0002602305140517