Certification Authority Monitored Multilevel and Stateful Policy Based Authorization in Services Oriented Grids

TL;DR

This paper introduces the CMMS model for secure, multilevel, stateful authorization in service-oriented grids, addressing security shortcomings and demonstrating its application in a government-related police information grid.

Contribution

The paper presents a novel CMMS model that enhances authorization security in service-oriented grids with minimal restructuring, tailored for government service environments.

Findings

Successfully prototyped in a State Police Information Grid

Requires minor restructuring of PKIX and X.509 certificates

Addresses specific authorization shortcomings in service-oriented grids

Abstract

Services oriented grids will be more prominent among other kinds of grids in the present distributed environments. With the advent of online government services the governmental grids will come up in huge numbers. Apart from common security issues as in other grids, the authorization in service oriented grids faces certain shortcomings and needs to be looked upon differently. The CMMS model presented here overcomes all these shortcomings and adds to the simplicity of implementation because of its tight similarities with certain government services and their functioning. The model is used to prototype a State Police Information Grid (SPIG). Small technological restructuring is required in PKIX and X.509 certificates.