Presentation is loading. Please wait.

Presentation is loading. Please wait.

Legion - A Grid OS. Object Model Everything is object Core objects - processing resource– host object - stable storage - vault object - definition of.

Published byCody Riley Modified over 8 years ago

Similar presentations

Presentation on theme: "Legion - A Grid OS. Object Model Everything is object Core objects - processing resource– host object - stable storage - vault object - definition of."— Presentation transcript:

1 Legion - A Grid OS

2 Object Model Everything is object Core objects - processing resource– host object - stable storage - vault object - definition of object – class object Legion provides default implementation, but all system components can be extended, specialized and replaced.

3 Object Model Object state Active: hosted within a running process Inert: state/OPR is stored on a persistent storage device OPR: LOID, private key, ACL Identified by location-independent LOID LOID include the public key

4 Status Of An Object

5 Legion Runtime Library Defines generic interfaces to services - message passing - object creation, location, deletion flexible, configurable protocol stack - adding message privacy is simply a matter of registering the appropriate message processing event handlers into the Legion protocol stack

6 Two main concerns User’s concern Protecting the meta-computer’s high-level resources, services, and users from possibly corrupted underlying resources Administrator’s concern Preserving the security policies of the underlying resources that from the foundation of the meta-computer and minimizing their vulnerability to attacks from the meta-computer level

7 Features Flexible simple policy-neutral mechanism build different policy on top of it Easy to use explore the legion inheritance mechanism Scalable object authenticate one another directly no centralized key services Isolated Object isolation & site isolation

8 Object Management Object Isolation - isolate system object to user object host object and vault object run in different local account - isolate different user-object from one another native user or generic account Host object does not run in root account PCD(Process Control Daemon) does the object activate, deactivate, reactivate under the request of host object

9 Creating object Class manager - assigns LOID for the new object - create object’s key - pass the LOID and key to the host object on the machine where the object will run - pass the binary of the object implementation to host object - ask vault object to create directory for the object Host object - map the LOID to local user account - spawn a process to host the object - pass the LOID and key to the active object - change the ownership of the directory for the object

10 Credential A list of rights granted by the credential’s maker can be passed along the call chain Delegated credentials – what is the right and to who e.g., [object A may call object B’s method M as Alice during the period T] signed Alice Bearer credentials – what is the right - call chain may branch out - the identity of the final object on the call chain may be unknown by the user - increase the risk Both have valid period or short time Authentication credential

11 Access Control Each object is responsible for enforcing its own access control policy MayI for each object implements access control on a per-function basis Who decides the security policy of object? user initiating the object class object of this object Object A MayI? B b.foo() No! foo ok

12 Scenario 1 Site isolation Problem: No matter how subverted any external sites in the Legion system might be, no intruder can invoke methods on local Legion resources as Admin Solution: - Local Legion resources should be started as a separate Legion domain - Automated enforcement of no leakage of site critical information off-site by configuring extra event handler e.g., an event handler for message-send event to check whether the ACL of host object is being sent out. If so, the message is block and an exception is raised

13 Scenario2 Site-wide required access control Problem: - File object with no restrictions on which user can access the file it represents - a site wishes to enforce the policy that files may not be accessed by outside users Solution: use local host object to control access to local resources. The site administrator can configure the ACL of host object to limit the classes of objects that may run at the site.

14 Scenario3 Site selection policy Problem: which resource to execute my job? Solution: encode the site selection policy in the user’s class manager objects

15 Comparison Resource proxy vs. host object Delegate identity vs. delegate right No object control vs. MayI

Download ppt "Legion - A Grid OS. Object Model Everything is object Core objects - processing resource– host object - stable storage - vault object - definition of."

Similar presentations

Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.

Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.
MicroKernel Pattern Presented by Sahibzada Sami ud din Kashif Khurshid.

MicroKernel Pattern Presented by Sahibzada Sami ud din Kashif Khurshid.
Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.

Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.
A Flexible Security System for Metacomputing Environments A Presentation by Kunal Vaishnav USC.

A Flexible Security System for Metacomputing Environments A Presentation by Kunal Vaishnav USC.
Android Security. N-Degree of Separation Applications can be thought as composed by Main Functionality Several Non-functional Concerns Security is a non-functional.

Android Security. N-Degree of Separation Applications can be thought as composed by Main Functionality Several Non-functional Concerns Security is a non-functional.
A responsibility based model EDG CA Managers Meeting June 13, 2003.

A responsibility based model EDG CA Managers Meeting June 13, 2003.
Access Control Methodologies

Access Control Methodologies
Grid Security. Typical Grid Scenario Users Resources.

Grid Security. Typical Grid Scenario Users Resources.
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
Component Patterns – Architecture and Applications with EJB copyright © 2001, MATHEMA AG Component Patterns Architecture and Applications with EJB JavaForum.

Component Patterns – Architecture and Applications with EJB copyright © 2001, MATHEMA AG Component Patterns Architecture and Applications with EJB JavaForum.
CSE331: Introduction to Networks and Security Lecture 28 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 28 Fall 2002.
11 WORKING WITH GROUPS Chapter 7. Chapter 7: WORKING WITH GROUPS2 CHAPTER OVERVIEW  Understand the functions of groups and how to use them.  Understand.

11 WORKING WITH GROUPS Chapter 7. Chapter 7: WORKING WITH GROUPS2 CHAPTER OVERVIEW  Understand the functions of groups and how to use them.  Understand.
OSGi: Open Services Gateway Initiative Richard Chapman 5 Sept. 2002.

OSGi: Open Services Gateway Initiative Richard Chapman 5 Sept
CSI 400/500 Operating Systems Spring 2009 Lecture #20 – Security Measures Wednesday, April 29 th.

CSI 400/500 Operating Systems Spring 2009 Lecture #20 – Security Measures Wednesday, April 29 th.
Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.

Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.
Legion Worldwide virtual computer. About Legion Made in University of Virginia Object-based metasystems software project middleware that connects computer.

Legion Worldwide virtual computer. About Legion Made in University of Virginia Object-based metasystems software project middleware that connects computer.
Introduction To Windows NT ® Server And Internet Information Server.

Introduction To Windows NT ® Server And Internet Information Server.
Internet Protocol Security (IPSec)

Internet Protocol Security (IPSec)
Chapter 7 WORKING WITH GROUPS.

Chapter 7 WORKING WITH GROUPS.
Windows Server MIS 424 Professor Sandvig. Overview Role of servers Performance Requirements Server Hardware Software Windows Server IIS.

Windows Server MIS 424 Professor Sandvig. Overview Role of servers Performance Requirements Server Hardware Software Windows Server IIS.

Similar presentations

Ads by Google