GridSec: Trusted grid computing with security binding and self-defense against network worms and DDoS attacks The USC GridSec project develops distributed security infrastructure and self-defense capabilities to secure wide-area networked resource sites participating in a Grid application. We report new developments in trust modeling, security-binding methodology, and defense architecture against intrusions, worms, and flooding attacks. We propose a novel architectural design of Grid security infrastructure, security binding for enhanced Grid efficiency, distributed collaborative IDS and alert correlation, DHT-based overlay networks for worm containment, and pushback of DDoS attacks. Specifically, we present a new pushback scheme for tracking attack-transit routers and for cutting malicious flows carrying DDoS attacks. We discuss challenging research issues to achieve secure Grid computing effectively in an open Internet environment.
Keywords for this software
References in zbMATH (referenced in 4 articles , 1 standard article )
Showing results 1 to 4 of 4.
- Cunsolo, Vincenzo D.; Distefano, Salvatore; Puliafito, Antonio; Scarpa, Marco L.: GS$^3$: a grid storage system with security features (2010) ioport
- Liang, Zhengqiang; Shi, Weisong: A reputation-driven scheduler for autonomic and sustainable resource sharing in grid computing (2010)
- Hwang, Kai; Kwok, Yu-Kwong; Song, Shanshan; Chen, Min Cai Yu; Chen, Ying; Zhou, Runfang; Lou, Xiaosong: GridSec: Trusted grid computing with security binding and self-defense against network worms and DDoS attacks (2005)
- Song, Shanshan; Hwang, Kai; Kwok, Yu-Kwong: Trusted grid computing with security binding and trust integration (2005) ioport
Further publications can be found at: http://gridsec.usc.edu/publications.html