Speaker
S. NAQVI
(TELECOM PARIS)
Description
In the evolution of computational grids, security threats were overlooked in the
desire to implement a high performance distributed computational system. But now
the growing size and profile of the grid require comprehensive security solutions
as they are critical to the success of the endeavour. A comprehensive security
system, capable of responding to any attack on grid resources, is indispensable to
guarantee its anticipated adoption by both the users and the resource providers.
Some security teams have started working on establishing in-depth security
solutions. The evaluation of their grid security solutions requires excellent
criteria to assure sufficient security to meet the needs of its users and resource
providers. Grid community's lack of experience in the exercise of the Common
Criteria (CC), which was adopted in 1999 as an international standard for security
product evaluation, makes it imperative that efforts be exerted to investigate the
prospective influence of the CC in advancing the state of grid security. This
article highlights the contribution of the CC to establishing confidence in grid
security, which is still in need of considerable attention from its designers. The
process of security evaluation is outlined and the roles each part of the
evaluation may play in obtaining confidence are examined.
Primary authors
M. RIGUIDEL
(TELECOM PARIS)
S. NAQVI
(TELECOM PARIS)
