Method and system for authorization and access control delegation in an on demand grid environment
First Claim
1. A computer-implemented method for dynamic delegation of control in a grid computing environment comprising:
- granting authority of a grid node, by a computing device, to a moderator by a superauthority, wherein said superauthority grants a specific credentialed authorization certificate to said moderator;
admitting, by said computing device, said moderator to said grid node based on said grid node checking that said specific credentialed authorization certification of said moderator is valid and signed by said superauthority;
modifying, by said computing device, an access control list of said grid node by said moderator; and
inviting, by said grid node, other entities listed on said access control list to access said grid node,wherein said moderator controls said inviting of said other entities by modifying said access control list without contact with said superauthority,wherein said grid node enables real time collaboration between different entities in said grid computing environment that virtualizes geographically distributed heterogeneous computing resources as a unified whole.
1 Assignment
0 Petitions
Accused Products
Abstract
The method of the invention provides for dynamic on-demand delegation of control and access in a grid computing environment comprising granting authority of a grid node to a first moderator by a superauthority; admitting the first moderator to the grid node; modifying the access control list of the grid node by the first moderator; inviting other entities listed on the access control list to access the grid node; and issuing a unique authorization certificate to each of the other entities, wherein the first moderator controls the inviting of the other entities without contact with or accessing to the superauthority for certification.
-
Citations
15 Claims
-
1. A computer-implemented method for dynamic delegation of control in a grid computing environment comprising:
-
granting authority of a grid node, by a computing device, to a moderator by a superauthority, wherein said superauthority grants a specific credentialed authorization certificate to said moderator; admitting, by said computing device, said moderator to said grid node based on said grid node checking that said specific credentialed authorization certification of said moderator is valid and signed by said superauthority; modifying, by said computing device, an access control list of said grid node by said moderator; and inviting, by said grid node, other entities listed on said access control list to access said grid node, wherein said moderator controls said inviting of said other entities by modifying said access control list without contact with said superauthority, wherein said grid node enables real time collaboration between different entities in said grid computing environment that virtualizes geographically distributed heterogeneous computing resources as a unified whole. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A computer-implemented method for dynamic delegation of control in a grid computing environment comprising:
-
granting authority of a grid node, by a computing device, to a moderator by a superauthority, wherein said superauthority grants a specific credentialed authorization certificate to said moderator; admitting, by said computing device, said moderator to said grid node based on said grid node checking that said specific credentialed authorization certification of said moderator is valid and signed by said superauthority; modifying, by said computing device, an access control list of said grid node by said moderator; inviting, by said grid node, other entities listed on said access control list to access said grid node; and issuing, by said computing device, a unique authorization certificate to each of said other entities that is authenticated by said grid node, wherein said moderator controls said inviting of said other entities by modifying said access control list without contact with said superauthority, wherein said grid node enables real time collaboration between different entities in said grid computing environment that virtualizes geographically distributed heterogeneous computing resources as a unified whole. - View Dependent Claims (8, 9, 10, 11)
-
-
12. A non-transitory computer program product readable by machine, tangibly embodying a program of instructions executable by said machine to perform a method for dynamic delegation of control in a grid computing environment, said method comprising:
-
granting authority of a grid node to a moderator by a superauthority, wherein said superauthority grants a specific credentialed authorization certificate to said moderator; admitting said moderator to said grid node based on said grid node checking that said specific credentialed authorization certification of said moderator is valid and signed by said superauthority; modifying an access control list of said grid node by said moderator wherein said modifying comprises one of adding and deleting other entities on said access control list; inviting, by said grid node, said other entities listed on said access control list to access said grid node; and issuing a unique authorization certificate to each of said other entities that are authenticated by said grid node, wherein said moderator controls said inviting of said other entities by modifying said access control list without contact with said superauthority, wherein said grid node enables real time collaboration between different entities in said grid computing environment that virtualizes geographically distributed heterogeneous computing resources as a unified whole. - View Dependent Claims (13, 14, 15)
-
Specification