Format

Send to

Choose Destination
See comment in PubMed Commons below
J Am Med Inform Assoc. 2008 May-Jun;15(3):363-73. doi: 10.1197/jamia.M2662. Epub 2008 Feb 28.

Sharing data and analytical resources securely in a biomedical research Grid environment.

Author information

1
Department of Biomedical Informatics, The Ohio State University, 3184 Graves Hall, 333 West 10th Ave., Columbus, OH 43210, USA.

Abstract

OBJECTIVES:

To develop a security infrastructure to support controlled and secure access to data and analytical resources in a biomedical research Grid environment, while facilitating resource sharing among collaborators.

DESIGN:

A Grid security infrastructure, called Grid Authentication and Authorization with Reliably Distributed Services (GAARDS), is developed as a key architecture component of the NCI-funded cancer Biomedical Informatics Grid (caBIG). The GAARDS is designed to support in a distributed environment 1) efficient provisioning and federation of user identities and credentials; 2) group-based access control support with which resource providers can enforce policies based on community accepted groups and local groups; and 3) management of a trust fabric so that policies can be enforced based on required levels of assurance.

MEASUREMENTS:

GAARDS is implemented as a suite of Grid services and administrative tools. It provides three core services: Dorian for management and federation of user identities, Grid Trust Service for maintaining and provisioning a federated trust fabric within the Grid environment, and Grid Grouper for enforcing authorization policies based on both local and Grid-level groups.

RESULTS:

The GAARDS infrastructure is available as a stand-alone system and as a component of the caGrid infrastructure. More information about GAARDS can be accessed at http://www.cagrid.org.

CONCLUSIONS:

GAARDS provides a comprehensive system to address the security challenges associated with environments in which resources may be located at different sites, requests to access the resources may cross institutional boundaries, and user credentials are created, managed, revoked dynamically in a de-centralized manner.

PMID:
18308979
PMCID:
PMC2409996
DOI:
10.1197/jamia.M2662
[Indexed for MEDLINE]
PubMed Commons home

PubMed Commons

0 comments
How to join PubMed Commons

    Supplemental Content

    Full text links

    Icon for Silverchair Information Systems Icon for PubMed Central
    Loading ...
    Support Center