Abstract [eng] |
Both in the persons and in the country's life security - the underlying value, which in these days is an integral and very important in information technology world. It is therefore natural that information security is becoming increasingly urgent problem. To ensure the safety of organizations processes the various security tools are being developed. They should ensure the identity of users or services (authentication), to protect communication integrity, privacy, to define who is allowed to carry out all activities and information resources to use (authorization) and the other. GRID system provides ability to use the WAS (Web Services) and non-WS based authentication and authorization to ensure the GSI (GRID Security infrastructure). Both methods are based on the same basis - X.509 end entity certificates and proxy certificates standard, which is used to identify end entities such as users and services, in addition, allows to assign privileges to other temporary end entities. The aim of the work – investigate a system of certificates, components of these system, which is introduced into GRID systems and to offer the methods or models how to eliminate security weaknesses in existing systems. The tasks: 1. To analyze the GRID security infrastructure elements and to formulate the existing safety problems. 2. To analyze formulated problem-solving techniques. 3. On the basis of problem-solving techniques to design certificate center model and proxy certificates management mechanism. 4. To realize a certificate center model and proxy certificates management mechanism. 5. To perform implemented systems experiments and testing. After the analysis a certificate center model and proxy certificates management mechanism was realized. Realized certificate center is protected from possible compromise and new proxy certificates management mechanism allows to control the issue of these certificates and allows to protect their from illegal use. The results of experiments showed that additional security measures worsened labor productivity, but these elements increased security. |