Trust and Security for Next Generation Grids

GridTrust is a European project from the Sixth Framework Programme coordinated by CETIC. The overall objective of the GridTrust project is to develop the technology to manage trust and security for the Next Generation Grids (NGG). The project proposes to take a vertical approach to tackling issues of Trust, Security and Privacy (TSP) from the requirements level down to the application, middleware and foundation levels. CETIC is contributing to the development of models and tools to assist in reasoning about TSP properties across the wholearchitecture.


Engineering of complex IT systems 

Innovation theme: Cyber Security 


Project Background

The GridTrust consortium involves a large panel of industrial partners, end users, SMEs and European research groups covering requirements engineering, Grid technology and security, among other issues. Moviquity, HP and Interplay are providing important case studies to validate the GridTrust framework, including innovative applications such as inter-enterprise knowledge management and distributed authoring. Moviquity and De Agostini are committed to the implementation and exploitation of the results of the project middleware and foundation levels. The main output of GridTrust is a framework
consisting of the following.

  1. A methodology and an interactive execution environment that will help Grid service requestors and providers to express and reason about trust, security and privacy properties for different kinds of Virtual Organisation (VO) topologies, taking into account aspects such as self-organisation, self-management, self-adaptation and evolvability.
  2. A reference Grid security architecture, including an autonomic policy management for fine grained usage control of Grid resources.
  3. An Open Source reference implementation of trust and security management systems, validated by scenarios in the business domain. The resulting tools will be of a generic nature and will be validated on innovative applications from different application sectors. The tools will not be specific to the applications considered in the GridTrust project. The tools will be compliant with the Open Grid Services Architecture (OGSA).

CETIC is coordinating the project and is actively involved in the tasks related to the specification of trust and security requirements, and the derivation of trust and security policies based on formal modelling and model transformation technologies.

Main Achievements

The results of the GridTrust project will allow companies to set up and operate virtual organisations that are secure and trusted. The approach will provide tools to design security and trust requirements into the virtual organisation. Virtual organisations will allow companies to provide and to access Grid resources to achieve common goals. Virtual organisations are also valuable in the larger context of Service Oriented Architectures to set up virtual markets.