在網格運算環境下,各個網點自主性進行資源配置的網格經濟模式,是必然的趨勢。網點間透過分享資源自然形成虛擬組織,各個虛擬組織有各自不同的屬性。而網格運算在資源分享時,所衍生的經濟行為,將產生各自不同型態的市場模式,各個市場模式儼然形成虛擬組織的群落,需要有系統的進行管理。 各個虛擬組織有其專業性,網點間在進行組織內或跨組織的資源分享時勢必牽涉到資源分享公平性與安全性的問題,是故,資源分享需要設計一個安全的授權規劃與執行管理方式。 有鑑於網格經濟對於市場型態的虛擬組織管理與授權機制缺少相關文獻與研究,故本研究企圖以網格經濟模型為基礎,建立一個虛擬組織管理架構。提供的管理操作包含註冊授信、運算代理要求、代理確認與授權委派執行。 本研究所設計之架構,允許代理人透過漫遊至市場主機後,可向市場管理者提出註冊請求,完成合法授信流程。代理人間完成資源協商交易之後,可要求公正的市場管理者為代理運算請求的交易進行背書,確立交易的合法性。資源買賣雙方並可透過管理者的合法背書,要求其對交易進行仲裁。本研究針對進行代理運算所需要的授權政策提出改良的設計,除了提昇政策制定的彈性與運算本身的私密性之外,也確保授權運算的完整性與正確性。本研究對網格環境內的虛擬組織由身份認證、組織內成員管理、授權管理以至於授權委派的執行提出一個系統性的架構,並予以實作,為網格虛擬組織管理架構提出一個參考的依據。 It’s inevitable that Grid economy emerged from nodes in Grid computing environment sharing resources with each other autonomously. Nodes form virtual organization which called VO by sharing resources, and each VO has its own specific properties. When the economic behavior occurred derived from sharing, there will be different types of market pattern. Those types of market obviously form a VO or sub-groups. So, it’s important to build a systematic management mechanism for the VO management. Each VO owns private domain knowledge. When it comes to sharing resource in internal or external organization, the issue about fairness and security emerged. So, it’s a critical issue for designing secure authorization operation plans and execution management. We propose a virtual organization authorization management model to provide a management architecture for VO in the Grid environment. Management operations include building trust relationship from authentication and authorization, VO member management, delegation request, proxy execution and authorization management. Besides that, we also improve the flexibility of the authorization policy to increase more security and more privacy when enforcing the delegated mission. Based on such concept, we implement this architecture and accomplish several management scenarios practically. Besides that, we carry out experiments to prove the feasibility of the proposed model.