期刊文献+

基于改进UCONA的服务网格授权策略规范 被引量:1

Improved UCON_A-based authorization policy specification of grid services
下载PDF
导出
摘要 针对服务网格授权的新特点,对UCONA进行研究和改进.提出一套满足服务网格授权决策需求的策略规范,并证明其完备性和正确性.将原来简单的访问状态改进并扩充为委托凭证处理过程的状态组合.决策组件能根据访问请求时的系统状态输出合理的委托凭证,也能根据系统状态的变化进行再决策以转换委托凭证的处理状态.证明了新策略规范的完备性和正确性,并通过实例展示了它的表达能力. UCONA(usage control model based on authorization predicate) was researched to improve grid authorization performance. A policy specification was proposed to meet the demands of grid authorization decision. Delegation certification processing statuses were defined to replace the simple access status. Decision component could make the reasonable delegation certification based on the system status when a request arrived, and could also make decision to change the delegation certification processing status when the system status changed. The completeness and soundness of the new policy specification were proved. The excellent expression capability of this specification was also exhibited by an example.
出处 《华中科技大学学报(自然科学版)》 EI CAS CSCD 北大核心 2008年第8期66-70,共5页 Journal of Huazhong University of Science and Technology(Natural Science Edition)
基金 国家自然科学基金资助项目(60573127) 湖南省自然科学基金资助项目(07JJ3128)
关键词 服务网格 授权决策 委托凭证 策略规范 service grid authorization decision delegation certification policy specification
  • 相关文献

参考文献8

  • 1Park J, Sandhu R. Towards usage control models: beyond traditional access control[C]//Proceedings of the 7th ACM Symposium on Access Control Models and Technologies (SACMAT02). Monterey: ACM, 2002 : 57-64.
  • 2Park J, Sandhu R. The UCONABc usage control model[J]. ACM Transaction on Information and System Security,2004,7(1) : 128-174.
  • 3Zhang Xinwen, Francesco P P, Ravi S, et al. Formal model and policy specification of usage control[J]. ACM Transactions on Information and System Security(TISSEC), 2005, 8(4,):351-387.
  • 4Pearlman L, Welch V, Foster I, et al. A community authorization service for group collaboration [C]// IEEE 3rd International Workshop on Policies for Distributed Systems and Networks. Washington D C: IEEE Computer Society, 2002: 50-59.
  • 5Chadwick D W, Otenko O. The PERMIS X. 509 role based privilege management infrastructure[C]//Proceedings of the 7th ACM Symposium on Access Control Models and Technologies ( SACMAT02 ). Monterey: ACM, 2002: 135-140.
  • 6Thompson M, Essiari A, Mudumbai S. Certificate based authorization policy in a PKI Environment[J]. ACM Transactions on Information and System Security (TISSEC), 2003, 6(4) : 566-588.
  • 7Lorch M, Adams D, Kafura D, et al. The PRIMA system for privilege management, authorization and enforcement in grid environments [C]// Proceedings of the 4th International Workshop on Grid Computing (Grid 2003). Los Alamitos: IEEE Computer Society, 2003:109-116.
  • 8Foster I, Jennings N R, Kesselman C. Brain meets brawn, why grid and agents need each other[C]// Proceedings of the 3rd International Conference on Autonomous Agents and Multi-Agent Systems (AAMAS'04). New York:[s. n], 2004:8-15.

同被引文献15

  • 1杨秋伟,洪帆,杨木祥,朱贤.基于角色访问控制管理模型的安全性分析[J].软件学报,2006,17(8):1804-1810. 被引量:38
  • 2徐小龙,王汝传.对等计算中的基于多移动Agent的协作联盟机制[J].电子与信息学报,2007,29(2):345-349. 被引量:6
  • 3林闯,封富君,李俊山.新型网络环境下的访问控制技术[J].软件学报,2007,18(4):955-966. 被引量:67
  • 4Gummadi A,Yoon J P.Modeling group trust for peer-to-peer access control[C]//In:Proc.of the 15th Int'I Workshop on Database and Expert Systems Applications.[S.l_]:IEEE Computer Society,2004:971-978.
  • 5Tran H,Hitchens M,Varadharajan V,et al.A trust based access control framework for P2P file-shating systems[C]//In:Proc.of the 38th Hawaii Int'l Conf.on System Sciences (HICSS).Hawaii:IEEE Computer Society,2005.
  • 6Lua E K,Croweroft J,Pias M,et al.A survey and comparison of peer-to-peer overlay network schemes[J].Communications Surveys & Tutorials,2005,7(2):72-93.
  • 7Napster[EB/OL].2010-04-29.http://www.napster.com.
  • 8Gnutella[EB/OL].2010-04-29.http://www.gnutella.com/news/4210.
  • 9Tapestry[EB/OL].2010-04-29.http://en.wikipedia.org/wiki/Tapestry-(DHT).
  • 10BitTorrent[EB/OL].2010-04-29.http://www.bittorrent.com/introduction.html.

引证文献1

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部