期刊文献+

基于角色的安全互操作模型 被引量:1

Role-based secure interoperability model
下载PDF
导出
摘要 针对当前域间安全互操作中存在的不足,如不同粒度控制域之间的用户进行安全互操作时,带来的身份识别和规则冲突等一系列的问题,提出一种基于角色的安全互操作模型:RBSIM。在该模型中,引入角色,实现用户权限的分离,方便管理,角色--权限进行二次指派,方便系统对用户行为的细粒度控制。同时,该模型可解决安全域之间规则约束、粒度冲突等问题。用户通过发送请求申请访问资源,通过证书认证分配角色授予权限。角色的引入在带来管理方便的同时,充分解决了粗细粒度控制的冲突问题。 Based on the existing problems,for an instance,when domains have different security granularity,it may bring trouble to secure interoperability,such as undefined user type,policy conflicts,and so forth,a role based secure interoperability model(RBSIM) is proposed.In the model,the concept of role is introduced to realize the separation between user and privileges.At the same time,the reassignment between role and privileges is convenient to manage user’s action with fine-grain.Meanwhile,the model can deal with rule-restriction and granularity conflicts among multi secure domains.Users get the resource by sending access request and authenticate each other by credentials.Role introduction not only helps domain management,but also handles conflicts deriving from different security granularity.
出处 《计算机工程与设计》 CSCD 北大核心 2010年第3期483-485,共3页 Computer Engineering and Design
关键词 认证 角色 安全互操作 授权 访问控制 authentication role secure interoperability authorization access control
  • 相关文献

参考文献8

  • 1Winsborough W H,Seamons K E,Jones V E.Automated trust negotiation[C].Proceedings of DARPA Information Survivability Conference and Exposition.IEEE Press,2000:88-102.
  • 2廖振松,金海,李赤松,邹德清.自动信任协商及其发展趋势[J].软件学报,2006,17(9):1933-1948. 被引量:52
  • 3徐锋,吕建.Web安全中的信任管理研究与进展[J].软件学报,2002,13(11):2057-2064. 被引量:113
  • 4Kapadia A,Muhtadi J A,Campbell R H,et al.IRBAC2000: Secure interoperability using dynamic role translation [C].Monte Carlo Resort,Las Vegas,Nevada,USA:The 1 st International Conference on Intemet Computing, 2000.
  • 5Sandhu R,Bhamidipati V, Munawer Q.The ARBAC97 model for role-based administrator ofroles[J].ACM Transactions on Information and System Security, 1999,2(1): 105 - 135.
  • 6Muhtadi J A, Kapadia A, Campbell R H, et al. A-IRBAC2000 model: administrative interoperable role based access control [OL]. UIUC-DCS-R-2000-2163. http://choices.cs.uiuc.edu/-almuhtad/.
  • 7Park J,Sandhu R.The UCONabc usage control model[J].ACM Transactions on Information and System Security, 2004,7 (1): 128-174.
  • 8洪帆,崔永泉,崔国华,付才.多域安全互操作的可管理使用控制模型研究[J].计算机科学,2006,33(3):283-286. 被引量:7

二级参考文献32

  • 1徐震,李斓,冯登国.基于角色的受限委托模型[J].软件学报,2005,16(5):970-978. 被引量:52
  • 2Park J,Zhang Xinwen,Sandhu R S.Attribute Mutability in Usage Control.In:Eighteenth Annual Conference on Data and Applications Security,Sitges,Catalonia,Spain,2004.15 ~ 29.
  • 3Kapadia A,Al-Muhtadi J,Campbell R,et al.IRBAC2000:Secure Interoperability Using Dynamic Role Translation.In:The 1st International Conference on Internet Computing,June 26th -29th,2000,Monte Carlo Resort,Las Vegas,Nevada,USA,2000.
  • 4Campbell R,Liu Z,Mickunas D,et al.Seraphism:Dynamic interoperable security architecture for active networks.IEEE OPENARCH 2000,Tel-Aviv,March 2000.
  • 5Freudenthal E,et al.dRBAC:Distributed Role-based Access Control for Dynamic Coalition Environments [EB/OL].http://www.cs.nyu.edu/vijayk/papers/drbac-icdcs02.pdf,2002-06.
  • 6Al-Muhtadi J,Kapadia A,Campbell R H,et al.A-IRBAC 2000Model:Administrative Interoperable Role-Based Access Control:[Technical Report].UIUC-DCSR-2000-2163.http://choices.cs.uiuc.edu/~almuhtad/.
  • 7Sandhu R S,Coyne E J,Feinstein H L,et al.Role-Based Access Control Models.IEEE Computer,1996,29(2):38~47.
  • 8Sandhu R,Bhamidipati V,Munawer Q.The ARBAC97 Modelfor Role-Based Administration of Roles.ACM Transactions on Information and System Security,1999,2(1):105~135.
  • 9Park J,Sandhu R.Towards usage control models:beyond traditional access control.In:Proceedings of the Seventh ACM Symposium on Access Control Models and Technologies,ACM Press.57~64.
  • 10Sandhu R,Park J.Usage control:A vision for next generation access control.In:Proceedings of The 2nd International Workshop on Mathematical Methods,Models and Architectures for Computer Networks Security.17~31.

共引文献165

同被引文献4

引证文献1

二级引证文献1

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部