摘要
隐私保护是多域间资源共享、协同合作的关键性安全问题。在分析现有访问控制模型隐私泄漏问题的基础上,提出了一种支持隐私保护的角色访问控制模型。该模型以基于身份的密码体制为基础,避免了传统角色访问控制模型的诸多弊端,实现了多域环境下的隐私保护,并利用随机预言模型对该模型的安全性进行了详细的分析和证明。分析表明该模型满足IND-CCA2语义安全。通过实验仿真表明该模型具有较好的实用性。
Privacy preservation is a vital problem to share resource and collaboration among multi-domains. We analyzed the privacy leakage problems of current access control models, and then proposed a role-based access control model supporting privacy preservation. The model is based on identify-based encryption, avoiding a number of drawbacks in traditional role-based access model and making privacy preservation among rnulti-domains come true. Finally, we analyzed and certificated the security of the model in details by random oracle, and the model meets the IND-CCA2 mantle security. According to the simulation, the method is a practical model.
出处
《计算机科学》
CSCD
北大核心
2010年第6期46-50,121,共6页
Computer Science
基金
国家自然科学基金(90715029)
湖南省自然科学基金(09JJ5045)资助