信任委托证书图搜索研究

Delegation graph search algorithms based DAG in distributed trust management

下载PDF

导出

摘要分析了分布式信任管理的证书结构及证书授权模型,包括线性链式授权、门限授权、条件授权和复合证书授权等,探讨了不同模型下的证书表达与证书链处理机制,提出了基于有向无环图DAG的证书图结构,并对利用DAG表达证书图作出证明。在证书链的搜索算法中,通过对多重边的有向无环图用深度优先和广度优先算法结合实现对证书链的搜索,避免证书图中产生的环形链而导致低搜索效率问题。 Certification structures and delegation models in distributed trust management,including chain delegation,threshold delegation,conditional delegation and composed delegation relation,are introduced in this paper.A proof of describing a directed graph of certificate chain as a DAG （Directed Acyclic Graph） is given,which can avoid the cyclic path.Furthermore,an algorithm of certificate chain processing is presented,which searches the DAGs,and a DAG by depth-first-algorithm,and inter-DAGs by breadth-first-algorithm.

作者张明武杨波张文政

机构地区华南农业大学信息安全研究所现代通信国家重点实验室

出处《计算机工程与应用》 CSCD 北大核心 2007年第4期125-127,133,共4页 Computer Engineering and Applications

基金国家自然科学基金(the National Natural Science Foundation of China under Grant No.60372046 60573043) 现代通信国家重点实验室基金(9140c1108010606)。

关键词授权信任管理有向无环图证书链搜索 delegation trust management Directed Acyclic Graph （DAG） certificate chain search

分类号 TP393.08 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献8

1Carbone M,Nielsen M,Sassone V.A formal model for trust in dynamic networks[C]//Proceedings from Software Engineering and Formal Methods(SEFM'03).IEEE Computer Society Press,2003.
2Aura T.Distributed access-rights management with delegation certificates[C]//Vitek J,Jensen C.Secure Internet Programming:Security Issues for Distributed and Mobile Objects,Fourth International Workshop,MOS'98 Brussels.Belgium:Springer-Verlag,1999.
3Nielsen M,Rukow K.On the formal modeling of trust in reputationbased systems[C]//Karhumaki J,Maurer H,Paun G.Theory Is Forever:Essays Dedicated to Arto Salomaa,LNCS 3113 in Computer Science.Springer Verlag,2004:192-204.
4Krubow K,Twigg A.Distributed approximation of fixed-point in trust structures,ROC S technical report,RS-05-6[R].2005.
5Clarke D,Elien J E,Ellison C M,et al.Certificate chain discovery in SPKI/SDSI[J].Journal of Computer Security,2001,9(1/2):285-322.
6Aura T.On the structure of delegation networks[C]//Proc 11th IEEE Computer Security Foundations Workshop,Rockport,MA,1998:14-26.
7Li Ninghui,Winsborouth H,Mitchell C.Distributed credential chain discovery in trust management[C]//Proc of ACM Conf on Computer and Communications Security,2003,11 (1):35-86.
8Weeks S.Understanding trust management systems[C]//Proc IEEE Symposium on Security and Privacy,Oakland,2001.

1朱重,吴国新.分布式信任管理体系结构研究与实现[J].计算机应用与软件,2011,28(4):105-108. 被引量：2
2周慧东.耦合温度控制系统中的模糊控制技术的应用[J].中国科技纵横,2010(21):32-32.
3刘长德.有选择删除“我最近打开的文档记录”[J].电脑知识与技术（经验技巧）,2010(2):27-28.
4MD5冲突暴露PKI风险[J].Windows IT Pro Magazine（国际中文版）,2009(3):21-21.
5刘培超,杨浩,周熙.无线自组网安全认证机制研究[J].电脑知识与技术（过刊）,2009,15(1X):310-312. 被引量：3
6蒋兴浩,万晨妍,陈抗生.利用SPKI委托证书实现分布式访问控制[J].电讯技术,2002,42(1):35-38. 被引量：2
7叶漪,吴国文,罗辛.一种带有时间域的证书链搜索算法[J].计算机应用与软件,2011,28(9):281-282.
8王海先.证书和证书授权[J].电子计算机,2000(4):38-44.
9余斌.翻手为云覆手为雨[J].珠江经济,2005(10):68-70.
10曲英伟,郑广海.基于分布式信任管理的多Agent系统安全结构[J].信息安全与通信保密,2006,28(5):119-121.

计算机工程与应用

2007年第4期

浏览历史

内容加载中请稍等...

信任委托证书图搜索研究

参考文献8

相关作者

相关机构

相关主题

浏览历史