摘要
To enhance the practicability of the trust negotiation system, an agent based automated trust negotiation model (ABAM) is proposed. The ABAM introduces an agent to keep the negotiation process with no human intervention. Meanwhile, the ABAM specifies the format of a meta access control policy, and adopts credentials with flexible format to meet the requirements of access control policies instead of disclosing the whole contents of a certificate. Furthermore, the ABAM uses asymmetric functions with a high security intensity to encrypt the transmitting message, which can prevent information from being attacked. Finally, the ABAM presents a new negotiation protocol to guide the negotiation process. A use case is studied to illuminate that the ABAM is sound and reasonable. Compared with the existing work, the intelligence, privacy and negotiation efficiency are improved in the ABAM.
为增强信任协商系统的实用性,提出一种基于代理的自动信任协商模型(ABAM).ABAM引进代理使协商过程免于人工干涉.同时,ABAM指定了元策略格式,使用这种格式灵活的信任凭证来满足访问控制策略要求,而不需披露数字证书的全部内容.此外,ABAM使用高强度的非对称函数加密传输消息,能防止消息遭受攻击.最后,模型中提出一种新的协商协议来指导协商进行.事例分析表明,ABAM是健全和合理的.与现有工作相比,ABAM在智能性、保密性和协商效率方面得到了改进.
基金
The National Natural Science Foundation of China(No60403027)
