摘要
利用安全Cook ie和加密技术对带证据的认证模型PCA(Proof-carrying Authorization)进行了改进,提高了模型的安全性和实用性,并首次将模型应用到分布式环境下陌生实体之间的访问控制。通过对参与访问控制实体的属性和网络环境属性的认证,实现了分布式访问控制系统中陌生实体之间信任的建立,解决了系统中访问控制安全策略有局限性、交互性差的问题。该模型适用于P2P网络和网格等大型分布式网络环境。
Current access control in open systems mostly occurs between strange entities. On the basis of the study of the PCA system,an improved access control model is constructed by the encryption technique and the secure Cookie technique. The new model is applied to the access control between strange entities in distributed environment. Through the authorization of the attributes of the entities and the network environment, the trust relationship between strange entities in distributed access control system is established. The shortage in security strategy limitation and interaction is solved. The new access control model can be applied in large-scale distributed environments, such as P2P and grid environment. The implementation of the new model is also illustrated.
出处
《计算机应用与软件》
CSCD
北大核心
2008年第3期94-96,110,共4页
Computer Applications and Software
基金
计算机网络与信息安全教育部重点实验室开放课课题资助(20040103)
