摘要
针对网格环境下的访问控制技术需要解决与陌生实体建立动态信任关系等问题,提出了一种基于信任度的动态访问控制(TBDAC)模型.TBDAC模型综合了信任管理和RBAC模型的优势,首先通过自动信任协商为用户分配普通角色,从而有机结合了认证和访问控制.TBDAC模型将普通角色派生系列临时角色,为临时角色分配带有信任阈值的权限集,通过实时计算出的用户信任值激活临时角色,实现了细粒度和动态授权.TBDAC模型已投入测试,运行正常.
Considering the access control technology in grid environment, which calls for the establishment of a dynamic trust relationship with strangers, the trustworthiness-based dynamic access control (TBDAC) model was presented. TBDAC model integrated the merits of both role based access control(RBAC) and trust management. Firstly, regular roles for users were assigned by automated trust negotiation, seamlessly integrating authentication and access control. Then, it derived temporary roles from regular roles and assigned privilege set with trustworthiness thresholds for temporary roles, activating temporary roles to promptly calculate the values of trustworthiness of users to achieve fine-grained and dynamic authorization. Tests have shown that TBDAC model is excellently implemented.
出处
《湖南大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2008年第7期85-89,共5页
Journal of Hunan University:Natural Sciences
基金
湖南省自然基金资助项目(05JJ40101)