摘要
结合基于角色的访问控制和信任管理各自的优势,提出一个适用于开放式环境的基于信任度的可控委托授权模型,实现对角色中包含的本地和继承权限的委托控制。提出了为本地策略中的角色分配信任度阈值的方法,为角色授权增加信任度的考虑,给出在这种扩展后的信任管理系统中计算实体信任度的算法,并结合具体实例对模型的使用进行了说明。
A controllable delegation authorization model that is suitable for open environments was presented. It integrated the merits of both Role Based Access Control (RBAC) and role-based trust management and can effectively control the propagation of permissions of different inheritance hierarchy in roles. An approach for assigning trustworthiness thresholds to permissions in local access control policy was discussed. The algorithm of calculating the values of trustworthiness of entities in the extended framework was proposed. The usage of the model was illustrated through a typical example.
出处
《计算机应用》
CSCD
北大核心
2009年第9期2332-2335,共4页
journal of Computer Applications
基金
国家自然科学基金资助项目(60703007)
关键词
授权
信任度
委托深度
访问控制
角色
authorization
trustworthiness
delegation depth
access control
role