计算机技术与发展Issue(10):149-153,5.DOI:10.3969/j.issn.1673-629X.2015.10.033
基于角色映射的服务组合访问控制架构
Access Control Architecture of Service Composition Based on Role Mapping
摘要
Abstract
An access control architecture based on role mapping for service composition is proposed to solve the access control problem in service composition process. The architecture is composed of an access control center and some access control nodes. The core functions of the access control center are to set up and maintain the role mapping information among the security domains,and harmonize the access control for the service composition from the global perspective. The access control node is an abstraction for the access control system of each security domain,and it is the execution point for access control with independence. Furthermore,the architecture adopts an authoriza-tion mechanism called“push mode” that is widely applied in distributed environment. Consequently,not only the access control of service composition can be well implemented in the architecture,but also the independence and security of the participant domains can be pre-served. Thus the applicability and extensibility of the proposed architecture is finer relatively.关键词
服务组合/访问控制/角色映射/安全域Key words
service composition/access control/role mapping/security domain分类
信息技术与安全科学引用本文复制引用
贺正求,张叶琳,张雷刚,石川..基于角色映射的服务组合访问控制架构[J].计算机技术与发展,2015,(10):149-153,5.基金项目
江苏省自然科学基金(BK2010132) (BK2010132)
