计算机应用研究2016,Vol.33Issue(6):1791-1796,6.DOI:10.3969/j.issn.1001-3695.2016.06.042
基于信任度的跨域安全访问控制模型研究
Research on trust based access control in cross-domain
摘要
Abstract
Aiming at the existing problems such as sensitive attributes’leakage in the model of attribute based access control (ABAC)for multi-domain,this paper put forword an access control model which was trust based access control in cross-domain (CD-TBAC).The model combined attribute management system with domain decision system,divising the sensitivity degree of subjects’attributes and also introducing dynamic trust metric system based on time decay.By determining the relationship be-tween trust and sensitivity to decide whether to submit sensitive attributes,it also connected real-time trust-value with other at-tributes to determine the role of the subject.Utimately,the model adopted access control policy to determine the permission, realizing the security access of in-domain and out-domain.The experiment and performance analysis show that this model is completely closed to the ABAC on efficienty,and it has higher security such as preventing the disclosure of sensitive attributes, anonymous access,resisting attack and so on.关键词
跨域/信任度/敏感度/时间衰减/敏感属性/角色Key words
cross domain/trust/sensitivity degree/time decay/sensitive attributes/role分类
信息技术与安全科学引用本文复制引用
彭维平,刘雪贞,郭海儒,宋成..基于信任度的跨域安全访问控制模型研究[J].计算机应用研究,2016,33(6):1791-1796,6.基金项目
河南省科技厅重大科技攻关项目(132102210123);河南省教育厅重大科技攻关项目 ()
