On Policy Evolution in Centralized Secure Interoperation of Multiple Domains  

On Policy Evolution in Centralized Secure Interoperation of Multiple Domains

在线阅读下载全文

作  者:FENG Dengguo WANG Xingang XU Zhen 

机构地区:[1]State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing 100080, ChinaI

出  处:《Chinese Journal of Electronics》2008年第3期389-395,共7页电子学报(英文版)

摘  要:Many works have addressed secure inter-operation in multi-domain environments in a centralized way. In these works, there is a global policy integrated or composed by a mediator for mediation of inter-domain resource access. During policy evolution, the global secure policy is recomposed or reintegrated, which is not appropriate for the dynamic environments where policy evolutes frequently. We present a scheme for policy evolution in centralized secure interoperation. In our scheme, policy evolution is gradual; that is, the global policy changes partly and therefore need not be reformed wholly. Besides, for inter-domain resource accesses to be totally mediated in the local domains, the part of global policy for the mediation of inter-domain access of each domain's resources is isolated and copied to the domain; we make the isolated policies updated gradually upon gradual policy evolution too. Our scheme makes centralized interoperation appropriate for the dynamic environments.

关 键 词:Secure interoperation MULTI-DOMAIN Policy evolution Role-based access control (RBAC) 

分 类 号:TP309[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象