一种基于信任度量的Web服务跨域访问控制模型  被引量:5

A cross-domain access control model of Web service based on trust measurement

在线阅读下载全文

作  者:杨晓晖[1] 王虹[1] 江丽军[1] 常思远[1] 

机构地区:[1]河北大学网络技术研究所,河北保定071002

出  处:《山东大学学报(理学版)》2014年第9期115-122,共8页Journal of Shandong University(Natural Science)

基  金:国家自然科学基金资助项目(61170254);国家科技支撑计划项目(2013BAK07B04);河北省自然科学基金资助项目(F2014201152)

摘  要:Web服务具有开放性、高度动态性、松散耦合性及跨平台性等特点,传统的访问控制方式已不能满足其跨域访问的安全需求。通过集成信任管理及可信平台度量扩展了XACML访问控制模型,提出基于信任度量的跨域访问控制模型。该模型在对用户统一身份认证的基础上,通过分析用户历史访问行为,引入用户信任度、平台配置完整度和域间信任度,提高了跨域访问控制的动态性和安全性。同时,给出了域内信任度管理点和跨域信任度管理点两个功能模块的具体实现描述,采用信任度缓存实时更新的方法分析了海量历史访问行为的复杂度问题,提高了系统效率。For the Web services is open,highly dynamic,loose coupling,cross-platform and traditional access control methods cannot meet the security demand of the cross-domain access anymore.By integrating the trust management and trusted platform measuring,the XACML access control model was expanded and a cross-domain access control model based on trust measurement was proposed.Based on the users’uniform identity authentication,the user’s trust degree, platform configuration integrity and inter-domain trust degree were introduced in the model through the analysis of us-ers’historical access behavior.And therefore the dynamics and security of the cross-domain access control were im-proved.At the same time,according to the complexity of the analysis of massive historical access behavior,the imple-mentation of Inside Trust Manager Point and Outside Trust Manager Point were described in detail.The trust degree cache and real-time updating method were put forward,which improves the efficiency of the system effectively.

关 键 词:WEB服务 访问控制 跨域访问 XACML 信任度 

分 类 号:TP393[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象