R~2BAC:a risk-based multi-domain secure interoperation model

LI Rui-xuan; HU Jin-wei; TANG Zhuo; LU Zheng-ding

您当前的位置：

首页 >

文章列表页 >

R~2BAC:a risk-based multi-domain secure interoperation model

更新时间：2024-10-14

- R~2BAC:a risk-based multi-domain secure interoperation model
- Issue 10, Pages: 58-69(2008)
- 作者机构：
  
  华中科技大学计算机科学与技术学院
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP393.08
- Published：2008
- 稿件说明：
移动端阅览
LI Rui-xuan, HU Jin-wei, TANG Zhuo, et al. R~2BAC:a risk-based multi-domain secure interoperation model[J]. 2008, (10): 58-69.
DOI：

LI Rui-xuan, HU Jin-wei, TANG Zhuo, et al. R~2BAC:a risk-based multi-domain secure interoperation model[J]. 2008, (10): 58-69. DOI：

摘要

在基于角色访问控制模型的基础上

提出了一种基于风险的多自治域安全互操作模型——R2BAC。R2BAC采用了灵活的互操作关系建立机制

无需第三方实体的参与。将建立互操作问题转换为优化问题

在保证安全性的前提下取得理想的互操作能力。尽管分布式环境中自治域可随时加入和离开

R2BAC保证了互操作关系的创建与撤消能适应这种动态性。R2BAC引进了风险管理机制

提供了细粒度的授权控制;具有实时监控用户行为、调整用户权限的能力。

Abstract

R2BAC

a risk enabled role—based model for multi-domain secure interoperation

was proposed to adapt to the dynamics of distributed environments.R2BAC employs a flexible mechanism to establish interoperation between domains

eliminating the need of a trusted third-party.It translates the problem of interoperation establishment into an op-timality problem

thus achieving optimal interoperability on the premise of domains’ security.The creation and abolish-ment of interoperation relationships in R2BAC are in accord with the dynamics of distributed environments

where do-mains join and leave in an ad hoc manner.Furthermore

R2BAC incorporates risk management methods

leading to at least two advantages.First

a fine-grained authorization mechanism is enabled;second

it is possible to monitor users’ behaviors and adjust their permission sets in a real time manner.

关键词

Keywords

references

Views

787

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Bayes decision theory based risk minimization authorization mapping

Reversible data hiding in encrypted domain based on fine-grained access control

Byzantine fault-tolerant distributed access control mechanism for the Internet of things

Modeling and verification of data circulation control based on timed automata

Multi-keyword attribute-based searchable encryption scheme supporting re-encryption for cloud storage

Related Author

Bin ZHAO

Jing-sha HE

ZHANG Minqing

PENG Shen

JIANG Chao

DI Fuqiang

DONG Yufeng

CHAI Rong

Related Institution

Department of Computer Science,Jining University,Qufu

School of Software Engineering,Beijing University of Technology

Key laboratory of CTC&IE (Engineering University of PAP), Ministry of Education

College of Cryptography Engineering, Engineering University of PAP

Chongqing Key Laboratory of Mobile Communication Technology

AI问答

⁰