| 基于使用控制和上下文的动态网格访问控制模型研究 |
| |
| 引用本文: | 崔永泉,洪帆,龙涛,刘铭.基于使用控制和上下文的动态网格访问控制模型研究[J].计算机科学,2008,35(2):37-41. |
| |
| 作者姓名: | 崔永泉 洪帆 龙涛 刘铭 |
| |
| 作者单位: | 华中科技大学计算机学院,武汉,430074 |
| |
| 基金项目: | 国家自然科学基金
,
湖北省自然科学基金 |
| |
| 摘 要: | 网格环境动态、多域和异构性的特点决定其需要灵活、易于扩展和精细的授权机制.近来在网格环境下的访问控制方面做了大量研究,现有的模型大多在相对静止的前提下,基于主体的标识、组和角色信息进行授权,缺乏具体的上下文信息和灵活的安全策略.本文提出了网络环境下基于使用控制和上下文的动态访问控制模型.在该模型中,授权组件使用主体和客体属性定义传统的静态授权;条件组件使用有关的动态上下文信息体现了对主体在具体环境中的动态权限控制.在该模型的基础上,本文实现了一个原型系统,以验证模型的效率和易于实现性.
|
| 关 键 词: | 网格安全 访问控制 使用控制 上下文 |
Dynamic Context_aware Usage Control-based Grid Access Control Model |
| |
| CUI Yong-Quan,HONG Fan,LONG Tao,LIU Ming.Dynamic Context_aware Usage Control-based Grid Access Control Model[J].Computer Science,2008,35(2):37-41. |
| |
| Authors: | CUI Yong-Quan HONG Fan LONG Tao LIU Ming |
| |
| Abstract: | Due to inherent heterogeneity,multi domains characteristic and highly dynamic nature,grid environment requires scalable,flexible,and fine-gained access control mechanism.Despite the recent advances in access control for grid application do address important aspects of the overall authorization,these efforts focus on the pre-defined access control policies where authorization depends on identity or role of the subject.However,they are lacks of flexible approaches to adapt the dynamically security request.This paper proposes a dynamic context_aware usage control based grid access control model.In this model,authorization component evaluates access requests based on subject attributes,object attributes and requests.While condition component dynamic grants and adapts permission to the subject based on a set of contextual information collected from the user and system environments.As a proof-of-concept we design and implement a prototype system based on our proposed architecture and conduct experimental studies to demonstrate the feasibility and performance of our model. |
| |
| Keywords: | Grid security Access control UCON Context_aware |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
点击此处可从《计算机科学》下载全文 |
|
