| 基于属性证书的跨域访问技术设计与实现 |
| |
| 引用本文: | 单云江.基于属性证书的跨域访问技术设计与实现[J].数字通信,2013(4):91-94. |
| |
| 作者姓名: | 单云江 |
| |
| 作者单位: | 大唐观音岩水电开发有限公司,昆明 650011 |
| |
| 摘 要: | 首先,在基于传统访问控制策略的基础上,针对当前互联网环境中存在的跨域访问安全问题,提出一种基于属性证书的访问控制策略。然后,给出属性证书的结构模型和管理方式,并对采用属性证书访问的优势进行分析。指出不同于传统的访问控制,基于属性证书的访问控制其本质是基于属性的访问控制。最后,给出属性证书在跨域访问控制中的应用。在单应用域或跨域访问时均可采用属性证书的验证方式,其能够针对不同应用域中用户的访问需求,动态实施资源管理和访问控制。
|
| 关 键 词: | 属性证书 跨域 访问控制 X.509 |
Design and implementation of cross domain access based on attribute certificate |
| |
| SHAN Yunjiang.Design and implementation of cross domain access based on attribute certificate[J].Digital Communication,2013(4):91-94. |
| |
| Authors: | SHAN Yunjiang |
| |
| Affiliation: | Datang Guanyinyan Hydropower Development Co.,Ltd.,Kunming 650011,P.R.China |
| |
| Abstract: | Considering that the security is becoming an important issue in current network environment, this paper proposes an attribute certificate based access control strategy on the basis of traditional access control strategies. Then the structure model and management of attribute certificate are presented, and the advantage of access using attribute certificate is also discussed. Different from the traditional access control, attribute certificate based access control belongs essentially to the attribute based access control. At the end of the article, the application of attribute certificate in cross domain access is demonstrated. The attribute certificate based authentication could be used in both single domain access and cross domain access, and could dynamically implement the resource management and access control according to different access requirements from different domains. |
| |
| Keywords: | attribute certificate cross domain access control X 509 |
| 本文献已被 CNKI 等数据库收录! |
| 点击此处可从《数字通信》浏览原始摘要信息 |
|
点击此处可从《数字通信》下载全文 |
|
