| SCoAC:一个面向服务计算的访问控制模型 |
| |
| 引用本文: | 曹春,马晓星,吕建. SCoAC:一个面向服务计算的访问控制模型[J]. 计算机学报, 2006, 29(7): 1209-1216 |
| |
| 作者姓名: | 曹春 马晓星 吕建 |
| |
| 作者单位: | 南京大学软件新技术国家重点实验室,南京,210093;南京大学计算机科学与技术系,南京,210093 |
| |
| 基金项目: | 国家重点基础研究发展计划(973计划) |
| |
| 摘 要: | 提出了一个面向服务计算的访问控制模型SCoAC.在该模型中服务实体间的交互被看作是双方平等地服务于应用系统,通过环境中各实体间关系的描述,表达了服务间以所在管理域间信任关系为基础、以所处应用上下文为依据的授权关系,并通过引入“绑定上下文”匹配机制为细粒度策略的实施提供了支持.面向服务的应用系统的动态变化在模型中得以表达,并直接反映到服务间的授权关系之上.
|
| 关 键 词: | 服务计算 访问控制 绑定上下文 服务交互 虚拟企业 |
| 收稿时间: | 2006-02-17 |
| 修稿时间: | 2006-04-20 |
SCoAC: A Service Computing Oriented Access Control Model |
| |
| CAO Chun,MA Xiao-Xing,LU Jian. SCoAC: A Service Computing Oriented Access Control Model[J]. Chinese Journal of Computers, 2006, 29(7): 1209-1216 |
| |
| Authors: | CAO Chun MA Xiao-Xing LU Jian |
| |
| Affiliation: | 1 State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing 210093;2 Department of Computer Science and Technology , Nanjing University , Nanjing 210093 |
| |
| Abstract: | To protect the services against illegal accessing, misusing and tampering is the essential problem in service oriented computing paradigm. As existing access control models and mechanisms can hardly meet the requirements of securing the services in the SOC environment completely, an access control model SCoAC is proposed in this paper. Interactions happening between services are viewed as the contributing processes from both sides to the application system. By specifying the relationship among the entities in the system, the model expresses the authorization for services capturing the trust relationship between their administration domains as well as the application context. This paper also introduces a BindingContext matching mechanism to support fine-grained access control. The evolution of application systems can be mapped onto the changing of the authorization status for the services effectively. |
| |
| Keywords: | service computing access control BindingContext service interaction virtual enterprise |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
