| 网格环境下的一种动态跨域访问控制策略 |
| |
| 引用本文: | 陈颖,杨寿保,郭磊涛,申凯.网格环境下的一种动态跨域访问控制策略[J].计算机研究与发展,2006,43(11):1863-1869. |
| |
| 作者姓名: | 陈颖 杨寿保 郭磊涛 申凯 |
| |
| 作者单位: | 中国科学技术大学计算机科学技术系网络信息中心实验室,合肥,230026 |
| |
| 基金项目: | 国家自然科学基金;国家高技术研究发展计划(863计划);CNGI 基金 |
| |
| 摘 要: | 针对网格环境下传统的基于角色的访问控制方式中资源共享的可扩放性和欺骗问题,提出了一种动态的访问控制方式.这种新型的访问控制方式可以根据用户的行为动态调整他的角色,在用户的权限与他的行为之间建立了联系.将该访问控制方式与信任模型结合,引入转换因子和动态角色的概念,应用到虚拟组织中,形成了基于动态角色的跨域访问控制系统.仿真结果显示,该系统能有效地实现访问控制,遏制欺骗,并具有良好的可扩放性.
|
| 关 键 词: | 网格 动态角色 跨域 访问控制 |
| 收稿时间: | 07 4 2006 12:00AM |
| 修稿时间: | 2006-07-042006-09-06 |
A Dynamic Access Control Scheme Across Multi-Domains in Grid Environment |
| |
| Chen Ying,Yang Shoubao,Guo Leitao,Shen Kai.A Dynamic Access Control Scheme Across Multi-Domains in Grid Environment[J].Journal of Computer Research and Development,2006,43(11):1863-1869. |
| |
| Authors: | Chen Ying Yang Shoubao Guo Leitao Shen Kai |
| |
| Affiliation: | Laboratory of Network Information Center, Department of Computer Science and Technology, University of Science and Technology of China , Hefei 230026 |
| |
| Abstract: | A new dynamic access control scheme,in which an entity's behavior and privilege can be dynamically and flexibly linked,is proposed to improve scalability and to restrain cheating of resource sharing in traditional role-based access control scheme in grid environment.This new scheme can adjust a user's role by his behavior,setting up relationship between a user's privilege and his behavior.Combining this access control scheme with a trust model,the concepts of converting parameter and dynamic-role are introduced and applied to virtual organization(VO),in which converting parameter is designed to realize the reputation conversion among multi-domains.Simulations show that the system can easily realize access control,restrict malicious behavior of entities,and improve the scalability. |
| |
| Keywords: | grid dynamic role across domain access control |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
