| 一种基于角色代理的服务网格虚拟组织访问控制模型 |
| |
| 引用本文: | 孙为群,单保华,张程,刘晨. 一种基于角色代理的服务网格虚拟组织访问控制模型[J]. 计算机学报, 2006, 29(7): 1199-1208 |
| |
| 作者姓名: | 孙为群 单保华 张程 刘晨 |
| |
| 作者单位: | 中国科学院计算技术研究所网格与服务计算中心,北京,100080;中国科学院研究生院,北京,100039 |
| |
| 摘 要: | 给出一种基于角色代理技术的虚拟组织访问控制模型,与同类研究成果相比,在不降低自治域的安全管理效率的情况下,能够实现虚拟组织的细粒度授权和确保自治域的安全策略不被破坏.该模型的一个原型系统已经实现,并通过一个基于网格的低成本电子政务平台中的实例进行了验证.
|
| 关 键 词: | 服务网格 虚拟组织 访问控制 角色代理 策略 |
| 收稿时间: | 2006-02-17 |
| 修稿时间: | 2006-02-172006-05-17 |
A Role-Based Delegation Access Control Model for Virtual Organization in Service Grid |
| |
| SUN Wei-Qun,SHAN Bao-Hua,ZHANG Cheng,LIU Chen. A Role-Based Delegation Access Control Model for Virtual Organization in Service Grid[J]. Chinese Journal of Computers, 2006, 29(7): 1199-1208 |
| |
| Authors: | SUN Wei-Qun SHAN Bao-Hua ZHANG Cheng LIU Chen |
| |
| Affiliation: | 1 Research Center for Grid and Service Computing, Institute of Computing Technology, Chinese Academy of Sciences, Beijing 100080;2 Graduate University of Chinese Academy of Sciences, Beijing 100089 |
| |
| Abstract: | In a service grid, the efficiency of security administration and security assurance of virtual organizations and autonomous domains are challenging issues. Access control is usually implemented through mapping virtual organization users to autonomous domain's local users, which reduces the efficiency of security administration and bears the risk of violating security policy of these domains applying RBAC model. A role-based delegation access control model for virtual organizations is proposed in the paper, which has little effect on security administration efficiency, and does not violate autonomous domain's security policy. It is implemented and validated in a grid-based e-Government platform. |
| |
| Keywords: | service grid virtual organization access control role- based delegation policy |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
