论文部分内容阅读
在军事和商业领域中,由多个自治域形成的协作群体对共有资源(如客体、应用程序以及服务等)的访问问题越来越受到重视.协作中的基本事实是:尽管这些自治域有共同的目标,但同时有不同的自身利益.为了有效地保护共有资源,把“信任”的概念引入了协作访问控制中,并在基于量化权限的思想上,提出了细粒度的协作访问控制策略.在该策略里,权限的使用形式是元权限,也就是单位权限,它是访问共有客体权限的一个划分,可为多个域中不同用户所拥有.当访问共有资源时,参与者们所拥有的元权限的值之和以及人数必须达到规定的权限门限值和人数值,并且访问时间是所有参与者的共同许可访问时间段,这使得可以对协作资源进行有效地分布控制.另外,还引入了元权限的使用时间段约束.最后,证明了该细粒度协作访问控制策略关于协作系统的状态转换是保持安全的.
In the military and commercial domains, collaborative communities formed by multiple autonomous jurisdictions are gaining more and more attention on the issue of access to shared resources such as objects, applications, services, etc. The basic fact in collaboration is that while these autonomous domains have But also have different self-interests at the same time.In order to effectively protect the common resources, the concept of “trust” is introduced into collaborative access control and a fine-grained collaborative access control strategy is proposed based on the idea of quantitative authority In this strategy, the usage form of authority is meta authority, that is, unit authority, which is a division of authority for accessing shared objects and may be owned by different users in multiple domains.When accessing shared resources, participants The sum of the owned meta-rights and the number of people must meet the specified rights threshold and human-values, and the access time is the common permitted-access time period for all participants, making it possible to effectively distribute the control over the collaborative resources.In addition, Also introduced the use of meta-rights constraints of time constraints.Finally, it is proved that the fine-grained collaborative access control strategy is to keep the state transition of collaborative system of.