Design of a Cross-Domain Privilege Management Prototype System
In order to implement resource sharing and security cooperation among domains in distributed environment, cross-domain authorization and access control become core issues. The existing privilege management product implement cross-domain authorization by directly issuing attribute certificate to foreign entities, which cant satisfy the security requirement of dynamic and open distributed environment. The IRBAC 2000 model accomplish interoperation flexibly by dynamic interdomain role mapping, based on this model, a new cross-domain privilege management prototype system (CD-PMPS) is proposed, and its working process is given, so that the cross-domain authorization issue can be easily resolved.
cross-domain privilege management IRBAC
Xianchen Guo Chen Chen Jiepeng Du Xinyou Li
Beijing Institute of Technology, Beijing, China State Information Center, Beijig, China National Computer System Engineering Research Institute of China, Beijing, China
国际会议
昆明
英文
1091-1095
2008-11-22(万方平台首次上网日期,不代表论文的发表时间)