Membership-based Access Control for Trust Negotiation in Open Systems
Nowadays applications are mostly service oriented and cross-boundary, entities involved in the access control process are usually unfamiliar, so traditional access control mechanism, which basically uses the identity of the involved entities to control authorization internal the organization, is no longer sufficient. Then, trust negotiation is brought out to construct trust between unfamiliar entities. Many issues come out together with this new technology, and attract attention of researchers. In this paper, a membership-based access control is proposed to facilitate authorization to external access by gathering target users into group. Policy assignment with group relationship; and negotiation route are defined to enhance trust negotiation. Then, the mechanism and related issues are discussed. As it shows, the membership-based access control can satisfy the three most concerned issues in trust negotiation.
access control trust negotiation group membership
Han Ruo-Fei Wang Hou-Xiang Wang Yu-Hua Zuo Kai-Ling
Information and Electric College Naval University of Engineering Wuhan,China Department of Naval Deputies The 407 Factory Luoyang,China Radar Intelligence Center The 92403 Troop Fuzhou,China
国际会议
The Fifth International Conference on Information Assurance and Security(第五届信息保障与安全国际会议)
西安
英文
189-192
2009-08-18(万方平台首次上网日期,不代表论文的发表时间)