| 基于属性访问控制中的敏感属性保护研究 |
| |
| 引用本文: | 沈海波.基于属性访问控制中的敏感属性保护研究[J].培训与研究,2006,23(8):29-32. |
| |
| 作者姓名: | 沈海波 |
| |
| 作者单位: | 湖北教育学院计算机科学与工程系 武汉430074 |
| |
| 基金项目: | 湖北省教育厅重点项目资助(D2005001,D2005005) |
| |
| 摘 要: | 在象Internet这样的开放系统中,基于属性的访问控制(ABAC)机制比基于身份的访问控制机制更显优越性,但容易造成敏感属性的暴露问题。自动信任协商(ATN)技术正好能解决这一问题。本文分析和研究了ABAC ATN系统中如何使用属性确认策略和信任目标图协议建立资源请求者和资源提供商之间的信任关系,保护请求者的敏感属性和隐私,并讨论了相关的安全问题。
|
| 关 键 词: | 基于属性的访问控制 自动信任协商 凭证 策略 |
| 文章编号: | 1007-1687(2006)08-0029-04 |
| 收稿时间: | 04 18 2006 12:00AM |
| 修稿时间: | 2006年4月18日 |
Study on Protection of the Sensitive Attributes in Attribute-based Access Control |
| |
| SHEN Hai-bo.Study on Protection of the Sensitive Attributes in Attribute-based Access Control[J].Training and Research-Journal of Hubei College of Education,2006,23(8):29-32. |
| |
| Authors: | SHEN Hai-bo |
| |
| Institution: | Department of Computer Science and Engineering, Hubei Institute of Education, Wuhan 430205, China |
| |
| Abstract: | Attribute-based Access Control(ABAC) mechanism is superior to identity-based access control mechanism in open systems like the Internet.However,the leakage of the sensitive attributes is easily induced in ABAC.Automated Trust Negotiation(ATN) can preferably address the protection of the sensitive attributes.In this paper,many issues in ABAC ATN system,such as how to use attribute acknowledgment policies and trust target graph protocol to establish mutual trust between the requester and the provider of the resources,and how to safeguard the sensitive attributes and the privacy of the requester,are analyzed and researched,and the interrelated security problems are also discussed. |
| |
| Keywords: | attribute-based access control automated trust negotiation credential policy |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
