面向多域环境安全互操作的请求驱动角色映射

2007 IFIP International Conference on Network and Parallel Computing Workshops (NPC 2007) Pub Date : 2007-09-18 DOI:10.1109/NPC.2007.33

Zhuo Tang, Ruixuan Li, Zhengding Lu

{"title":"面向多域环境安全互操作的请求驱动角色映射","authors":"Zhuo Tang, Ruixuan Li, Zhengding Lu","doi":"10.1109/NPC.2007.33","DOIUrl":null,"url":null,"abstract":"This paper proposes a request-driven role mapping framework for secure interoperation in multi-domain environment. To support flexible policy expression and inter-domain policy mapping, we propose a more convenient and effective method to complete the privilege query in a general hybrid role hierarchy for all special external requests. To describe the practical relationship between roles, we partition the role- mappings into three types. These mappings describe the forms of the hierarchy between the mapping roles respectively. With our analysis, for the conflicts which arise from the role-mapping among multi-domains, the effective way is to choose a suitable type of role mapping.","PeriodicalId":278518,"journal":{"name":"2007 IFIP International Conference on Network and Parallel Computing Workshops (NPC 2007)","volume":"23 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-09-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":"{\"title\":\"A Request-Driven Role Mapping for Secure Interoperation in Multi-Domain Environment\",\"authors\":\"Zhuo Tang, Ruixuan Li, Zhengding Lu\",\"doi\":\"10.1109/NPC.2007.33\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper proposes a request-driven role mapping framework for secure interoperation in multi-domain environment. To support flexible policy expression and inter-domain policy mapping, we propose a more convenient and effective method to complete the privilege query in a general hybrid role hierarchy for all special external requests. To describe the practical relationship between roles, we partition the role- mappings into three types. These mappings describe the forms of the hierarchy between the mapping roles respectively. With our analysis, for the conflicts which arise from the role-mapping among multi-domains, the effective way is to choose a suitable type of role mapping.\",\"PeriodicalId\":278518,\"journal\":{\"name\":\"2007 IFIP International Conference on Network and Parallel Computing Workshops (NPC 2007)\",\"volume\":\"23 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2007-09-18\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"8\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2007 IFIP International Conference on Network and Parallel Computing Workshops (NPC 2007)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/NPC.2007.33\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2007 IFIP International Conference on Network and Parallel Computing Workshops (NPC 2007)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NPC.2007.33","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 8

摘要

针对多域环境下的安全互操作，提出了一个请求驱动的角色映射框架。为了支持灵活的策略表达和域间策略映射，我们提出了一种更方便有效的方法，在通用混合角色层次结构中完成所有特殊外部请求的权限查询。为了描述角色之间的实际关系，我们将角色映射分为三种类型。这些映射分别描述了映射角色之间的层次结构形式。通过分析，针对多域间角色映射产生的冲突，选择合适的角色映射类型是解决冲突的有效途径。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Request-Driven Role Mapping for Secure Interoperation in Multi-Domain Environment

This paper proposes a request-driven role mapping framework for secure interoperation in multi-domain environment. To support flexible policy expression and inter-domain policy mapping, we propose a more convenient and effective method to complete the privilege query in a general hybrid role hierarchy for all special external requests. To describe the practical relationship between roles, we partition the role- mappings into three types. These mappings describe the forms of the hierarchy between the mapping roles respectively. With our analysis, for the conflicts which arise from the role-mapping among multi-domains, the effective way is to choose a suitable type of role mapping.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2007 IFIP International Conference on Network and Parallel Computing Workshops (NPC 2007)

自引率

0.00%

发文量