实现对特别协作的信任感知访问管理

2007 International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2007) Pub Date : 2007-11-12 DOI:10.1109/COLCOM.2007.4553807

Jing Jin, Gail-Joon Ahn, Mohamed Shehab, Hongxin Hu

{"title":"实现对特别协作的信任感知访问管理","authors":"Jing Jin, Gail-Joon Ahn, Mohamed Shehab, Hongxin Hu","doi":"10.1109/COLCOM.2007.4553807","DOIUrl":null,"url":null,"abstract":"In an ad-hoc collaborative sharing environment, attribute-based access control provides a promising approach in defining authorization over shared resources based on userspsila properties/attributes rather than their identities. While the userpsilas attributes are always asserted by different authorities in the form of credentials, these authorities may not be accepted by the resource owner with the same degree of trust. In this paper, we present a trust-aware role-based authorization framework, called RAMARS_TM, to address both the access control and the trust management issues in such environment. Central to our approach is the dynamic role assignment based on a userpsilas attributes, and trust management, as a special constraint, is in place to make trust decisions on a userpsilas attributes. Required components and functions are identified and specified in our trust and access management policies. An architecture of prototype system implementation is also discussed.","PeriodicalId":340691,"journal":{"name":"2007 International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2007)","volume":"24 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-11-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"Towards trust-aware access management for ad-hoc collaborations\",\"authors\":\"Jing Jin, Gail-Joon Ahn, Mohamed Shehab, Hongxin Hu\",\"doi\":\"10.1109/COLCOM.2007.4553807\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In an ad-hoc collaborative sharing environment, attribute-based access control provides a promising approach in defining authorization over shared resources based on userspsila properties/attributes rather than their identities. While the userpsilas attributes are always asserted by different authorities in the form of credentials, these authorities may not be accepted by the resource owner with the same degree of trust. In this paper, we present a trust-aware role-based authorization framework, called RAMARS_TM, to address both the access control and the trust management issues in such environment. Central to our approach is the dynamic role assignment based on a userpsilas attributes, and trust management, as a special constraint, is in place to make trust decisions on a userpsilas attributes. Required components and functions are identified and specified in our trust and access management policies. An architecture of prototype system implementation is also discussed.\",\"PeriodicalId\":340691,\"journal\":{\"name\":\"2007 International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2007)\",\"volume\":\"24 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2007-11-12\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2007 International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2007)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/COLCOM.2007.4553807\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2007 International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2007)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/COLCOM.2007.4553807","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

摘要

在临时协作共享环境中，基于属性的访问控制提供了一种很有前途的方法，可以根据用户的属性/属性(而不是身份)定义对共享资源的授权。虽然userpsilas属性总是由不同的权威机构以凭据的形式断言，但这些权威机构可能不会被具有相同信任程度的资源所有者所接受。本文提出了一个基于信任感知角色的授权框架RAMARS_TM，以解决这种环境下的访问控制和信任管理问题。我们方法的核心是基于userpsilas属性的动态角色分配，而信任管理作为一种特殊的约束，用于对userpsilas属性做出信任决策。在我们的信任和访问管理策略中确定和指定了所需的组件和功能。讨论了原型系统的实现体系结构。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Towards trust-aware access management for ad-hoc collaborations

In an ad-hoc collaborative sharing environment, attribute-based access control provides a promising approach in defining authorization over shared resources based on userspsila properties/attributes rather than their identities. While the userpsilas attributes are always asserted by different authorities in the form of credentials, these authorities may not be accepted by the resource owner with the same degree of trust. In this paper, we present a trust-aware role-based authorization framework, called RAMARS_TM, to address both the access control and the trust management issues in such environment. Central to our approach is the dynamic role assignment based on a userpsilas attributes, and trust management, as a special constraint, is in place to make trust decisions on a userpsilas attributes. Required components and functions are identified and specified in our trust and access management policies. An architecture of prototype system implementation is also discussed.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2007 International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2007)

自引率

0.00%

发文量