Title :
Research on Safe Privilege Management Model in Trusted-Domains
Author :
Wang, Jun ; Zhang, Hongqi ; Zhang, Bin
Author_Institution :
Inst. of Electron. Technol., Inf. Eng. Univ., Zhengzhou
Abstract :
Secure interaction between trusted-domains is a major problem on network security. Combining with the advantages of role-based access control (RBAC) and the existing authentication technique on crossing the trusted-domain, this paper proposes a privilege management model on crossing the trusted-domains (PMCT) which is suitable for large scale distributed network. Role recommending policy and unilateral role mapping policy are proposed to back the safe access between two trusted-domains. By using set theory and the logic of predication, we give formal description of the PMCT Model systematically, then put forward a suit of rules on privilege and safety, and analyze the security characteristic of PMCT Model. Finally, the safe application of this model is demonstrated by showing how it can be used in an access control system.
Keywords :
authorisation; message authentication; set theory; access control system; authentication technique; formal description; large scale distributed network; network security; predication logic; role recommending policy; role-based access control; safe access; safe privilege management model; secure interaction; set theory; trusted-domains; unilateral role mapping policy; Access control; Authentication; Information security; Information systems; Large-scale systems; Management information systems; Permission; Protection; Safety; Technology management; privilege management; role recommending; trusted-domain; unilateral role mapping;
Conference_Titel :
Knowledge Acquisition and Modeling, 2008. KAM '08. International Symposium on
Conference_Location :
Wuhan
Print_ISBN :
978-0-7695-3488-6
DOI :
10.1109/KAM.2008.101
