• DocumentCode
    2125477
  • Title

    Research on Safe Privilege Management Model in Trusted-Domains

  • Author

    Wang, Jun ; Zhang, Hongqi ; Zhang, Bin

  • Author_Institution
    Inst. of Electron. Technol., Inf. Eng. Univ., Zhengzhou
  • fYear
    2008
  • fDate
    21-22 Dec. 2008
  • Firstpage
    350
  • Lastpage
    355
  • Abstract
    Secure interaction between trusted-domains is a major problem on network security. Combining with the advantages of role-based access control (RBAC) and the existing authentication technique on crossing the trusted-domain, this paper proposes a privilege management model on crossing the trusted-domains (PMCT) which is suitable for large scale distributed network. Role recommending policy and unilateral role mapping policy are proposed to back the safe access between two trusted-domains. By using set theory and the logic of predication, we give formal description of the PMCT Model systematically, then put forward a suit of rules on privilege and safety, and analyze the security characteristic of PMCT Model. Finally, the safe application of this model is demonstrated by showing how it can be used in an access control system.
  • Keywords
    authorisation; message authentication; set theory; access control system; authentication technique; formal description; large scale distributed network; network security; predication logic; role recommending policy; role-based access control; safe access; safe privilege management model; secure interaction; set theory; trusted-domains; unilateral role mapping policy; Access control; Authentication; Information security; Information systems; Large-scale systems; Management information systems; Permission; Protection; Safety; Technology management; privilege management; role recommending; trusted-domain; unilateral role mapping;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Knowledge Acquisition and Modeling, 2008. KAM '08. International Symposium on
  • Conference_Location
    Wuhan
  • Print_ISBN
    978-0-7695-3488-6
  • Type

    conf

  • DOI
    10.1109/KAM.2008.101
  • Filename
    4732843