Research on Safe Privilege Management Model in Trusted-Domains

Author

Wang, Jun ; Zhang, Hongqi ; Zhang, Bin

Author_Institution

Inst. of Electron. Technol., Inf. Eng. Univ., Zhengzhou

fYear

2008

fDate

21-22 Dec. 2008

Firstpage

350

Lastpage

355

Abstract

Secure interaction between trusted-domains is a major problem on network security. Combining with the advantages of role-based access control (RBAC) and the existing authentication technique on crossing the trusted-domain, this paper proposes a privilege management model on crossing the trusted-domains (PMCT) which is suitable for large scale distributed network. Role recommending policy and unilateral role mapping policy are proposed to back the safe access between two trusted-domains. By using set theory and the logic of predication, we give formal description of the PMCT Model systematically, then put forward a suit of rules on privilege and safety, and analyze the security characteristic of PMCT Model. Finally, the safe application of this model is demonstrated by showing how it can be used in an access control system.

Keywords

authorisation; message authentication; set theory; access control system; authentication technique; formal description; large scale distributed network; network security; predication logic; role recommending policy; role-based access control; safe access; safe privilege management model; secure interaction; set theory; trusted-domains; unilateral role mapping policy; Access control; Authentication; Information security; Information systems; Large-scale systems; Management information systems; Permission; Protection; Safety; Technology management; privilege management; role recommending; trusted-domain; unilateral role mapping;

fLanguage

English

Publisher

ieee

Conference_Titel

Knowledge Acquisition and Modeling, 2008. KAM '08. International Symposium on

Conference_Location

Wuhan

Print_ISBN

978-0-7695-3488-6

Type

conf

DOI

10.1109/KAM.2008.101

Filename

4732843