Two-Level Trust Federation Model for Cross-Domain Environment

Under distributed environment, Resources are located in different security domains. The cross-domain network application pattern is formed to access cross-domain resource, which is adapted to industry application and become widely-used network scheme. Therefore, it is necessary to build a loose and scalable dynamic trust federation, which requires the establishment of trust relationship between various entities. Through a study of trust mechanism, this paper divides entity into two parts including inner-domain and inter-domain and presents a two-level trust federation model in a cross-domain environment. And based on this model, this paper realizes the trust establishment and trust management for different security domains. Meanwhile, this paper describes the problem of privacy protection, information security, access control and federation evaluation in the model. The dynamic trust federation model achieves the trust interaction among different entities. It can expand the trust function of SAML components in real application while realizes the two-level trust federation model, which is called trust-based SAML framework (TBSF). At the same time, TBSF achieve cross-domain access in industrial collaborative design and application.