Lin Yao,Xiangwei Kong,Zichuan Xu

DOI: https://doi.org/10.1109/NCM.2008.75

2008-01-01

Abstract:Although RBAC models have received broad support as a generalized approach to access control, the administration of roles in large organizations can become quite cumbersome. In this paper, we develop a new paradigm for access control and authorization management, called task-role based access control (TRBAC) with multi-constraint. The basic idea of this model different from traditional RBAC is that roles and permissions are not connected directly but are put together by tasks. It is a dynamic authorization model with fine-grained partition on users, roles, tasks and sessions. The unit of task becomes the permission granularity. It is more convenient for enterprise privilege management such as distributed application,C/S access control and workflow management. It can reduce the administrator's burden and avoid some potential safety hazards because of adopted dynamic authorization.

Wenbao Jiang,Chen Li,Shuang Hao,Yiqi Dai

DOI: https://doi.org/10.1007/978-3-540-31979-5_25

2005-01-01

Abstract:Delegation is an important tool for authorization in large distributed environments. However, current delegation mechanisms used in emerging Grids have problems to allow for flexible and secure delegation. This paper presents a framework to realize restricted delegation using a specific attribute certificate with trust value in grid environments. The framework employs attribute certificates to convey rights separately from identity certificates used for authentication, and enables chained delegations by using attribute certificate chains. In the framework the verifier can enforce securely authorization with delegation by checking the trust values of AC chains, and judge if a delegation is a trusted delegation by evaluating the reputation value of the delegation chain. The paper discusses the way of computing trust and reputation for delegation, and describes some details of delegation, including the creation of delegation credential and the chained delegation protocol.

彭志宇,李善平,杨朝晖,林欣

DOI: https://doi.org/10.3785/j.issn.1008-973X.2010.05.011

2010-01-01

Abstract:An anonymous authorization mechanism was proposed to protect the user's privacy in the process of authorization in trust management. User requested for services using their real identification in most of the classic trust-management language system, which potentially leaded to the privacy leaking. Through dynamically searching for the delegation roles which take over the request, the anonymous authorization mechanism retained the right behavior of credential chain discovery and achieved a quantitative way of anonymity against the resource provider. Results showed that the anonymous mechanism shared the same worst-case time complexity with the traditional forward credential-chain-searching method. A method of caching all the members in the nodes was proposed to improve the performance in time spending. Simulation results showed that the performance in time spending greatly improved in the relative stable systems, in which the credentials change slowly.

Xiyuan Chen,Miaoliang Zhu

DOI: https://doi.org/10.4028/www.scientific.net/kem.439-440.178

2010-01-01

Abstract:Semantic; Trust Management; RBAC; User-role Assignment Abstract. The application of RBAC in access management of the enterprise services and resources is very widely. With phenomenal growth of information interaction and cooperation between distributed systems, the number of users can be in the hundreds of thousands or millions. This renders manual user-to-role assignment a formidable task. In this paper, we propose a semantic and trust based framework to automatically assign users to roles based on a finite set of assignment rules defined by authorized people in the enterprise. These rules take into consideration the attributes users own and any constraints set forth by the enterprise including the assignment history and the credit of the requester. We choose OWL to specify the user attributes.

Zhi-Yu Peng,Shan-Ping Li

DOI: https://doi.org/10.1109/icmlc.2008.4620616

2008-01-01

Abstract:As pervasive computing leading to an increased collection of information in the computational world as well as the real world, privacy leaking becomes a serious issue. Although privacy protection has drawn great attention in recent years, the privacy-preserving trust management has not been brought forward. Credential chain discovery problem is the key issue in trust management, and traditionally credentials are full open in the whole system. This could expose users' access control policies as well as other private information, and leads to a great risk of being cheated by malicious users. This paper advocates a privacy-preserving credential chain discovery mechanism, in which credentials are no longer available to everyone. By merely learning credentials of one's logic neighbors, this mechanism still achieves good results. The simulations show that this mechanism is practical.

XU Zhen,LI Lan,FENG Deng-Guo

DOI: https://doi.org/10.1360/jos160970

2005-01-01

Abstract:Delegation is an important security policy that should be supported by RBAC model. The basic idea of delegation is that some active entity in a system delegates authority to another active entity to carry out some functions on behalf of the former. The grantor of the delegated roles should be responsible for the usage of them, so constraints on the usage of the delegated roles are critical components of the whole delegation model. Currently, there’re some models that extend RBAC model to support role delegation. However, their supports for constraints on the usage of delegated roles are very limited. This paper presents the requirements of role-based delegation, including temporary constraints, regular role dependency constraints, partial delegation constraints and propagation constraints. The former two kinds of constraints are modeled with a formal model – CRDM, which provides the foundation for applications in need of the constrained delegation.

Jie Jiang,Dongxian Shi,Deren Chen

DOI: https://doi.org/10.1109/icss.2010.56

2010-01-01

Abstract:In e-service environments, the delegation relationship is rarely considered as one of important factors of trust models. Most of work on delegation relationship focused on the permission of delegatee, delegation depth, delegation constrain and so on. They ignored the potential hazards brought from blind delegation, so easily to form the collusion attack. This paper defines the concept of delegation trustworthiness firstly, and then proposes a method for calculating trustworthiness based on the delegation relationship. The method enables the involved delegator and delegatee to be responsible for their actual behavior in delegation process. The delegate targets can choose a reliable trust entity according to the value of trustworthiness. Finally, a P2P simulation platform is used for experiments, and the simulation results presented verify the validity of the trustworthiness calculation.

Chao Huang,Jianling Sun,Xinyu Wang,Yuanjie Si

DOI: https://doi.org/10.1109/ISBIM.2008.132

2009-01-01

Abstract:In large enterprise software systems, users often need to delegate their authority to others. Permission base delegation model (PBDM) based on RBAC96 currently is the most attractive model to fulfill the delegation requirement since it supports partly delegation and multiple steps delegation. However in PBDM there is no explicit specification of the separation of duty (SOD) constraint, which is one of the most important constraints and is essential to the security of the system. In this paper, we analyze the SOD constraint in PBDM delegation model and give the formal definition for the constraint. We prove that the constraint violation will not happen at the stage of the delegation role definition whereas it can only happen at the stage of role assignment. We then propose a protective mechanism to prevent the illegal role delegation utilizing the prerequisite conditions which are a set of Boolean expressions. We also give the algorithm to check the prerequisite conditions to help the security administrator guarantee the safe role delegation.

Wenjuan Li,Lingdi Ping,Xuezeng Pan

DOI: https://doi.org/10.1109/iceie.2010.5559829

2010-01-01

Abstract:Security and interoperability is the biggest challenge to promote cloud computing currently. Trust has proved to be one of the most important and effective alternative means to construct security in distributed systems. In order to efficiently and safely construct entities' trust relationship in cloud and cross-clouds environment, this paper proposed a novel cloud trust model and a new cloud security framework. The propose trust model is domain-based. It divides one cloud provider's resource nodes into the same trust domain. It designs different trust strategies for different roles. Trust recommendation is treated as one type of cloud services just like computation or storage. Based on the proposed trust model, it introduced a novel cloud security framework with an independent trust management module. Using the proposed security model, it introduced some trust-based security mechanisms. Results of simulation experiments show that the proposed security model can achieve high transaction success rate with high trust accuracy.

Peter C. Chapin,Sean Wang

2006-01-01

Abstract:Trust management systems are frameworks for authorization in modern distributed systems, allowing remotely accessible resources to be protected by providers. By allowing providers to specify policy, and access requesters to possess certain access rights, trust management automates the process of determining whether access should be allowed on the basis of policy, rights, and an authorization semantics. In this paper we survey modern stateof-the-art in trust management, focusing on features of policy and rights languages that provide the necessary expressiveness for modern practice. We characterize systems in light of a generic structure that takes into account components of practical implementations. We emphasize systems that have a formal foundation, since security properties of them can be rigorously guaranteed. Underlying formalisms are reviewed to provide necessary background.

Yongsheng Zhang

2010-01-01

Abstract:Delegation is a very important part of access control model and has become an important access control management mechanism under the distributed computing environment.An improved authorization delegation model based on user attribute is presented.Delegating role to users not only consider the user's position,but also the user's trustworthiness and ability and then make a user attribute levels,the different attribute levels correspond to different roles and thus correspond to different access permissions to control users' access.This model is an attribute-based role delegation model.Compared with the traditional authorization delegation model,this model has a fine-grained access control and higher security.

张润莲,武小年,董小社

DOI: https://doi.org/10.3724/sp.j.1087.2008.01365

2008-01-01

Journal of Computer Applications

Abstract:Concerning the authority in distributed environment for collaboration,a dynamic authorization scheme was presented based on delegation and RBAC model.The scheme supports partial role delegation,by expanding element sets of RBAC model,enlarging static authorization operations,and allowing the delegator to create temporary delegation roles and assign others(the delegatee) to the particular roles.The scheme was implemented by three-level frameworks,and the operating process about how to authorize dynamically in delegation model was described.The application shows that the scheme can adapt to distributed and dynamic environment,and follow the least privilege principle.

Sunan Shen,Shaohua Tang

DOI: https://doi.org/10.1109/CIS.2008.185

2008-01-01

Abstract:As grid’s dynamic, distributed and open nature, the issue of mutual trust among grid entities is challenging, not only because of the entities in different domains, but also because the fact that those domains may deploy different security mechanisms. A federal authentication and authorization scheme based upon trust management and delegation is proposed. Different security domains can join in the federation through the interface that our approach provides. The establishment of trust relationship among domains is based on trust negotiation and PKI cross-certification. We make authorization relay on dynamic role translation and on delegation. The Security Assertion Markup Language (SAML) is adopted by exploiting its AttributeStatement to create Delegation Assertion for grid.

官尚元,伍卫国,董小社,梅一多

DOI: https://doi.org/10.3321/j.issn:0253-987x.2009.06.004

2009-01-01

Abstract:Many trust management(TM) systems have been proposed,but some issues still remain to be addressed,e.g.there is no consensus on the definition of TM in the literature,and algorithms for proof of compliance are inefficient.To address these problems,a formal definition of TM is proposed in this paper,which is composed of a set of countable principals,a set of trust classes,a set of trust attributes,a set of contexts,a set of trust relationships and a set of rules.The relationship between the formal TM and the descriptive TM is discussed.Based on the formal definition of TM,an efficient TM,called NUMEN,is presented,and the algorithm for PoC is based on the lattice-theoretical fix-point theorem.The time complexity and the space complexity of the algorithm are both O(n) where n is the cardinality of the set of authorization credentials.Experimental results show that NUMEN can effectively protect sensitive resources at the cost of little performance of systems,and the PoC algorithm for NUMEN is more efficient than those for the existing TM systems such as SKPI/SDSI and KeyNote.It is observed that the numbers of authorization brokers and of delegation credentials are crucial factors in determining the runtime.

HUANG Xiaoming,JIANG Xinghao,LI Lan

DOI: https://doi.org/10.3969/j.issn.1009-8054.2007.05.042

2007-01-01

Abstract:Role-based delegation model(RDM) is a hotspot for RBAC research. In this paper￡?several typical role-based delegation models are analyzed,a series of disadvantages are pointed out,and we present an enhanced role-based delegation model(ERDM) and analyze many characteristics and revocation policy.

Ran Yang,Chuang Lin,Yixin Jiang,Xiaowen Chu

DOI: https://doi.org/10.1109/icc.2011.5963329

2011-01-01

Communications

Abstract:The rapid development of applications running on global information infrastructure poses the problem of securing information sharing among domain collaborations. Existing access control models are defective in dynamic authorization based on user's trustworthiness and do not take full advantages of the infrastructure in implementing access control system. In this work, we propose a trust and role based access control model and the corresponding framework in infrastructure-centric environment. With the extension to RBAC model, trust level requirements, which dictate that the roles in the privilege context must be activated by the trustworthy user, can be specified. The comprehensive trust model, which calculates the user's trust level in multiple trust contexts based on behavior histories, is proposed. Moreover, by taking advantages of the infrastructure services, our scheme is flexible and scalable in that system administrators are free to choose custom scoring functions while the infrastructure trust evaluation services are relieved of the heavy burdens of history record maintenance and trust level update.

Sihan Qing,Qingni Shen,Qingguang Ji,Yeping He

DOI: https://doi.org/10.1109/iaw.2006.1652115

2006-01-01

Abstract:Trusted systems typically include trusted processes which possess special privileges. Such privileges can circumvent certain security checks but should be used in a controlled manner. This paper proposes a privilege control policy called DMPC (Dynamically Modified Privilege Control). It has two components: a hybrid privilege control model and a new POSIX (Port-able Operating System Interface) capability inheritance algorithm. The privilege control model in DMPC is a combination of Role Based Access Control (RBAC), Domain and Type Enforcement (DTE) and POSIX capability mechanism while the capability inheritance algorithm serves as an engine to effectively enforce the hybrid privilege control model on a secure operating system. The DMPC's design has given a high priority to supporting least privilege to a finer level of granularity on trusted systems. Additional (sub-) goals for the DMPC policy are: realizing separation of duties among privileged users, achieving separation of trusted functions from untrusted ones and providing a flexible and dynamically mediated capability mechanism. We show that RBAC alone is insufficient to enforce the principle of least privilege in a dynamic context, and that DTE and POSIX capability mechanism can successfully be conjugated with RBAC for this purpose. We also describe an implementation of the DMPC policy on a real system and report on experimental results.

Mingwu Zhang,Bo Yang,Shenglin Zhu,Wenzheng Zhang

DOI: https://doi.org/10.6633/ijns.200903.8(2).01

2009-01-01

Abstract:Trust management systems support the provision of the required levels of assurance in a flexible and scalable manner by locally discriminating between the entities with which a principal should interact. However, there is a tension between the preservation of privacy and the controlled release of information when an entity submits credentials for establishing and verifying trust. Furthermore, trust delegation will require some levels of risk to be tolerated. In this paper, we propose a privacy-protecting trust establishing model, which is based on an ordered semiring framework. In proposed semiring framework, the credential graph is flexible enough to express trust relationships which adapts to the trust and privacy risk aggregating and concentrating in decentralized network systems. We analyze a computing model to describe the trust opinion and privacy opinion, and also provide the minimized privacy disclosure credential search algorithm based on semiring model.

Xinxin Liu,Shaohua Tang,Kai Wei

DOI: https://doi.org/10.4028/www.scientific.net/amm.58-60.2085

2011-01-01

Applied Mechanics and Materials

Abstract:This paper presents OntoRT, an ontology model for Role-base Trust-management(RT) framework, which covers a large fragment of RT including RT0, RT1, RT2 and application domain specification documents (ADSDs). RT addresses distributed authorization problems in decentralized collaborative systems. OntoRT establishes a common vocabulary for RT roles and policies across domains. We describe OntoRT formally in Description Logic(DL) SHOIN(D) and DL-safe SWRL rules. Basing on our logical formalization it is feasible to authorize and analyze RT policies automatically via the state of arts DL reasoners. Finally, we show how OntoRT can be integrated with OWL-DL ontologies which are W3C standard for representing information on the Web. By referring to OWL-DL ontologies that provide rich domain knowledge, specification and management of RT policies are simplified.

Yuan Wang,Feng Xu,Ye Tao,Chun Cao,Jian Lü

DOI: https://doi.org/10.1007/11839569_23

2006-01-01

Abstract:Trust management is an efficient approach to ensure the security and reliability in the autonomic and coordination systems. Various trust management systems are proposed from different viewpoints. However, evaluating different trust management approaches is usually more intuitive than formal. This paper presents a role-based formal framework to specify trust management systems. By quantifying two types of trust commonly occurring in the existing trust management systems, the framework proposes a set of elements to express the assertions and recommendation relationships in trust management. Furthermore, some facilities are provided to specify the semantics of trust engines. The framework makes it more convenient to understand, compare, analyze and design trust management systems.