【摘要】 针对网格环境下传统的基于角色的访问控制方式中资源共享的可扩放性和欺骗问题,提出了一种动态的访问控制方式.这种新型的访问控制方式可以根据用户的行为动态调整他的角色,在用户的权限与他的行为之间建立了联系.将该访问控制方式与信任模型结合,引入转换因子和动态角色的概念,应用到虚拟组织中,形成了基于动态角色的跨域访问控制系统.仿真结果显示,该系统能有效地实现访问控制,遏制欺骗,并具有良好的可扩放性.更多还原

【Abstract】 A new dynamic access control scheme,in which an entity’s behavior and privilege can be dynamically and flexibly linked,is proposed to improve scalability and to restrain cheating of resource sharing in traditional role-based access control scheme in grid environment.This new scheme can adjust a user’s role by his behavior,setting up relationship between a user’s privilege and his behavior.Combining this access control scheme with a trust model,the concepts of converting parameter and dynamic-role are introduced and applied to virtual organization(VO),in which converting parameter is designed to realize the reputation conversion among multi-domains.Simulations show that the system can easily realize access control,restrict malicious behavior of entities,and improve the scalability.更多还原