论文信息 - Research on an UCON model supporting distributed management

Research on an UCON model supporting distributed management

Usage control model is presented recently and has been considered as the next generation control model which is used to access digital objects. To be directed against in management function and distributed, multi-domain dynamic environment, this paper puts forward a specific application UCON model -RBUCON which is based on the core model of UCON. With the way of role, domain, protective domain, the RBUCON model adds the function of managing UCON organization and enhances the ability of model security applications. This model retains the advantages of RBAC model, changes the form of Role definition, improves the way of Role management, increases protective mechanisms based on objects. The formalized description and definition of the RBUCON model are also given.

Yuanzhong Shu | Zetao Jiang | Shuo Hu | Shengke Gan

[1] Ravi S. Sandhu,et al. A model for attribute-based user-role assignment , 2002, 18th Annual Computer Security Applications Conference, 2002. Proceedings..

[2] Ramaswamy Chandramouli,et al. The Queen's Guard: A Secure Enforcement of Fine-grained Access Control In Distributed Data Analytics Platforms , 2001, ACM Trans. Inf. Syst. Secur..

[3] Chen Youping. Task-role-based access control model , 2006 .

[4] Jaehong Park,et al. The UCONABC usage control model , 2004, TSEC.

[5] Ravi S. Sandhu,et al. Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management , 1997, DBSec.

[6] Jaehong Park,et al. Usage Control: A Vision for Next Generation Access Control , 2003, MMM-ACNS.

[7] Seog Park,et al. Task-role-based access control model , 2003, Inf. Syst..

[8] Ravi S. Sandhu,et al. Role-Based Access Control Models , 1996, Computer.

[9] Jaehong Park,et al. Towards usage control models: beyond traditional access control , 2002, SACMAT '02.

[10] Lawrence Snyder,et al. Formal Models of Capability-Based Protection Systems , 1981, IEEE Transactions on Computers.