属性委托授权逻辑系统中的主观信任控制

Subjective Trust Control in Attribute Based Delegation Authorization Logical System

  • 摘要: 扩展了现有的属性委托授权机制的二值信任为主观区间信任,提出了可信角色和信任约束概念的定义,建立了依据角色信任评估的角色委托控制策略,建立了依据实体信任评估的授权控制规则,给出了委托策略中实体信任度递减的计算方法,将这些策略和规则用逻辑的语法形式表示,并进一步对逻辑程序赋予计算推导的语义,在属性委托授权机制的逻辑语义基础上实现了委托和授权的主观信任控制。

     

    Abstract: Binary trust-based delegation authorization mechanism is regarded as a primary method for computational resource access in open dynamic environment.An important problem is how to apply implant a more grain trust control on delegation and authorization combined with subjective trust evaluation.This problem is probed and a subjective trust evaluation is introduced instead of binary trust evaluation.A trusted role based logical system on the semantic of attribution authorization model is proposed.The concepts of trusted role and trust constraint are proposed.The trust control policies for delegation based role trust evaluation and the trust control rules for authorization based on entity trust evaluation are put forward.The computational method for entity trust degree decrease in delegation policies is built up.The policies and rules are expressed in logic syntax and the semantic of delegation authorization logic program is given.Finally,the subjective trust control on delegation and authorization is implemented in logic semantic of attribute based delegation and authorization mechanism.

     

/

返回文章
返回