中国科学院软件研究所机构知识库
Advanced  
ISCAS OpenIR  > 软件所图书馆  > 期刊论文
Title:
基于XACML的可验证云访问控制方案
Alternative Title: XACML-based Verifiable Cloud Access Control Scheme
Author: 司晓琳 ; 王鹏翩 ; 张立武
Keyword: 访问控制 ; 云访问控制 ; 可验证计算 ; 仲裁游戏模型 ; 可扩展访问控制标示语言 ; access control ; cloud access control ; verifiable computing ; Refereed Games(RG) model ; Extensible Access Control Markup Language(XACML)
Source: 计算机工程
Issued Date: 2013
Volume: 39, Issue:10, Pages:42-48,56
Indexed Type: CSCD
Department: 中国科学院软件研究所,北京 100190; 中国科学院研究生院,北京 100190 中国科学院软件研究所,北京,100190
Abstract: 针对当前传感器节点的计算能力有限以及云访问控制服务的信任问题,在传感器网络双云场景中,借鉴仲裁游戏模型的思陝,提出可验证的云访问控制模型。利用可扩展访问控制标示语言中决策值及策略组合算法的特点,设计针对单条策略及策略集的可验证云访问控制方案,使传感器节点能够以较小的计算代价和传输代价实现复杂的访问控制决策。在 Amazon EC2云平台上的实验结果证明,与传统的本地访问控制方案陒比,该方案能够以较高的效率保证云访问控制结果的可靠性。 The computing resource of the sensor node in the Internet of Things is very limited and there are security risks in the cloud. To implement a verifiable cloud access control service for the node in the sensor network, this paper proposes an Extensible Access Control Markup Language(XACML) based verifiable cloud access control scheme according to the Refereed Games(RG) model. Specifically, it firstly designs a verifiable cloud access control model based on the XACML access control model. Furthermore, it designs verifiable cloud access control decision and verification schemes for policy and policy-set based on decision and policy combination algorithm in XACML, in which a high efficient access control with complex access control policy is realizable by the node in sensor network. Compared with the traditional access control scheme, the experiment on Amazon EC2 shows that the verifiable Cloud access control was implemented with much higher efficiency in this scheme.
English Abstract: The computing resource of the sensor node in the Internet of Things is very limited and there are security risks in the cloud. To implement a verifiable cloud access control service for the node in the sensor network, this paper proposes an Extensible Access Control Markup Language(XACML) based verifiable cloud access control scheme according to the Refereed Games(RG) model. Specifically, it firstly designs a verifiable cloud access control model based on the XACML access control model. Furthermore, it designs verifiable cloud access control decision and verification schemes for policy and policy-set based on decision and policy combination algorithm in XACML, in which a high efficient access control with complex access control policy is realizable by the node in sensor network. Compared with the traditional access control scheme, the experiment on Amazon EC2 shows that the verifiable Cloud access control was implemented with much higher efficiency in this scheme.
Language: 中文
Citation statistics:
Content Type: 期刊论文
URI: http://ir.iscas.ac.cn/handle/311060/16831
Appears in Collections:软件所图书馆_期刊论文

Files in This Item:

There are no files associated with this item.


Recommended Citation:
司晓琳,王鹏翩,张立武. 基于XACML的可验证云访问控制方案[J]. 计算机工程,2013-01-01,39(10):42-48,56.
Service
Recommend this item
Sava as my favorate item
Show this item's statistics
Export Endnote File
Google Scholar
Similar articles in Google Scholar
[司晓琳]'s Articles
[王鹏翩]'s Articles
[张立武]'s Articles
CSDL cross search
Similar articles in CSDL Cross Search
[司晓琳]‘s Articles
[王鹏翩]‘s Articles
[张立武]‘s Articles
Related Copyright Policies
Null
Social Bookmarking
Add to CiteULike Add to Connotea Add to Del.icio.us Add to Digg Add to Reddit
所有评论 (0)
暂无评论
 
评注功能仅针对注册用户开放,请您登录
您对该条目有什么异议,请填写以下表单,管理员会尽快联系您。
内 容:
Email:  *
单位:
验证码:   刷新
您在IR的使用过程中有什么好的想法或者建议可以反馈给我们。
标 题:
 *
内 容:
Email:  *
验证码:   刷新

Items in IR are protected by copyright, with all rights reserved, unless otherwise indicated.

 

 

Valid XHTML 1.0!
Copyright © 2007-2019  中国科学院软件研究所 - Feedback
Powered by CSpace