Trust negotiation building method and system based on history roles

A technology of trust negotiation and construction method, applied in cross-domain resource sharing service, trust negotiation construction field based on historical roles, to achieve the effect of resisting attacks and improving negotiation efficiency

Inactive Publication Date: 2011-05-25
HUAZHONG UNIV OF SCI & TECH
View PDF1 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0017] The purpose of the present invention is to propose a trust negotiation construction method based on historical roles according to the requirements of automatic trust negotiation on the system. The characteristics of high negotiation efficiency; the present invention also provides a system for realizing the method

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Trust negotiation building method and system based on history roles
  • Trust negotiation building method and system based on history roles
  • Trust negotiation building method and system based on history roles

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0038] Below in conjunction with accompanying drawing and example the present invention is described in further detail.

[0039] Definition 1 A visiting card is a digital certificate defined by its subject that does not contain any sensitive information and is used for self-identification introduction. This certificate can be exposed to other entities under any circumstances.

[0040] Definition 2. A role refers to a collection of operations that one or a group of users can perform within an organization. An entity can be authorized to have multiple roles, and a role can be authorized to multiple entities. Each role can access multiple resources, and each resource can also be accessed by different roles.

[0041] In the present invention, after a successful trust negotiation, the negotiator assigns a certain role (each role has a certain authority) to the negotiating party according to the digital certificate exposed by the negotiating party in the negotiating process, and re...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a trust negotiation building method based on history roles, which comprises the following steps that: (1) when a request party submits requests on a certain resource to a resource party, firstly, a chinchin stage of the trust negotiation is triggered, and the identities of the two parties and whether the historical negotiation success record information exists or not are verified; (2) after the chinchin stage is completed, the two parties enter a trust development period, a safe certificate disclosing sequence is found out to visit the requested resources through mutually disclosing visit control tactics and certificates; and (3) the two parties enter the trust maintenance stage after the trust negotiation is successful, relevant information of the other negotiation party in the current negotiation is stored for accelerating the subsequent negotiation process of the two parties. The method provided by the invention has the advantages that the successfully negotiated two parties update the roles for the other parties in self history information databases and record and obtain the certificate disclosing sequences of the two parties of the role. When the two parties negotiate again, the negotiation does not need to be carried out again, the disclosing can be directly carried out according to the certificate disclosing sequences of the role, the subsequent negotiation of the two parties is shortened, and the certificate collection activities of venomous negotiation adversaries is avoided.

Description

technical field [0001] The invention belongs to the field of trust negotiation in the aspect of network security access control, and in particular relates to a trust negotiation construction method and system based on historical roles. The invention provides users in an open network environment with safe cross-domain resource sharing services. Background technique [0002] Trust negotiation is a new field of network security access control, which aims to provide resource sharing and secure interoperability for users distributed in various security domains. At present, access control systems in a single security domain (including autonomous access control systems, mandatory access control systems, role-based access control systems, etc.) are not suitable for multiple security domains in a distributed environment. Trust negotiation makes up for the shortcomings of single-domain access control systems, and can effectively control and restrict users' access to cross-domain resou...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 赵贻竹鲁宏伟马尧魏涛
Owner HUAZHONG UNIV OF SCI & TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap