摘要: |
传统的访问控制技术已经无法满足大规模、跨域范围分布式应用的安全需要。本文从分析简单公钥基础设施(SPKI)委托证书满足分布式访问控制的几个基本特征出发,描述了证书的结构和五元组压缩规则,给出了采用委托证书的访问控制实现模型,最后简单讨论了委托证书链的搜索决定算法问题。 |
关键词: 计算机网络安全 公开密钥基础设施 委托证书 访问控制 |
DOI:10.3969/j.issn.1001-893X. |
修订日期:2001-09-04 |
基金项目: |
|
Distributed Access Control Using SPKI Delegation Certificates |
|
() |
Abstract: |
Traditional access control technologies can not meet the security requirement of large scale distributed application. Based on the characteristics of SPKI delegation certificate,which also meet the requirement of distributed access control,this paper describes the format of delegation certificate and the rules of 5-tuple reduction,gives out the implementation model,and briefly discusses the algorithm of certificate chains decision. |
Key words: Computer network security,Public key infrastructure,Delegation certificate,Access control,Model, |