TrustedRBAC——A Distributed Authorization Infrastructure Span Multiple Autonomous Domains

作     者：WANGZhi-gang LUZheng-ding LIRui-xuan WUWei WANGXiao-gang 

作者机构：CollegeofComputerScienceandTechnology.HuazhongUniversityofScienceandTechnology.Wuhan130071.Hubei.China 

出 版 物：《Wuhan University Journal of Natural Sciences》 (武汉大学学报（自然科学英文版）)

年 卷 期：2004年第9卷第5期

页      面：694-698页

核心收录：

学科分类：08[工学] 080402[工学-测试计量技术及仪器] 0804[工学-仪器科学与技术] 

基　　金：theNationalKeyTechnologiesR&DProgramofChina(2002BA103A04) 

主　　题：X.509 attribute certificate RBAC authorization virtual enterprise 

摘      要：TrustedRBAC is a scalable, decentralized trust-management and access control mechanism for systems that span multiple autonomous domains. We utilize X.509 attri- bute certificates to define trust domains, roles to define controlled activities, and role delegation across domains to represent permissions to these activities. This paper describes the TrustedRBAC model and its scalable design and implementation.