• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>Future generation computer systems >Privacy-preserving matrix product based static mutual exclusive roles constraints violation detection in interoperable role-based access control
【24h】

Privacy-preserving matrix product based static mutual exclusive roles constraints violation detection in interoperable role-based access control

机译:基于隐私保留矩阵的静态互斥角色约束违规角色基于访问控制中的违规检测

获取原文
获取原文并翻译 | 示例
       
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Secure interoperation is an important technology to protect shared data in multi-domain environments. IRBAC (Interoperable Role-based Access Control) 2000 model has been proposed to achieve security interoperation between two or more RBAC administrative domains. Static Separation of Duties (SSoD) is an important security policy in RBAC, but it has not been enforced in the IRBAC 2000 model. As a result, some previous works have studied the problem of SMER (Statically Mutually Exclusive Roles) constraints violation between two RBAC domains in the IRBAC 2000 model. However all of them do not enforce how to preserve privacy of RBAC policies, such as roles, roles hierarchies and user-role assignment while detecting SMER constraints violation, if the two interoperable domains do not want to disclose them each other and to others. In order to enforce privacy-preserving detection of SMER constraints violation, we first introduce a solution without privacy-preserving mechanism using matrix product. Then a privacy-preserving solution is proposed to securely detect SMER constraints violation without disclosing any RBAC policy based on a secure three-party protocol to matrix product computation. By efficiency analysis and experimental results comparison, the secure three-party computation protocol to matrix product based on the Paillier cryptosystem is more efficient and practical.
机译:安全互操作是一种保护多域环境中的共享数据的重要技术。已经提出了IRBAC(可互操作的基于角色的访问控制)2000模型,以实现两个或更多RBAC管理域之间的安全互操作。静态分离职责(SSOD)是RBAC中的重要安全政策,但尚未在IRBAC 2000模型中强制执行。因此,一些以前的作品研究了IRBAC 2000模型中的两个RBAC域之间的SMER(静态相互独家角色)的问题。但是,如果两个可互操作的域不想彼此披露,则所有这些都不能够保护RBAC策略的隐私,例如角色,角色层次结构,例如角色,角色层次结构和用户角色分配,如果两个可互操作的域不想彼此披露它们以及其他域。为了强制保护隐私保留检​​测,我们首先使用矩阵产品介绍没有隐私保留机制的解决方案。然后,提出了一种隐私保留解决方案以安全地检测SMER约束违规,而不基于安全的三方协议将任何RBAC策略披露到矩阵产品计算。通过效率分析和实验结果比较,基于Paillier密码系统的矩阵产品的安全三方计算协议更有效和实用。

著录项

  • 来源
    《Future generation computer systems》 |2020年第8期|457-468|共12页
  • 作者

    Meng Liu; Yun Luo; Chi Yang; Shaoning Pang; Deepak Puthal; Kaijun Ren; Xuyun Zhang;

  • 作者单位

    School of Mechanical Electrical and Information Engineering Shandong University Weihai China Department of Electrical and Computer Engineering University of Auckland New Zealand;

    Faculty of Computer Science and Technology Guizhou University China;

    Department of Electrical and Computer Engineering University of Auckland New Zealand School of Computing and Information Technology University of Wollongong Australia;

    Unitec Institute of Technology New Zealand;

    Faculty of Engineering and Information Technology University of Technology Sydney Australia;

    College of Computer National University of Defense Technology China;

    Department of Electrical and Computer Engineering University of Auckland New Zealand;

  • 收录信息 美国《科学引文索引》(SCI);美国《工程索引》(EI);
  • 原文格式 PDF
  • 正文语种 eng
  • 中图分类
  • 关键词

    Privacy-preserving; Secure multi-party computation; Matrix product; Homomorphic cryptosystem; Statically mutually exclusive roles;

    机译:保留隐私;安全多方计算;矩阵产品;同性恋密码系统;静态相互独家的角色;
  • 入库时间 2022-08-18 21:22:15

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号