An approach for cross-domain access control policy generation from reputation evaluation to trust management

Y. Wang; Z. Y. Liu; C. Z. Hu; X. L. Zhao; J. F. Xue; L. X. Wei

doi:10.1049/cp.2013.2461

An approach for cross-domain access control policy generation from reputation evaluation to trust management

Y. Wang, Z. Y. Liu, C. Z. Hu, X. L. Zhao, J. F. Xue, L. X. Wei

Beijing Institute of Technology

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

摘要

In view of existing access control mechanisms having coarse granularity and being lack of dynamic adaptability in cross-domain open environment with a lot of strange entities, an access control policy generation approach from reputation evaluation up to trust management is proposed. This approach can generate finegrained authorization policies automatically and dynamically according to entities' behaviour features and context attributes, which is achieved by integrating reputation evaluation and trust management in an original data mining based way. Such integration makes the approach surpass the limitations of existing integration models, in which reputation evaluation is only subjectively taken as an extension to trust management without overcoming the pre-set policies' limited ability to adapt to dynamic environment. The reputation evaluation combines cloud model and Bayesian networks, which can represent and evaluate the uncertainty of trust more accurately and efficiently. Then the association relationships between entities' attributes and their reputation are extracted from reputation evaluation results. Finally, these relationships will be transformed into attribute based access control policies. Simulation results show that the entities' behaviour features can be automatically mapped into access control policies which can better adapt to cross-domain dynamic environment.

源语言	英语
主期刊名	2013 International Conference on Information and Network Security, ICINS 2013
出版商	Institution of Engineering and Technology
版本	643 CP
ISBN（印刷版）	9781849197298
DOI	https://doi.org/10.1049/cp.2013.2461
出版状态	已出版 - 2013
活动	2013 International Conference on Information and Network Security, ICINS 2013 - Beijing, 中国期限: 22 11月 2013 → 24 11月 2013

出版系列

姓名	IET Conference Publications
编号	643 CP
卷	2013

会议

会议	2013 International Conference on Information and Network Security, ICINS 2013
国家/地区	中国
市	Beijing
时期	22/11/13 → 24/11/13

访问文件

10.1049/cp.2013.2461

其它文件与链接

链接到 Scopus 的出版物

引用此

Wang, Y., Liu, Z. Y., Hu, C. Z., Zhao, X. L., Xue, J. F., & Wei, L. X. (2013). An approach for cross-domain access control policy generation from reputation evaluation to trust management. 在 2013 International Conference on Information and Network Security, ICINS 2013 (643 CP 编辑). (IET Conference Publications; 卷 2013, 号码 643 CP). Institution of Engineering and Technology. https://doi.org/10.1049/cp.2013.2461

@inproceedings{10871627b22a44fb9bc7ef02f83069bf,

title = "An approach for cross-domain access control policy generation from reputation evaluation to trust management",

abstract = "In view of existing access control mechanisms having coarse granularity and being lack of dynamic adaptability in cross-domain open environment with a lot of strange entities, an access control policy generation approach from reputation evaluation up to trust management is proposed. This approach can generate finegrained authorization policies automatically and dynamically according to entities' behaviour features and context attributes, which is achieved by integrating reputation evaluation and trust management in an original data mining based way. Such integration makes the approach surpass the limitations of existing integration models, in which reputation evaluation is only subjectively taken as an extension to trust management without overcoming the pre-set policies' limited ability to adapt to dynamic environment. The reputation evaluation combines cloud model and Bayesian networks, which can represent and evaluate the uncertainty of trust more accurately and efficiently. Then the association relationships between entities' attributes and their reputation are extracted from reputation evaluation results. Finally, these relationships will be transformed into attribute based access control policies. Simulation results show that the entities' behaviour features can be automatically mapped into access control policies which can better adapt to cross-domain dynamic environment.",

keywords = "Access control policy generation, Association rule, Reputation evaluation, Trust management, XACML",

author = "Y. Wang and Liu, {Z. Y.} and Hu, {C. Z.} and Zhao, {X. L.} and Xue, {J. F.} and Wei, {L. X.}",

year = "2013",

doi = "10.1049/cp.2013.2461",

language = "English",

isbn = "9781849197298",

series = "IET Conference Publications",

publisher = "Institution of Engineering and Technology",

number = "643 CP",

booktitle = "2013 International Conference on Information and Network Security, ICINS 2013",

address = "United Kingdom",

edition = "643 CP",

note = "2013 International Conference on Information and Network Security, ICINS 2013 ; Conference date: 22-11-2013 Through 24-11-2013",

}

Wang, Y , Liu, ZY , Hu, CZ , Zhao, XL , Xue, JF & Wei, LX 2013, An approach for cross-domain access control policy generation from reputation evaluation to trust management. 在 2013 International Conference on Information and Network Security, ICINS 2013. 643 CP 编辑, IET Conference Publications, 号码 643 CP, 卷 2013, Institution of Engineering and Technology, 2013 International Conference on Information and Network Security, ICINS 2013, Beijing, 中国, 22/11/13. https://doi.org/10.1049/cp.2013.2461

An approach for cross-domain access control policy generation from reputation evaluation to trust management. / Wang, Y.; Liu, Z. Y.; Hu, C. Z. 等.
2013 International Conference on Information and Network Security, ICINS 2013. 643 CP. 编辑 Institution of Engineering and Technology, 2013. (IET Conference Publications; 卷 2013, 号码 643 CP).

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

TY - GEN

T1 - An approach for cross-domain access control policy generation from reputation evaluation to trust management

AU - Wang, Y.

AU - Liu, Z. Y.

AU - Hu, C. Z.

AU - Zhao, X. L.

AU - Xue, J. F.

AU - Wei, L. X.

PY - 2013

Y1 - 2013

N2 - In view of existing access control mechanisms having coarse granularity and being lack of dynamic adaptability in cross-domain open environment with a lot of strange entities, an access control policy generation approach from reputation evaluation up to trust management is proposed. This approach can generate finegrained authorization policies automatically and dynamically according to entities' behaviour features and context attributes, which is achieved by integrating reputation evaluation and trust management in an original data mining based way. Such integration makes the approach surpass the limitations of existing integration models, in which reputation evaluation is only subjectively taken as an extension to trust management without overcoming the pre-set policies' limited ability to adapt to dynamic environment. The reputation evaluation combines cloud model and Bayesian networks, which can represent and evaluate the uncertainty of trust more accurately and efficiently. Then the association relationships between entities' attributes and their reputation are extracted from reputation evaluation results. Finally, these relationships will be transformed into attribute based access control policies. Simulation results show that the entities' behaviour features can be automatically mapped into access control policies which can better adapt to cross-domain dynamic environment.

AB - In view of existing access control mechanisms having coarse granularity and being lack of dynamic adaptability in cross-domain open environment with a lot of strange entities, an access control policy generation approach from reputation evaluation up to trust management is proposed. This approach can generate finegrained authorization policies automatically and dynamically according to entities' behaviour features and context attributes, which is achieved by integrating reputation evaluation and trust management in an original data mining based way. Such integration makes the approach surpass the limitations of existing integration models, in which reputation evaluation is only subjectively taken as an extension to trust management without overcoming the pre-set policies' limited ability to adapt to dynamic environment. The reputation evaluation combines cloud model and Bayesian networks, which can represent and evaluate the uncertainty of trust more accurately and efficiently. Then the association relationships between entities' attributes and their reputation are extracted from reputation evaluation results. Finally, these relationships will be transformed into attribute based access control policies. Simulation results show that the entities' behaviour features can be automatically mapped into access control policies which can better adapt to cross-domain dynamic environment.

KW - Access control policy generation

KW - Association rule

KW - Reputation evaluation

KW - Trust management

KW - XACML

UR - http://www.scopus.com/inward/record.url?scp=84902205525&partnerID=8YFLogxK

U2 - 10.1049/cp.2013.2461

DO - 10.1049/cp.2013.2461

M3 - Conference contribution

AN - SCOPUS:84902205525

SN - 9781849197298

T3 - IET Conference Publications

BT - 2013 International Conference on Information and Network Security, ICINS 2013

PB - Institution of Engineering and Technology

T2 - 2013 International Conference on Information and Network Security, ICINS 2013

Y2 - 22 November 2013 through 24 November 2013

ER -

An approach for cross-domain access control policy generation from reputation evaluation to trust management

摘要

出版系列

会议

访问文件

其它文件与链接

指纹

引用此