关键词: 访问控制 角色 dRBAC 属性证书 多域

Abstract:

Distributed Role-Based Access Control （dRBAC） is a scalable, decentralized trust-management and access-control mechanism for systems that span multiple administrative domains. Attribute certification in essence is a way of extending authentication-oriented use of PKI to support tasks related to auth orization. In this paper, we address how to implement dRBAC via attribute certificates for dynamic coalition environments.

Key words: access control, role, dRBAC, attribute certificate, multiple domain