关键词: 访问控制 多主体 管理模型 使用控制

Abstract:

In today＇s dynamic distributed digital environments, the traditional one-way control no longer provides adequate trustworthiness. We review three kin  ds of subjects and analyze their relationships. Based on the usage control model, we propose an administrative usage control model named AUCON to resolve the access control problem for parallel control, series control,and usage control. AUCON provides a formal model which can control the provider subjec t to issue tickets for consumer subjects and monitor the access of consumers to privacy-sensitive objects. The architecture section presents formal stru ctural ways in which appropriate mechanisms can be implemented to achieve predefined security objectives. This layered approach provides a whole effecti ve security solution to the privacy protection problerrL

Key words: access control, multi-subjects, administrative model, UCON