一种开放网络环境下的分布式信任证明算法

王小峰,马延鹏,苏金树

doi:10.3969/j.issn.1007130X.2011.

计算机工程与科学 >

2011 , Vol. 33 >Issue 6: 1 - 5

DOI: https://doi.org/10.3969/j.issn.1007130X.2011.

论文

一种开放网络环境下的分布式信任证明算法

展开

（国防科学技术大学计算机学院，湖南长沙 410073）

王小峰(1982),男，江苏海安人，博士，助理研究员，研究方向为网络系统信任与安全、分布式计算、智能数据处理。

收稿日期: 2009-06-15

修回日期: 2009-09-14

网络出版日期: 2011-06-25

基金资助

国家自然科学基金资助项目（2009AA01Z423）

收起

A Distributed Trust Proving Algorithm for Open Networking Systems

Expand

(School of Computer Science,National University of Defense Technology,Changsha 410073,China )

Received date: 2009-06-15

Revised date: 2009-09-14

Online published: 2011-06-25

Fold

摘要

目前大多数信任证搜集技术采用传统的信任协商方法收集信任证，这给信任服务器带来很大负载且存在信任证盲目搜索问题。本文介绍了一个信任分布式证明协商算法DPN。基于RTP策略语言，DPN能够智能地对信任关系进行远程证明或本地推演，从而能够提高信任建立的效率。DPN能够给出证明协商过程中的相关信任规则纪录，支持对信任建立过程的验证。分析了算法的正确性和完整性，并通过实验证明了算法带来的性能提升。

关键词： 信任协商; 分布式证明; 启发规则

本文引用格式

王小峰,马延鹏,苏金树 . 一种开放网络环境下的分布式信任证明算法[J]. 计算机工程与科学, 2011 , 33(6) : 1 -5 . DOI: 10.3969/j.issn.1007130X.2011.

Abstract

The traditional trust negotiation methods bring a heavy burden to the trust server and have the blind credential fetching problem. This paper presents a distributed proving and negotiation (DPN) algorithm based on the RTP policy language. DPN can intelligently do a remote trust proving or a local trust negotiation, which can improve the efficiency for trust constructing. Moreover, through recording all the related rules used in the algorithm, DPN can support the verification of the trust proof. Both the correctness and completeness of the algorithm are analyzed, and the experimental results demonstrate the performance improvement of DPN.

Key words： trust negotiation;distributed proving;proof hint

参考文献

［1］Winslett M, Yu T, Seamons K E,et al. The TrustBuilder Architecture for Trust Negotiation［J］. IEEE Internet Computing, 2002,6(6):3037.
［2］Bertino E, Ferrari E, Squicciarini A C. TrustX: A PeertoPeer Framework for Trust Establishment［J］. IEEE Transactions on Knowledge and Data Engineering, 2004,16(7):827842.
［3］李建欣, 怀进鹏, 李先贤. 自动信任协商研究［J］.软件学报, 2006,17(1):124133.
［4］Li N H, Mitchell J C, Winsborough W H. Design of a RoleBased Trust Management Framework［C］∥Proc of the 2002 IEEE Symp on Security and Privacy, 2002:114130.
［5］Winsborough W H, Seamons K E, Jones V E. Automated Trust Negotiation［C］∥Proc of DARPA Information Survivability Conf and Exposition,2000:88102.
［6］Winslett M, Zhang C, Bonatti P A. PeerAccess: A Logic for Distributed Authorization［C］∥Proc of ACM Conf on Computer and Communications Security, 2005:168179.
［7］王小峰, 苏金树,张强,等. 面向分布式证明的信任协商策略语言和方法［J］.软件学报, 2009,20(10):27762786.
［8］Lee A J, Winslett M. Safety and Consistency in PolicyBased Authorization Systems［C］∥Proc of ACM Conf on Computer and Communications Security, 2006:124133.
［9］Li N H, Winsborough W H, Mitchell J C. Distributed Credential Chain Discovery in Trust Management［C］∥Proc of the 8th ACM Conf on Computer and Communications Security, 2001:156165.
［10］Minami K,Kotz D. Scalability in a Secure Distributed Proof System［C］∥Proc of International Conf on Pervasive Computing, 2006:220237.
［11］Bauer L, Garriss S, Reiter M K. Distributed Proving in AccessControl Systems［C］∥Proc of IEEE Symp on Security and Privacy, 2005:8195.

Options

文章导航

模态框（Modal）标题

摘要

本文引用格式

Abstract

参考文献