Referenced Items are not available for this document.
Identification and authorization are the two important problems among the intractable issues of network security. In this thesis, we first discuss the advantages and disadvantages of several traditional ways in identification and authorization including Kerberos, SSL, DAC, MAC, RBAC and PKI/PMI. Because of the inherent weakness of DAC and MAC, and the complexity of PMI, we propose a new system which combines role-based access control with PKI. It implements the process of identifying and privilege delegation as a whole. The model of RBAC based on PKI can ensure the security of both identification and authorization of the protected system and maximize the flexibility for users' maintenance. The particular process of identification and authorization has been given in the thesis. At last, we analyze the security of the system and also point out some existing threats the new framework has to face to
Published in:
Innovative Computing, Information and Control, 2006. ICICIC '06. First International Conference on
(Volume:3
)
Date of Conference: Aug. 30 2006-Sept. 1 2006
- Page(s):
- 669 - 672
- Print ISBN:
- 0-7695-2616-0
- INSPEC Accession Number:
- 9132572
- Conference Location :
- Beijing
- Digital Object Identifier :
- 10.1109/ICICIC.2006.387
- Product Type:
- Conference Publications
About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies
A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.
