Ò»ÖÖÊÊÓÃÓÚWoT¼Ü¹¹µÄ×ÊÔ´¼øȨ·½·¨

·¢²¼Ê±¼ä£º2018-03-02 23:21

  ±¾ÎÄÑ¡Ì⣺WoT¡¡ÇÐÈëµã£ºÓû§¶à½ÇÉ«¡¡³ö´¦£º¡¶Ð¡ÐÍ΢ÐͼÆËã»úϵͳ¡·2017Äê04ÆÚ ¡¡ÂÛÎÄÀàÐÍ£ºÆÚ¿¯ÂÛÎÄ

¡¾ÕªÒª¡¿£ºOAuth(Open standard for Authorization)ÊÇÒ»ÖÖ»ùÓÚWebµÄÓÃÓÚ¿ª·ÅÊÚȨµÄ»¥ÁªÍø±ê׼ЭÒé,ÔÚÖÚ¶à»ùÓÚWebµÄÓ¦ÓÃƽ̨Öеõ½¹ã·ºÓ¦ÓÃ,µ«ÊǸûúÖÆÓ¦ÓÃÔÚWoT¼Ü¹¹ÏÂʱÃæÁÙÐí¶àÌôÕ½.ÆäÒ»,ÔÚOAuthЭÒéµÄÓ¦Óó¡¾°ÖÐ,Ò»°ã²»»á³öÏÖÓû§×÷Ϊ²¿·Ö×ÊÔ´µÄÓµÓÐÕß,ͬʱÓÖ×÷ΪÆäËû×ÊÔ´µÄʹÓÃÕßµÄÇé¿ö,ËùÒÔOAuthЭÒé²»ÄÜÊÊÓ¦WoT¼Ü¹¹ÏÂÓû§¶à½ÇÉ«µÄÌصã.Æä¶þ,OAuthЭÒé±¾Éí²¢Ã»ÓÐÌṩÁ÷Á¿¿ØÖƹ¦ÄÜ,¶øÔÚWoT¼Ü¹¹Ï·ºÔÚ×ÊÔ´¹©Ó¦ÕßÐèҪͨ¹ýÁ÷Á¿¿ØÖÆÀ´·ÀÖ¹Óû§½øÐжñÒâ·ÃÎÊ.±¾ÎÄÐÂÌá³öÁËÒ»ÖÖWoT¼Ü¹¹ÏÂÃæÏò¶à½ÇÉ«Óû§µÄ×ÊÔ´·ÃÎÊ¿ØÖÆ·½·¨,½â¾öÁËÏÖÓÐЭÒé²»ÄÜÂú×ãWoT¼Ü¹¹ÏÂÓû§¾ßÓжàÖÖ½ÇÉ«µÄÌØÐÔ,²¢ÇÒ¿ÉÒÔÂú×ã×ÊÔ´ÌṩÕß½øÐÐÁ÷Á¿¿ØÖƵÄÒªÇó.
[Abstract]:OAuth(Open standard for Authorization is an Internet standard protocol for open authorization based on Web, which is widely used in many Web based application platforms. However, it faces many challenges when it is applied in WoT architecture. In the application scenario of OAuth protocol, there is generally no user as the owner of part of the resource, but also as the user of other resources. Therefore, the OAuth protocol can not adapt to the characteristics of multi-role users under the WoT architecture. Secondly, OAuth protocol itself does not provide flow control functions. In the WoT framework, the ubiquitous resource providers need to prevent malicious access through flow control. In this paper, a new resource access control method for multi-role users under the WoT architecture is proposed. It solves the problem that the existing protocol can not meet the requirements of the WoT architecture that the user has many roles and can meet the requirements of the resource provider to control the flow.
¡¾×÷Õßµ¥Î»¡¿£º Öйú¿Æѧ¼¼Êõ´óѧ¼ÆËã»ú¿ÆѧÓë¼¼ÊõѧԺ;Öйú¿Æѧ¼¼Êõ´óѧËÕÖÝÑо¿ÔºÍøÂç¼ÆËãÓëÐÅÏ¢°²È«Ñо¿ÖÐÐÄ;
¡¾»ù½ð¡¿£º°²»ÕÊ¡×ÔÈ»¿Æѧ»ù½ðÏîÄ¿(1408085MKL08)×ÊÖú
¡¾·ÖÀàºÅ¡¿£ºTP393.08

¡¾ÏàËÆÎÄÏס¿

Ïà¹Ø˶ʿѧλÂÛÎÄ Ç°4Ìõ

1 ÍÀsú飬

±¾ÎıàºÅ£º1558551