基于行为的可信交易管理平台的访问控制机制研究

发布时间：2018-05-12 15:02

本文选题：数字作品交易 + 行为　；参考：《西安电子科技大学》2014年硕士论文

【摘要】：随着移动互联网技术的发展，数字作品作为一种文化的载体越来越广泛的被人们所使用，数字作品交易的规模也越来越大。而在现有的数字作品交易过程中不存在可信第三方，，交易中没有数据对冲的过程，内容提供商无法确切地知道数字作品的实际销售情况，无法保证交易数据不被篡改。因此，亟需研究出可信的数字作品交易模式以及与之相对应的交易数据访问控制机制，从而保证数字作品交易过程的可信与可控。本文研究了访问控制技术的发展趋势，比较并分析了多种访问控制模型在角色、环境状态、时间状态方面的特性。针对现有数字作品交易流程中的缺陷，以版权保护可信交易数据管理平台为中心分析了可信数字作品交易的访问控制场景及需求。以ABAC模型为基础，提出了数字作品交易过程的管理方案，根据基于ABAC的协作信息系统访问控制安全结构体系设计了数字作品交易数据管理平台访问控制机制。对提出的访问控制机制中的网络位置信息、软件信息的获取方案进行了介绍，同时描述了数字作品交易数据管理平台访问控制安全体系结构中的安全关联内容。基于行为等级的概念，对服务器在获取用户的角色信息、环境及时态状态后对用户操作权限进行分配的内容进行介绍，并将该权限分配方案应用于数字作品交易数据管理平台。本文提出的访问控制机制可广泛应用于数字出版、电子商务等电子交易领域，并且支持移动计算的远程访问、跨域协同访问以及信息资源多安全级的访问,具有广泛的普适性。
[Abstract]:With the development of mobile Internet technology, digital works, as a carrier of culture, are more and more widely used by people, and the scale of digital works trading is becoming larger and larger. However, there is no trusted third party in the existing digital work trading process, and there is no data hedging process in the transaction. The content provider can not know the actual sales situation of the digital work, and can not guarantee that the transaction data will not be tampered with. Therefore, there is an urgent need to study the trusted digital work trading model and the corresponding transaction data access control mechanism, so as to ensure the credibility and controllability of the digital work trading process. In this paper, the development trend of access control technology is studied, and the characteristics of various access control models in roles, environment states and time states are compared and analyzed. Aiming at the defects in the current digital work trading process, the paper analyzes the access control scenarios and requirements of trusted digital works trading based on the copyright protection trusted transaction data management platform. Based on the ABAC model, the management scheme of digital work transaction process is proposed, and the access control mechanism of digital work transaction data management platform is designed according to the access control security architecture of collaborative information system based on ABAC. This paper introduces the network location information and the software information acquisition scheme in the access control mechanism, and describes the security association content in the access control security architecture of the digital work transaction data management platform. Based on the concept of behavior hierarchy, this paper introduces the content of user operation rights allocation after the server acquires the user's role information, environment and temporal state, and applies this scheme to the digital work transaction data management platform. The access control mechanism proposed in this paper can be widely used in electronic transactions such as digital publishing, electronic commerce and so on. It also supports remote access to mobile computing, cross-domain cooperative access and multi-security access to information resources.
【学位授予单位】：西安电子科技大学
【学位级别】：硕士
【学位授予年份】：2014
【分类号】：TP393.08

【参考文献】