CN109039734B - 一种分布式的访问控制模型及访问方法 - Google Patents
一种分布式的访问控制模型及访问方法 Download PDFInfo
- Publication number
- CN109039734B CN109039734B CN201810844957.2A CN201810844957A CN109039734B CN 109039734 B CN109039734 B CN 109039734B CN 201810844957 A CN201810844957 A CN 201810844957A CN 109039734 B CN109039734 B CN 109039734B
- Authority
- CN
- China
- Prior art keywords
- access control
- access
- strategy
- node
- updating
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 34
- 238000011217 control strategy Methods 0.000 claims abstract description 91
- 230000008569 process Effects 0.000 description 9
- 238000013475 authorization Methods 0.000 description 8
- 239000011159 matrix material Substances 0.000 description 8
- 238000005516 engineering process Methods 0.000 description 7
- 230000008859 change Effects 0.000 description 5
- 230000000694 effects Effects 0.000 description 4
- 230000006872 improvement Effects 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 238000011161 development Methods 0.000 description 3
- 230000007547 defect Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1001—Protocols in which an application is distributed across nodes in the network for accessing one among a plurality of replicated servers
- H04L67/1004—Server selection for load balancing
- H04L67/1014—Server selection for load balancing based on the content of a request
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/145—Network analysis or design involving simulating, designing, planning or modelling of a network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0442—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/102—Entity profiles
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (4)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810844957.2A CN109039734B (zh) | 2018-07-27 | 2018-07-27 | 一种分布式的访问控制模型及访问方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810844957.2A CN109039734B (zh) | 2018-07-27 | 2018-07-27 | 一种分布式的访问控制模型及访问方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN109039734A CN109039734A (zh) | 2018-12-18 |
CN109039734B true CN109039734B (zh) | 2021-07-13 |
Family
ID=64647277
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201810844957.2A Active CN109039734B (zh) | 2018-07-27 | 2018-07-27 | 一种分布式的访问控制模型及访问方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109039734B (zh) |
Families Citing this family (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN110717192B (zh) * | 2019-09-11 | 2021-05-18 | 南京工业职业技术大学 | 基于Key-Value加速器的面向大数据安全的访问控制方法 |
CN110855637A (zh) * | 2019-10-28 | 2020-02-28 | 西北工业大学 | 一种基于属性的区块链物联网分布式访问控制方法 |
CN113949563B (zh) * | 2021-10-15 | 2023-10-10 | 傲普(上海)新能源有限公司 | 一种基于策略的数据服务器资源访问控制方法 |
CN114257397B (zh) * | 2021-11-05 | 2024-04-26 | 奇安信科技集团股份有限公司 | 基于复杂网络的策略冲突处理方法及装置 |
CN117614724B (zh) * | 2023-12-06 | 2024-08-06 | 北京东方通科技股份有限公司 | 一种基于体系细粒度处理的工业互联网访问控制方法 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102104599A (zh) * | 2010-12-29 | 2011-06-22 | 北京理工大学 | 一种基于信任机制的dRBAC模型的改进方法 |
CN104917761A (zh) * | 2015-05-29 | 2015-09-16 | 西安电子科技大学 | 一种通用的访问控制方法及装置 |
CN106973031A (zh) * | 2016-01-13 | 2017-07-21 | 电信科学技术研究院 | 一种资源访问控制方法、装置及系统 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7013332B2 (en) * | 2001-01-09 | 2006-03-14 | Microsoft Corporation | Distributed policy model for access control |
-
2018
- 2018-07-27 CN CN201810844957.2A patent/CN109039734B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102104599A (zh) * | 2010-12-29 | 2011-06-22 | 北京理工大学 | 一种基于信任机制的dRBAC模型的改进方法 |
CN104917761A (zh) * | 2015-05-29 | 2015-09-16 | 西安电子科技大学 | 一种通用的访问控制方法及装置 |
CN106973031A (zh) * | 2016-01-13 | 2017-07-21 | 电信科学技术研究院 | 一种资源访问控制方法、装置及系统 |
Also Published As
Publication number | Publication date |
---|---|
CN109039734A (zh) | 2018-12-18 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN109039734B (zh) | 一种分布式的访问控制模型及访问方法 | |
CN111709056B (zh) | 基于区块链的数据共享方法及系统 | |
US10454927B2 (en) | Systems and methods for managing relationships among digital identities | |
CN110535833B (zh) | 一种基于区块链的数据共享控制方法 | |
CN110489996B (zh) | 一种数据库数据安全管理方法及系统 | |
JP5100286B2 (ja) | 暗号モジュール選定装置およびプログラム | |
US6957261B2 (en) | Resource policy management using a centralized policy data structure | |
US6957330B1 (en) | Method and system for secure information handling | |
EP0511483B1 (en) | Method and apparatus for authenticating users of a communication system to each other | |
CN110535880B (zh) | 物联网的访问控制方法以及系统 | |
Ouaddah et al. | Harnessing the power of blockchain technology to solve IoT security & privacy issues. | |
EP1984889A2 (en) | Secure digital content management using mutating identifiers | |
CN114239046A (zh) | 数据共享方法 | |
WO2022148182A1 (zh) | 一种密钥管理方法及相关设备 | |
KR20190030317A (ko) | 블록체인을 이용한 사물인터넷 보안 시스템 및 보안 방법 | |
US7958548B2 (en) | Method for provision of access | |
CN116956247B (zh) | 一种基于bim的信息处理系统 | |
CN100574210C (zh) | 一种基于无等级角色间映射的访问控制方法 | |
US9485229B2 (en) | Object level encryption system including encryption key management system | |
CN106992978A (zh) | 网络安全管理方法及服务器 | |
US20160148021A1 (en) | Systems and Methods for Trading of Text based Data Representation | |
CN117290861A (zh) | 基于属性的智慧消防资源访问控制系统和方法 | |
Zeydan et al. | Blockchain-based self-sovereign identity solution for aerial base station integrated networks | |
CN117294465B (zh) | 一种基于跨域通信的属性加密系统及方法 | |
CN114978771B (zh) | 一种基于区块链技术的数据安全共享方法及系统 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right |
Effective date of registration: 20240126 Address after: 101200 room 205-211526, No. 40, Fuqian West Street, Pinggu town, Pinggu District, Beijing (cluster registration) Patentee after: BEIJING YONGBO TECHNOLOGY CO.,LTD. Country or region after: China Address before: 100124 No. 100 Chaoyang District Ping Tian Park, Beijing Patentee before: Beijing University of Technology Country or region before: China |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20240821 Address after: 101-371, 1st Floor, Building 24, No.1 Hongye East Road, Daxing District, Beijing 102600 Patentee after: Zero to One (Beijing) Technology Development Co.,Ltd. Country or region after: China Address before: 101200 room 205-211526, No. 40, Fuqian West Street, Pinggu town, Pinggu District, Beijing (cluster registration) Patentee before: BEIJING YONGBO TECHNOLOGY CO.,LTD. Country or region before: China |
|
TR01 | Transfer of patent right |