A Task-based Access Control Model of Peer-to-Peer Network Based on Admission Degree

doi:10.3969/j.issn.1671-1122.2017.06.004

Abstract

Abstract: The features opening and self-organization of P2P network brings a series of security risks to it, however the traditional access control model is not suitable for P2P network the distributed management system. This paper proposes a novel task-based access control mode of Peer-to-Peer network. Firstly, the subject node evaluates the trust of object node by means of multidimensional trust cloud model, and calculates the risk value of this sharing transaction using the theory of risk evaluation. In the end, the basic principles of interpersonal interaction in social networks are provided references in this model, and the admission degree of object node is obtained by synthesizing the trust of object node and the risk value of this shar-ing transaction. According to the access degree of the target node, the task access control model is improved in this model, and the dynamic management of access rights is realized. After introducing the model, the in-fluence of non cooperative nodes is reduced in P2P system, and the success ratio of the system is improved, and the security of P2P network is enhanced.

Key words: peer-to-peer network, trust, risk, task, admission degree

CLC Number:

TP393

LIU Hao, CHEN Zhigang, ZHANG Lianming. A Task-based Access Control Model of Peer-to-Peer Network Based on Admission Degree[J]. 信息网络安全, 2017, 17(6): 22-29.

References

[1] 韩清德,谢慧,袁志民,等. 一种支持访问结构隐藏的MA-CP-ABE方案[J]. 信息网络安全,2017（1）：48-56.
[2] 鲁强,刘波,胡华平.内容共享网络中的关键问题[J].通信学报,2016,37(10):158-171.
[3] HAN Q, WEN H, REN M, et al. A topological Potential Weighted Community-based Recommendation Trust Model for P2P Networks[J]. Peer-to-Peer Networking and Appli-cations, 2015, 8(6):1048-1058.
[4] LIU W, REN P, SUN D H, et al. TrustP2PNet: P2P Social Network with Admission Control Model Based on Trust[J]. Aasri Procedia, 2013, 5(3): 281-286.
[5] GOFMAN M,YANG P. Effecient Policy Analysis for Evolving Administrative Role Based Access Control[J].International Journal of Software Informatics, 2014, 8(1):95-131.
[6] 史国振,王豪杰,慈云飞,等.动态自适应访问控制模型[J].通信学报,2016,37(11):49-56.
[7] 熊厚仁,陈性元,张斌等.基于双层角色和组织的可扩展访问控制模型[J].电子与信息学报,2015,37(7): 1612-1219.
[8] XU D, KENT M, THOMAS L, et al. Automated Mod-el-based Testing of Role-based Access Control Using Predicate Transition Nets[J].IEEE Transactions on Computers,2015,64(9):2490-2505.
[9] 范艳芳, 蔡英. 支持协作的强制访问控制模型 [J].计算机研究与发展, 2015,52(10): 2411-2421.
[10] 田俊峰,杜瑞忠,蔡红云. 可信计算与信任管理[M].北京: 科学出版社, 2014.
[11] 史文浩,江国华,秦小麟,等. 基于用户信任值的HDFS访问控制模型研究 [J].计算机科学与探索, 2016,10(1): 25-35
[12] 陈迪,周鸣争. 物联网中基于跨层行为可信的访问控制机制[J]. 小型微型计算机系统, 2016,9(9): 2002-2006.
[13] LANG B. A Computational Trust Model for Access Control in P2P [J]. Science China Information Sciences, 2010,53(5): 896-910.
[14] 惠榛, 李昊, 张敏,等. 面向医疗大数据的风险自适应的访问控制模型[J].通信学报, 2015,36(12): 190-199.
[15] LIU H, HE W, HUANG Q. Research on Access Control Mode of Peer-to-Peer Network Based on Trust Evaluation[J].Journal of Computational & Theoretical Nanoscience,2016,13(11): 8147-8151.
[16] 张润莲,武小年,周胜源.一种基于实体行为风险评估的信任模型 [J].计算机学报, 2009,32(4): 688-673.
[17] 周剑客,朱耀琴,柴旭东,等.基于云模型与证据理论的共识分析方法[J]. 系统工程理论与实践,2012,32 (12):2756-2763.
[18] 姜江,李漩,邢立宁,等.基于模糊证据推理的系统风险分析与评价[J].系统工程理论与实践, 2013,33(2): 529-538.
[19] ZHAI Z N, LUY H, ZHANG P J, etal. Association-based active access control models with balanced scalability and flexibility [J]. Computers in Industry, 2014, 65(1):116-123.
[20] 刘浩,张连明,陈志刚.P2P网络中基于模糊理论的任务访问控制模型[J]. 通信学报,2017,38(2):44-52.
[21] 李阳,刘更,王海伟,等.面向产品研发工作流的基于属性和任务访问控制模型[J].计算机集成制造系统,2015, 21(12):3127-3132.
[22] 程思嘉,张昌宏,潘帅卿. 基于CP-ABE算法的云存储数据访问控制方案设计[J]. 信息网络安全,2016（2）：1-6.