The Research Of Access Control Model Based On EUCON

With the development of network technology and the growing Internet applications, theissue of how to ensure network resources from unauthorized use and access has becomeincreasingly important. In recent years, research on access control has become a hot field oncomputer science. Although traditional attribute-based access controls have been widely usedin digital information systems, original authorization models can't meet some systemrequirements well such as copyright protection, and their main faults are as follows: firstly,most of these models are based on the subject-object, which use passive strategies to protectresources from the point of systems; secondly, authorization models are static, subjects canhave privileges before the implementation of tasks, which can't well solve the problem ofillegal use of digital resources in the dynamic, distributed system.Against the deficiencies of existing access control models, this paper proposed a modelcalled EUCON: based attribute-RBAC with character of delegation usage control model. Andthen, in order to formally describe the EUCON core model, a EUCON logic model based onInternal Temporal Logic (ITL) was proposed.Thirdly, for the purpose of ensuring thatEUCON model supports fine-grained delegation, this paper proposed a RDBMPM model: afine-grained role delegation model based on permission mapping mechanism. Role as a partof EUCON model, which can well solve the problem of rights management based on rolehierarchy, will lay the foundation for the model's rights management. Role hierarchy can'twell reflect the roles' organization structure in the large-scale distributed applicationenvironments. Against above fault, this paper, by studing the role relationship and theirtransformation method, proposed the concept of atom role and constructed a newatom-role-based access control model, called ATRBAC, which enhances the flexibility andsecurity of EUCON model (or rights management system).EUCON model, which can provide more flexible access control, has inherited theadvantages of UCON model and expanded it in the aspects of attribute, role and delegationetc. Lastly, this paper gave an application case of EUCON model: extended usage control forDRM protection system (called EUDRMPS), which reflects the model's utility value.