An RBAC Model On Dynamically Adjustable Trust Degree

Access control strategy effectively protects the security of information systems. It includes accessing from allowable authorized subject entities to object entities, and the strategy of rejecting to provide services to non-authorized subject entities concurrently. The information security problem has become a major focus as the involvement and development of the computer technology. So an excellent design of access control strategy model has become a hot research topic.This thesis first introduces the basic concepts of access control by listing several classical access control strategy model. Then, it emphasizes on analyzing the RBAC access control strategy model and trust degree platform. Finally, it proposes an RBAC model on dynamically adjustable trust degree under password authentication environment. The traditional authorization allocation of RBAC model is static, so users'operation behaviors are static. In order to improve the solution towards this problem, we propose a dynamic adjustable trust degree, which is able to change users' characters and authorization power. Because a dynamic adjustable trust degree realizes that we build up initial trust degree in a trusted system environment and dynamically adjust users' trust degree by state of users' job application and done.This thesis also proposes a strategy model based on trust computing platform from the blueprint of an RBAC model on dynamically adjustable trust degree. It mainly introduces the concept of trust degree platform management center, together with password in order to increase the security of trust value, so, it can improve the security of the whole system.This thesis provides an insurance for authentication, it also solves user trusting problems, and has a major theoretical and instructional significance towards research on trust computing.