Dynamic Optimization Research On The Security Of Interoperability In Multi-domain Environment Based On Risk

With the rapid development of Internet and related technologies, there are tremendous possibilities for the interoperability between applications in open and heterogeneous distributed environment.Interoperability offers a means for distributed applications to share resources and services,which improves performance and resource utilization obviously.In multi-domain heterogeneous environment,access control is a crucial security technology for guaranteeing the security of interoperability. It can restrict users'access to critical resources of the system, prevent unauthorized users from proceeding malicious intrusion, and guarantee the system security not being damaged by users'careless operation.To improve the system security and utility, this study introduces the concept into access control field and establishes an integrated theoretic framework.This paper represents access control policy and the ordering relation among roles based on risk. The concept of risk distance is proposed,which made the security of access control polices can be compared according their various risk bands.We also illuminate the basic relationship between roles.The properties and principle are proposed for the policies'delegation and reassignment based on risk.Through these properties and principle, this article proposed a method to optimize users'access control polices.It ensures the executions of the policy are under the minimum risk. The risk-based method can control the highly risky authorization and delegation.To optimize the security of interoperability in multi-domain environment based on risk, this paper analyzes the change of trust between domains during the interoperability process,and calculates the real-time inter-domain trust through the historical records and current system environment. According to the real-time inter-domain trust,a specific method is put forward to assess the risk of access control policy for inter-domain interoperability. On this basis,the article proposes a risk-based method to optimize the security of access control policy for inter-domain interoperability.The optimization method can set the risk level for cross-domain permissions through the real-time inter-domain trust, so that the high risky cross-domain permissions can be identified and revoked.Through the dynamic adjustment of users'access control permissions,the access control policy can adapt to the real-time changes in system environment, and then reduce the highly risky cross-domain access events from the source.