计算机工程与应用 ›› 2007, Vol. 43 ›› Issue (29): 48-52.

• 学术探讨 • 上一篇    下一篇

基于2D-CAN协议的信任凭证存储和查找算法

姜志宏,王 晖,孙 晓,陶 钧   

  1. 国防科技大学 信息系统与管理学院,长沙 410073
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-10-11 发布日期:2007-10-11
  • 通讯作者: 姜志宏

CAN-based approach to distributed credentials chain discovery

JIANG Zhi-hong,WANG Hui,SUN Xiao,TAO Jun   

  1. School of Information System and Management,National University of Defense Technology,Changsha 410073,China
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-10-11 Published:2007-10-11
  • Contact: JIANG Zhi-hong

摘要: 信任凭证的存储策略是信任管理领域中广受关注的一个研究内容,它直接影响到凭证的收集、撤销和凭证链的构造等问题。针对RT0信任管理模型,提出了一种基于2D-CAN网络(2-dimensions Content Addressable Network)的信任凭证存储策略,通过<发行者,主体>的二维信息,将信任凭证映射存储到二维CAN协议的对应节点上,从而实现凭证的分布式存储,并提供灵活地查询。同时,研究提出了一个基于凭证图双向生长的信任链发现算法。实验表明,基于2D-CAN协议的凭证存储算法,能达到较高的鲁棒性和查询效率。

关键词: 信任管理, 信任凭证, 凭证链, CAN网络

Abstract: How to store credentials is key problem in the research field of Trust management(TM),and has direct effect on collection,revocation of credentials and construction of credential chains.This paper presents a storage strategy of credentials based on 2D-CAN(2-dimensions Content Addressable network),which maps and stores credentials in 2-dimesional CAN network,by using 2-dimetional information <issuer,subject>.In addition to this,a novel algorithm to discover credential chains,based on bidirectional growth of credential graph,is brought forward.Analysis and simulation indicate that the algorithm can obtain greatly efficiency and robustness.

Key words: trust management, credentials, credential chain, Content Addressable Network