Title :
A New Model for Continuous Network Access Control of Trusted Network Connection
Author :
Wang Jiahui ; Wu Zhenqiang
Author_Institution :
Shaanxi Normal Univ., Xian, China
Abstract :
In current trusted network connection (TNC) model, access decisions are generally made at the time of request but typically do not recognize ongoing controls for relative continuous access or for immediate revocation. We propose a new model named trusted network connection based on usage control (U-TNC), which combine TNC solutions with usage control (UCON) to achieve pre-authorization and ongoing-authorization network access control. Moreover, attribute mutability that deal with updates on related endpoint or resource/network attributes as a consequence of access have been presented. This property enable the system disconnect the endpoint whose attributes disagree with security policies in time, and is very important to invoke ongoing authorization. At the end, the paper shows how to use the model in e-commerce and gives a logic specification of the example.
Keywords :
computer networks; telecommunication control; telecommunication security; continuous network access control; e-commerce; logic specification; ongoing-authorization network access control; relative continuous access; security policies; trusted network connection; usage control; Access control; Authorization; Computer architecture; Computer viruses; Logic; Operating systems; Permission; Research and development; Security; Switches;
Conference_Titel :
Wireless Communications, Networking and Mobile Computing, 2009. WiCom '09. 5th International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4244-3692-7
Electronic_ISBN :
978-1-4244-3693-4
DOI :
10.1109/WICOM.2009.5301865
