A New Model for Continuous Network Access Control of Trusted Network Connection

Author

Wang Jiahui ; Wu Zhenqiang

Author_Institution

Shaanxi Normal Univ., Xian, China

fYear

2009

fDate

24-26 Sept. 2009

Firstpage

1

Lastpage

5

Abstract

In current trusted network connection (TNC) model, access decisions are generally made at the time of request but typically do not recognize ongoing controls for relative continuous access or for immediate revocation. We propose a new model named trusted network connection based on usage control (U-TNC), which combine TNC solutions with usage control (UCON) to achieve pre-authorization and ongoing-authorization network access control. Moreover, attribute mutability that deal with updates on related endpoint or resource/network attributes as a consequence of access have been presented. This property enable the system disconnect the endpoint whose attributes disagree with security policies in time, and is very important to invoke ongoing authorization. At the end, the paper shows how to use the model in e-commerce and gives a logic specification of the example.

Keywords

computer networks; telecommunication control; telecommunication security; continuous network access control; e-commerce; logic specification; ongoing-authorization network access control; relative continuous access; security policies; trusted network connection; usage control; Access control; Authorization; Computer architecture; Computer viruses; Logic; Operating systems; Permission; Research and development; Security; Switches;

fLanguage

English

Publisher

ieee

Conference_Titel

Wireless Communications, Networking and Mobile Computing, 2009. WiCom '09. 5th International Conference on

Conference_Location

Beijing

Print_ISBN

978-1-4244-3692-7

Electronic_ISBN

978-1-4244-3693-4

Type

conf

DOI

10.1109/WICOM.2009.5301865

Filename

5301865