Cross-domainaccess Control Based On GAL Model

With the rapid development of information technology, more and more peopletend to use online information exchange and mutual sharing of resources, whichrequires researchers to study how to make sure the safety of the exchange ofinformation and resources on the network. So nowadays how to achieve safe andefficient cross-domain access nowadays become a hot research.The current model are IRBAC2000, cross-domain access control model basedon attribute mapping and some extended models. They are based on mappingtechnology, such as the role of mapping technology and attribute mappingtechnology.Cross-domain access control model based on role mapping technology isimplemented for both role-based access control management domain case. Thismethod is not suitable for cross-domain access control access across multiple types ofdomains.Cross-domain access control model based on attribute mapping technologyis used for the case for domain-based management access control attributes. Thismethod needs to established different attribute mapping for different domains. Whenuse this method on large distributed system, the performance and efficiency of thesystem will decline.In order to solve these problems in cross-domain access control, this paperproposed the use of common property database access control model of GAL on thebasis of previous studies. This model is based on the attribute-based mapping model,in each domain a GAL is added, so that each domain can create same attributemapping rules for different domains, effectively improve the efficiency andperformance of cross-domain access control, and the ability to meet the informationsharing between the different types of fields in the database. With the introduction ofgeneric attributes and in order to achieve real-time communication, the attributemonitor system is added between domains which can achieve the dynamiccross-domain access control objectives between different autonomous domains. This article describes the meaning of the cross-border access to the backgroundand the current status of research, then proposed a common attribute library GALtechnology, namely the establishment of a common attribute library GAL in eachdomain. As a cross-domain access attribute mapping intermediate links, each domainrequires access to resources outside the domain when the domain of the attributeproperties can be converted into common property database, so that each domain isno need to attribute their own domain into another domain attributes to improve theperformance of the system. Finally, this paper gives examples of cross-border accessto applications based on common attributes library control.The main work of this paper includes:(1) Described the meaning of the cross-border access to the background and thecurrent status of research. Analyzed the current commonly used cross domain accesscontrol models.(2) Based on the current research and imitated the international language to add aGAL.This method could reduce the autonomous domain attribute mapping rule ofredundancy, and avoid the repeated multiple attribute mapping rules.(3) Through example application verified the feasibility of GAL.(4) Finally, this paper summarizes the content of this study，puts forward to thefurther work.