Authorization Management Framework Based on Joint Trust-Risk Evaluation

0 Introduction Trust management1-3] is an approach to managing authorization in distributed environ- ments. Blaze et al1] firstly proposed the concept of trust, and took trust into consideration in au- thorizing. Probability computed via historical records is viewed as the grade of trust4]. Trust is classified into two types: direct trust and recom- mendation trust. But modeling the subjective trust with the simple probability and expressing the integration of multi recommendation trusts b…

Authorization management framework based on joint trust-risk evaluation

Authorization management is important precondition and foundation for coordinating and resource sharing in open networks. Recently, authorization based on trust is widely used whereby access rights to shared resource are granted on the basis of their trust relation in distributed environment. Nevertheless, dynamic change of the status of credential and chain of trust induces to uncertainty of trust relation. Considering uncertainty of authorization and analyzing deficiency of authorization model only based on trust, we proposes joint trust-risk evaluation and build the model based on fuzzy set theory, and make use of the membership grade of fuzzy set to express joint trust-risk relation. Finally, derivation principle and constraint principle of joint trust-risk relationships are presented. The authorization management model is defined based on joint trust-risk evaluation, proof of compliance and separation of duty are analyzed. The proposed model depicts not only trust relationship between principals, but also security problem of authorization.