高级检索

    认证可信度理论研究

    Research on Authentication Trustworthiness Theory

    • 摘要: 认证是操作系统安全的基础之一,没有经过用户认证,系统安全的3个基本特性:秘密性、完整性和可用性将会严重地受到破坏.但是由于当前系统在用户认证过程中存在一些不确定性因素,如认证机制的不确定性、认证规则的不确定性和认证结论的不确定性,借鉴专家系统中不确定性推理的思想,提出认证可信度的思想,并给出了认证可信度因子模型.该模型对认证过程存在的不确定性因素给出了度量,针对需要多种认证机制的重要、特殊系统给出了认证可信度因子在多认证机制之间的传播公式,并进行了证明.通过在认证过程中引入认证可信度,可以很好地描述认证过程中的不确定性因素,并且可以更好地增强系统在多种认证机制情况下的安全性.

       

      Abstract: One of the foundations of operating system security is authentication. Without being sure with whom an entity interacts, the three fundamental properties—confidentiality, integrity and availability—can be trivially violated. But there are several uncertainty factors in the user authentication procedure in current operating systems, such as the uncertainties of authentication mechanisms, the uncertainties of authentication rules and the uncertainties of authentication conclusions. This paper borrows the idea of uncertainty reasoning in expert system field, puts forward the thought of authentication trustworthiness, and gives the authentication trustworthiness factor model. The model describes the measure for these uncertainty factors in user authentication procedure. Aiming at some important and especially secure systems needing several authentication mechanisms, this paper gives and demonstrates the parallel propagation formula of authentication trustworthiness factor. After calculating the user's final authentication trustworthiness, the system decides whether the user has passed system authentication. By introducing the thought of authentication trustworthiness into authentication system, it can not only describe the uncertainty factors existing in authentication system very well, but also enhance the security of those systems needing multiple authentication mechanisms very well.

       

    /

    返回文章
    返回