Collaborative Research: Secure Information Sharing in Internet-based Collaborative Applications

协作研究：基于互联网的协作应用程序中的安全信息共享

• 批准号: 0900970
• 负责人: Gail-Joon Ahn
• 金额: $ 6.17万
• 依托单位: Arizona State University
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2008
• 资助国家: 美国
• 起止时间: 2008-07-01 至 2009-05-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0900970&HistoricalAwards=false
• 关键词: Collaborative; Research; Secure; Information; Sharing

The Internet revolution has led organizations worldwide to rely heavily on information sharing over the Internet to conduct their daily business. Information sharing on the Internet usually occurs in broad, highly dynamic network-based environments, and formally accessing the resources in a secure manner poses a difficult challenge. Our focus is on the problems of secure information exchange and secure information access in Internet-based collaborative environments. The research objectives are as follows. Secure group communication. In collaborative work and research environments, group members must be able to set up a reliable, secure information sharing and communication medium among them. Techniques will be developed for setting up secure group communication and providing a set of accesses to group members for a variety of digital data in highly dynamic networks.Security services. Digital information in database systems generally represents sensitive and confidential information that organizations must protect and allow only authorized personnel to access and manipulate them. The research will address the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access proposing a delegation framework. The objective is to demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation.

互联网革命导致全世界的组织严重依赖通过互联网共享的信息来进行日常业务。 Internet上的信息共享通常发生在广泛的，高度动态的基于网络的环境中，并以安全的方式正式访问资源会带来困难的挑战。我们的重点是在基于Internet的协作环境中安全信息交换和安全信息访问的问题。研究目标如下。安全的团体通信。在协作工作和研究环境中，小组成员必须能够在其中建立可靠，安全的信息共享和交流媒介。将开发技术来建立安全的小组通信，并为小组成员提供一组访问，以在高度动态的网络中为各种数字数据提供服务。数据库系统中的数字信息通常代表组织必须保护的敏感和机密信息，并仅允许授权人员访问和操纵它们。该研究将解决如何在基于角色的系统中提倡选择性信息共享的问题，同时最大程度地减少未经授权访问提出委托框架的风险。目的是通过政策规范，执行和概念验证实施来证明我们的框架的可行性。