Access control method based on capability

Access control method based on capability

The invention discloses an access control method based on capability, and the method comprises the steps: generating a verifiable certificate of a user according to a decentralized identifier of the user, and generating a capability token of a to-be-accessed resource through the verifiable certifica...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: HUANG QIONG, LIN ZHANREN, LI QIHUA, XIAO MEIYAN, LIN HONGYUAN
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention discloses an access control method based on capability, and the method comprises the steps: generating a verifiable certificate of a user according to a decentralized identifier of the user, and generating a capability token of a to-be-accessed resource through the verifiable certificate of the user; and applying for a service request of a to-be-accessed resource from a service provider according to the capability token, and after the service provider verifies the validity of the user signature and the capability token, performing an access operation on the to-be-accessed resource. On the basis of using the block chain, access is carried out based on the authority token, decentralization of three elements of the subject, authentication and authorization is realized by using the decentralization identifier, the verifiable certificate and the verifiable expression, and a user can master the control right of identity information. 本发明公开了一种基于权能的访问控制方法,所述方法包括:根据用户的去中心化标识生成用户的可验证凭证,利用所述用户的可验证凭证生成待访问资源的