Page 312 - 《软件学报》2025年第9期

P. 312

软件学报 ISSN 1000-9825, CODEN RUXUEW E-mail: jos@iscas.ac.cn
2025,36(9):4223−4240 [doi: 10.13328/j.cnki.jos.007274] [CSTR: 32375.14.jos.007274] http://www.jos.org.cn
©中国科学院软件研究所版权所有. Tel: +86-10-62562563

*
面向跨信任域互联网场景的拜占庭容错访问控制架构

韩将 1,2 , 张振峰 2 , 刘雨果 1,2 , 胡可欣 2 , 何双羽 2

1
(中国科学院大学, 北京 100049)
2
(中国科学院软件研究所可信计算与信息保障实验室, 北京 100190)
通信作者: 韩将, E-mail: hanjiang@iscas.ac.cn

摘要: 工业界现用的访问权限控制技术愈来愈难以应对广域互联网场景下部署的分布式系统的访问控制问题,
特别是跨多个信任域部署的大型信息系统在地理分布上不断分散化, 造成防护弱点不断增加. 基于共识的访问控
制策略共享技术能够使跨信任域部署的访问控制节点安全快速地达成一致决策. 首先提出面向多节点的基于共识
的访问权限控制模型, 提出强安全高性能的访问控制引擎共识算法 Super-Dumbo. 该算法突破 Dumbo2 共识协议
的性能瓶颈, 优化消息广播、随机掷币、共识算法设计等关键步骤的设计, 减少数字签名验证等计算开销、有效
提升带宽利用率, 从而在吞吐量和延迟时间等性能方面取得大幅提升, 满足 CBAC 访问控制模型对底层共识算法
低延迟、大吞吐量的性能要求.
关键词: 分布式访问控制; 拜占庭容错; 异步共识协议; 基于共识的访问控制
中图法分类号: TP309

中文引用格式: 韩将, 张振峰, 刘雨果, 胡可欣, 何双羽. 面向跨信任域互联网场景的拜占庭容错访问控制架构. 软件学报, 2025,
36(9): 4223–4240. http://www.jos.org.cn/1000-9825/7274.htm
英文引用格式: Han J, Zhang ZF, Liu YG, Hu KX, He SY. Access Control Structure Based on Byzantine Fault Tolerance in Cross-trust-
domain Internet Scenarios. Ruan Jian Xue Bao/Journal of Software, 2025, 36(9): 4223–4240 (in Chinese). http://www.jos.org.cn/1000-
9825/7274.htm

Access Control Structure Based on Byzantine Fault Tolerance in Cross-trust-domain Internet
Scenarios
2
1,2
2
1,2
HAN Jiang , ZHANG Zhen-Feng , LIU Yu-Guo , HU Ke-Xin , HE Shuang-Yu 2
1
(University of Chinese Academy of Sciences, Beijing 100049, China)
2
(Trusted Computing and Information Assurance Laboratory, Institute of Software, Chinese Academy of Sciences, Beijing 100190, China)
Abstract: In the industrial field, currently used access permission control technologies are increasingly struggling to address access control
issues of distributed systems deployed in wide-area internet scenarios. This situation is particularly exacerbated when dealing with large-
scale information systems distributed across multiple trust domains, thereby engendering an escalating proliferation of vulnerabilities.
Consensus-based access control policy sharing technologies can facilitate the secure and expeditious attainment of consensus decisions
among access control nodes deployed across trust domains. This study first proposes a consensus-based access permission control model
for multiple nodes and presents the Super-Dumbo consensus algorithm for access control engines, which features robust security and high
performance. Super-Dumbo surmounts the performance bottlenecks of Dumbo2 by optimizing the design of key steps encompassing
message broadcasting, random coin toss procedures, and consensus algorithm constructs. Notably, it reduces computational overhead such
as digital signature verification, thereby effectively enhancing bandwidth utilization. This achieves a substantial improvement in
performance metrics, such as throughput and latency, aligning seamlessly with the performance prerequisites of the CBAC access control
model, which demands low latency and high throughput from the underlying consensus algorithm.
Key words: distributed access control; Byzantine fault tolerance; asynchronous consensus protocol; consensus-based access control

* 基金项目: 国家重点研发计划 (2022YFB2701600)
收稿时间: 2023-11-14; 修改时间: 2024-05-13, 2024-07-05; 采用时间: 2024-08-22; jos 在线出版时间: 2024-12-25
CNKI 网络首发时间: 2024-12-26

307 308 309 310 311 312 313 314 315 316 317