摘要： 提出一个安全对等访问控制方案，该方案采用两层访问控制策略：一层主要对成员资格进行审核，屏蔽一些不符合对等网络安全要求的成员；另一层基于可信值的访问控制策略，对进入对等网络后的成员行为进行评估，根据评估的可信值来决定赋予该成员访问网络资源的权限。当发现恶意成员时，网络能废除这些成员，实现对等网络的安全访问控制。

关键词: 对等网络, 访问控制, 可信值评估, 废除恶意成员

Abstract: The paper proposes a secure access control scheme for P2P(Peer-to-Peer) networks and explores the use of the two layers of access control mechanisms to provide security services such as joining the P2P network, using P2P network’s resource etc. Firstly, a new member is audited if he can enter into P2P network based on secure requirements and the members undesired for P2P network are eliminated. Secondly, the member ‘s trusted value is rated in P2P network and his access right to P2P network’s resource is assigned based on trusted access control mechanism. The scheme can revoke out the malicious members from P2P network. Therefore the scheme can realize secure access control for P2P network.

Key words: P2P networks, access control, trust rating, revoked malicious members

中图分类号: 

• TP309