Flexible delegation model with trustworthiness based onpermission mapping mechanism
基于映射机制及带信任度的灵活委托授权模型

Against the deficiencies of existing role-based delegation models on supporting a fine delegation granularity and the control of propagation of permissions, this paper proposed a flexible delegation model with trustworthiness based on permission mapping mechanism, called FDMTPM. Based on concerted computing of a vectorizing operator and a measuring operator, considering the new concepts of mobile and immobile users, this paper proposed the concept of the mode measuring role, which acted as the authorized granularity. FDMTPM mode sufficiently considered the necessary of restriction in partial delegation from the angled of scope and depth and realized the control of propagation of permissions that had different degree of sensitivity through the induction of trustworthiness. Finally, it discussed the mechanisms of delegation constraint and revocation, which ensured convergence of delegation in the process of multi-steps delegation.