中文摘要：

Web服务具有开放性、高度动态性、松散耦合性及跨平台性等特点，传统的访问控制方式已不能满足其跨域访问的安全需求。通过集成信任管理及可信平台度量扩展了XACML访问控制模型，提出基于信任度量的跨域访问控制模型。该模型在对用户统一身份认证的基础上，通过分析用户历史访问行为，引入用户信任度、平台配置完整度和域间信任度，提高了跨域访问控制的动态性和安全性。同时，给出了域内信任度管理点和跨域信任度管理点两个功能模块的具体实现描述，采用信任度缓存实时更新的方法分析了海量历史访问行为的复杂度问题，提高了系统效率。

英文摘要：

For the Web services is open,highly dynamic,loose coupling,cross-platform and traditional access control methods cannot meet the security demand of the cross-domain access anymore.By integrating the trust management and trusted platform measuring,the XACML access control model was expanded and a cross-domain access control model based on trust measurement was proposed.Based on the users’uniform identity authentication,the user’s trust degree, platform configuration integrity and inter-domain trust degree were introduced in the model through the analysis of us-ers’historical access behavior.And therefore the dynamics and security of the cross-domain access control were im-proved.At the same time,according to the complexity of the analysis of massive historical access behavior,the imple-mentation of Inside Trust Manager Point and Outside Trust Manager Point were described in detail.The trust degree cache and real-time updating method were put forward,which improves the efficiency of the system effectively.