| 云计算环境中基于对象和用户的角色访问控制模型* |
| |
| 引用本文: | 韩晓光,姚宣霞,曲 武,锁延锋.云计算环境中基于对象和用户的角色访问控制模型*[J].科学技术与工程,2014,14(29). |
| |
| 作者姓名: | 韩晓光 姚宣霞 曲 武 锁延锋 |
| |
| 作者单位: | 1. 北京科技大学计算机与通信工程学院,北京,100083
2. 北京启明星辰信息安全技术有限公司核心研究院,北京100193;清华大学计算机科学与技术,北京100084 |
| |
| 基金项目: | 国家自然科学基金(61163025);自然科学基金面上项目(61271275) |
| |
| 摘 要: | 针对云计算环境中资源按需访问的特点以及不同资源不同用户访问控制的特殊性,基于基本角色访问控制模型(role-based access control,RBAC),提出一种基于对象和用户的角色访问控制模型OURBAC(object-and-user based on RBAC);并设计了具体的用户访问权限判定规则。以实际实现应用为背景,设计了OURBAC的具体实现流程,对算法的安全性进行了分析,表明本算法使云资源访问控制得以进一步细化,能明显减少系统中角色数量,有效的提高了系统运行效率及安全性。
|
| 关 键 词: | 云计算 访问控制 基于对象和用户 权限规则 |
| 收稿时间: | 2014/5/22 0:00:00 |
| 修稿时间: | 2014/6/17 0:00:00 |
HAN Xiao-guang1, YAO Xuan-xia1, QU Wu2,3, SUO Yan-feng1 |
| |
| hanxiaoguang,and.HAN Xiao-guang1, YAO Xuan-xia1, QU Wu2,3, SUO Yan-feng1[J].Science Technology and Engineering,2014,14(29). |
| |
| Authors: | hanxiaoguang and |
| |
| Abstract: | In the cloud computing environment, access control is on-demand and it requires users under control when accessing different resources. Based on the theory of role-based access control (RBAC), this paper presented OURBAC according to the characteristic. It is a new access control model based on role access of users and objects. The paper also designed access permission rules of authority judgment for specific user. The algorithm used in OURBAC model made the cloud resource access control be further refined, and significantly reduced the number of roles in the system to improving the operation system efficiency and safety effectively. Based on the actual implementation of application, this paper designed the implementation process of OURBAC model and theSsecuritySof the algorithm was analyzed. |
| |
| Keywords: | cloud computing access control object-and-user based permission rule |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《科学技术与工程》浏览原始摘要信息 |
| 点击此处可从《科学技术与工程》下载免费的PDF全文 |
|
