摘要
随着云计算的应用范围越来越广,云计算相应的研究成果越来越丰富,与此同时各种各样的问题也越来越多,而其中的安全问题一直都是广受关注的问题之一,并且其重要性正呈现逐步上升的趋势。云计算安全主要表现在访问控制、虚拟化安全和Web安全防护三个方面。针对其中的访问控制问题,文中引入信任管理的思想,提出了一种基于信任的访问控制模型。该模型根据用户实时行为通过相应的算法计算出用户的信任值,据此为用户分配权限。当出现非安全访问时,此模型能够动态调整用户的权限,有效地阻止其非安全访问行为,保护其他用户以及云中重要资源免遭破坏。实验结果表明,根据该模型得到的信任值符合用户的实际情况,同时该模型能有效抵御用户的恶意攻击。
With extensive application of cloud computing,the research of cloud computing becomes more and more rich,at the same time, various problems also become more and more,and the safety has been a popular one of concern,and its importance is gradually rising trends. Cloud computing security problems include access control,virtualization and Web security. For access control problem in cloud computing environment,introduce the idea of trust management and propose an access control model based on trust. The model calculates user’ s behavior trust value according to the behavior evidences that are obtained in real time,and then determine the appropriate permis-sions depending on the confidence value. When the user has a non-secure access behavior,this model can dynamically adjust the user’ s permissions,effectively preventing users from the non-secure access behavior and protecting other users and important resources in the cloud from destruction. The experimental results show that trust values according to the model are more in line with the user’ s actual situ-ation,and the model can resist malicious attacks of users effectively.
出处
《计算机技术与发展》
2015年第9期139-143,共5页
Computer Technology and Development
基金
国家自然科学基金资助项目(61202354)
江苏省科技型企业技术创新资金项目(BC2014195)
关键词
云存储
访问控制
行为信任值
动态调整
cloud storage
access control
behavior trust value
dynamic adjustment
