本文選題：多租戶 + 云服務(wù)�。� 參考：《計(jì)算機(jī)工程與應(yīng)用》2015年19期

【摘要】：針對(duì)云服務(wù)中多租戶應(yīng)用面臨越權(quán)訪問和聯(lián)合惡意攻擊問題,綜合聚類思想和基于密文策略的屬性加密(CP-ABE)提出一種多租戶授權(quán)管理訪問控制模型(MTACM)。該模型根據(jù)多租戶的業(yè)務(wù)特點(diǎn)將角色任務(wù)聚類為任務(wù)組,并采用匹配因子標(biāo)記任務(wù)組,進(jìn)而通過任務(wù)組授權(quán)管理角色屬性,以實(shí)現(xiàn)角色的細(xì)粒度授權(quán)訪問控制管理,減少系統(tǒng)計(jì)算量開銷,降低系統(tǒng)的復(fù)雜度。在虛擬環(huán)境下實(shí)現(xiàn)了該模型算法,且通過邏輯推理證明了模型的安全性和系統(tǒng)訪問的高效性。
[Abstract]:In view of the problem that multi-tenant applications in cloud services are facing the problem of over-privileged access and joint malicious attack, a multi-tenant authorization management access control model is proposed by combining clustering ideas and attribute encryption based on ciphertext policy. According to the characteristics of multi-tenant business, the role tasks are clustered into task groups, and the matching factors are used to mark the task groups, and then the role attributes are managed through the task group authorization, so that the fine-grained access control management of the roles can be realized. Reduce the computational overhead and reduce the complexity of the system. The model algorithm is implemented in virtual environment, and the security of the model and the efficiency of system access are proved by logical reasoning.
【作者單位】： 西安建筑科技大學(xué)信息與控制工程學(xué)院;西安建筑科技大學(xué)管理學(xué)院;
【基金】：國(guó)家自然科學(xué)基金(No.61272458) 西安市2013技術(shù)轉(zhuǎn)移促進(jìn)工程項(xiàng)目(No.CXY1348-1)
【分類號(hào)】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 王小明;付紅;張立臣;;基于屬性的訪問控制研究進(jìn)展[J];電子學(xué)報(bào);2010年07期

2 張逢U，

本文編號(hào)：1805511