本文選題：云計算 + 多要素��； 參考：《北京工業(yè)大學(xué)》2014年碩士論文

【摘要】：云計算越來越來在企業(yè)和個人中廣泛采用,而可靠性和安全性是云計算不可缺少部分。傳統(tǒng)安全解決方案能解決部分云計算安全問題。但在云計算環(huán)境下,有云計算特有安全問題。云用戶對云計算服務(wù)安全擔(dān)憂,一直是制約云計算發(fā)展的瓶頸。因此建立云計算可信平臺有實(shí)際意義。本文針對云計算的安全問題,采用可信平臺計算建立可信鏈來保證云計算可信,同時使用可信第三方提供可信驗(yàn)證和評價,設(shè)計云計算服務(wù)可信系統(tǒng),提供給用戶可信云計算服務(wù)。 首先,本文引入多要素身份認(rèn)證和基于角色多租戶訪問控制,解決云計算下資源訪問重放攻擊,不安全接口及APIs等安全問題。 其次,本文通過研究當(dāng)前可信計算和云計算技術(shù)成果,采用了可信平臺設(shè)計云計算可信機(jī)制。本文主要考慮云計算物理層,在云計算平臺中不同物理扮演不同角色和承擔(dān)不同功能。因此,本文主要考慮本地物理節(jié)點(diǎn)可信驗(yàn)證,不同節(jié)點(diǎn)之間交互驗(yàn)證,以到達(dá)整個云計算平臺系統(tǒng)可信,同時提出一種用戶態(tài)動態(tài)可信驗(yàn)證機(jī)制。最后分析云計算可信平臺有效性和性能。 總之,本文采用可信平臺來設(shè)計云計算可信以及采用多要素動態(tài)身份認(rèn)證解決云計算中信任問題和控制問題,對云計算推廣有一定實(shí)際意義。
[Abstract]:Cloud computing is more and more widely used in enterprises and individuals, and reliability and security are indispensable parts of cloud computing. Traditional security solutions can solve some cloud computing security problems. However, in the cloud computing environment, there are specific security problems in cloud computing. Cloud users are worried about the security of cloud computing services, which has been a bottleneck restricting the development of cloud computing. Therefore, the establishment of cloud computing trusted platform has practical significance. Aiming at the security problem of cloud computing, this paper uses trusted platform computing to establish trusted chain to ensure cloud computing trustworthiness. At the same time, we use trusted third party to provide trusted verification and evaluation, and design cloud computing service trusted system. Provide users with trusted cloud computing services. Firstly, this paper introduces multi-element authentication and role-based multi-tenant access control to solve the security problems such as resource access replay attacks, insecure interfaces and APIs in cloud computing. Secondly, through the research of current trusted computing and cloud computing technology, the trusted platform is used to design the trusted mechanism of cloud computing. This paper mainly considers cloud computing physical layer, in cloud computing platform, different physics play different roles and assume different functions. Therefore, this paper mainly considers local physical node trusted verification, mutual verification between different nodes to achieve the whole cloud computing platform system trusted, and proposes a user-state dynamic trusted verification mechanism. Finally, the validity and performance of cloud computing trusted platform are analyzed. In a word, this paper uses trusted platform to design cloud computing trustworthiness and uses multi-element dynamic identity authentication to solve trust and control problems in cloud computing, which has some practical significance for cloud computing promotion.
【學(xué)位授予單位】：北京工業(yè)大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前5條

1 李曉勇;左曉棟;沈昌祥;;基于系統(tǒng)行為的計算平臺可信證明[J];電子學(xué)報;2007年07期

2 劉建生;彭行順;;訪問控制模型研究綜述[J];計算機(jī)與數(shù)字工程;2010年07期

3 張曉燕;張素偉;;基于RBAC的電子政務(wù)權(quán)限訪問控制模塊的設(shè)計與實(shí)現(xiàn)[J];計算機(jī)工程與設(shè)計;2007年03期

4 劉川意;林杰;唐博;;面向云計算模式運(yùn)行環(huán)境可信性動態(tài)驗(yàn)證機(jī)制[J];軟件學(xué)報;2014年03期

5 崔奇;石文昌;;一種通過應(yīng)用程序驗(yàn)證TPM標(biāo)準(zhǔn)符合性的方法(英文)[J];中國科學(xué)院研究生院學(xué)報;2008年05期

，

本文編號：2090105