摘要
设计了一个云安全管理平台,包括服务端和客户端。客户端采集并处理用户生物学信息作为身份识别的依据,实现了身份认证的确定性、防篡改和不可抵赖性;数学转换得到的生物随机密钥,解决了数据加密/解密时密钥的隐秘问题。服务端为不同类别的用户定制不同访问策略,确保合法用户的访问,防止非授权访问。云服务的安全性得到一定程度的提升。
A cloud security management platform is designed, including the cloud server and the cloud client. Biological information of clients is collected and handled as the basis for identity authentication which achieves certainty, anti-forgery and non-repudiation. The problem of confidentiality of key in data encryption and decryp- tion is resolved by biological random key through mathematical transformation. Cloud server customizes differ- ent access strategies for different kinds of users to ensure legitimate users access and prevent unauthorized ac- cess. The security of cloud services is improved to a certain extent.
出处
《测控技术》
CSCD
北大核心
2013年第2期97-99,103,共4页
Measurement & Control Technology
基金
河南省基础与前沿技术研究资助项目(122300410315
112300410235
102102210388)
河南省教育厅自然科学研究资助项目(20128520038)
南阳师范学院科研资助项目(STP2009001
QN2011003)
关键词
云安全管理平台
生物学信息
身份认证
访问控制
简单对象访问协议
随机密钥
cloud security management platform
biological information
identity authentication
access control
simple object access protocol
random key