摘要
针对云计算环境下访问控制的高度动态化问题,在基于属性的访问控制(ABAC-Attribute-based access control)模型的基础上,引入上下文环境管理进行扩展,给出一种基于信任度量和属性约束的云计算服务化访问控制模型。针对租户信任度量的问题,引入频次衰减函数H(k),提出适用于云计算访问控制的信任度量算法。同时就客体资源服务化问题进行研究,将基础服务与服务管理的概念引入到模型中。最后通过实验进行了仿真与分析。
Due to the highly dynamic problem of access control in cloud computing environment,based on the attribute based access control model,the contextual environment management is extended,and a service-oriented access control model is presented based on trust metric and attribute constraint in cloud computing.Aiming at the problem of tenant trust measure,a time decay function H(k) is proposed to a trust metric algorithm suitable for cloud computing access control.At the same time,the problem of the object resource service is studied and the concept of basic service and service management is introduced into the model.Finally,the simulation and analysis are carried out through experiments.
作者
马丁义
郭银章
MA Ding-yi;GUO Yin-zhang(School of Computer Science and Technology,Taiyuan University of Science and Technology,Taiyuan 030024,China)
出处
《太原科技大学学报》
2019年第4期258-263,共6页
Journal of Taiyuan University of Science and Technology
基金
山西省自然科学基金(2016011044)
关键词
云计算
安全
动态访问控制
面向服务
属性
信任
cloud computing
security
dynamic access control
service-oriented
attribute
trust
