期刊文献+
共找到4篇文章
< 1 >
每页显示 20 50 100
Research on Multi-Authority CP-ABE Access Control Model in Multicloud 被引量:3
1
作者 Shengli Zhou Guangxuan Chen +2 位作者 Guangjie Huang Jin Shi Ting Kong 《China Communications》 SCIE CSCD 2020年第8期220-233,共14页
In order to solve the problems of data sharing security and policy conflict in multicloud storage systems(MCSS), this work designs an attribute mapping mechanism that extends ciphertext policy attribute-based encrypti... In order to solve the problems of data sharing security and policy conflict in multicloud storage systems(MCSS), this work designs an attribute mapping mechanism that extends ciphertext policy attribute-based encryption(CP-ABE), and proposes a multi-authority CP-ABE access control model that satisfies the need for multicloud storage access control. The mapping mechanism mainly involves the tree structure of CP-ABE and provides support for the types of attribute values. The framework and workflow of the model are described in detail. The effectiveness of the model is verified by building a simple prototype system, and the performance of the prototype system is analyzed. The results suggest that the proposed model is of theoretical and practical significance for access control research in MCSS. The CP-ABE has better performance in terms of computation time overhead than other models. 展开更多
关键词 CP-ABE access control multicloud multi-authority TRUST
下载PDF
Research on Multicloud Access Control Policy Integration Framework
2
作者 Peng Zhao Lifa Wu +1 位作者 Zheng Hong He Sun 《China Communications》 SCIE CSCD 2019年第9期222-234,共13页
Multicloud access control is important for resource sharing and security interoperability across different clouds,and heterogeneity of access control policy is an important challenge for cloud mashups.XACML is widely ... Multicloud access control is important for resource sharing and security interoperability across different clouds,and heterogeneity of access control policy is an important challenge for cloud mashups.XACML is widely used in distributed environment as a declaratively fine-grained,attribute-based access control policy language,but the policy integration of XACML lacks formal description and theory foundation.Multicloud Access Control Policy Integration Framework(MACPIF)is proposed in the paper,which consists of Attribute-based Policy Evaluation Model(ABPEM),Four-value Logic with Completeness(FLC)and Four-value Logic based Policy Integration Operators(FLPIOs).ABPEM evaluates access control policy and extends XACML decision to four-value.According to policy decision set and policy integration characteristics,we construct FLC and define FLPIOs including Intersection,Union,Difference,Implication and Equivalence.We prove that MACPIF can achieve policy monotonicity,functional completeness,canonical suitability and canonical completeness.Analysis results show that this framework can meet the requirements of policy integration in Multicloud. 展开更多
关键词 multicloud ACCESS CONTROL policyintegration four-value LOGIC
下载PDF
基于LibCloud的云代理系统设计与实现 被引量:1
3
作者 黄志兰 刘京松 +1 位作者 关天强 陈楠 《广东通信技术》 2016年第8期5-9,13,共6页
公有云服务市场竞争日趋激励,在行业、地域、功能、性能等方面呈现出多样性和复杂性,催生了云服务代理市场的繁荣。主流云服务代理以实现多个云平台的聚合和简单集成为主,能够为云消费者提供单点集中管理多云的服务。设计并实现了一个... 公有云服务市场竞争日趋激励,在行业、地域、功能、性能等方面呈现出多样性和复杂性,催生了云服务代理市场的繁荣。主流云服务代理以实现多个云平台的聚合和简单集成为主,能够为云消费者提供单点集中管理多云的服务。设计并实现了一个基于开源多云管理项目Lib Cloud的云代理系统,该系统聚合了Open Stack私有云、AWS公有云和天翼云,使得用户能够在同一界面操作这些云平台的云主机,简化了用户对不同云平台的使用。 展开更多
关键词 云服务代理 云代理 multicloud libcloud
下载PDF
基于经纪人的多云访问控制模型研究 被引量:2
4
作者 赵鹏 吴礼发 洪征 《计算机科学》 CSCD 北大核心 2019年第11期123-129,共7页
多云(Multicloud)无需改变提供商的技术方案及运营方式,以独立于提供商的方式自由组合云资源,是一种认可度较高、具有重要推广价值的互联云模型。云经纪人支持向云提供商和云用户提供透明服务,按需组合多个云提供商的资源,降低了跨云协... 多云(Multicloud)无需改变提供商的技术方案及运营方式,以独立于提供商的方式自由组合云资源,是一种认可度较高、具有重要推广价值的互联云模型。云经纪人支持向云提供商和云用户提供透明服务,按需组合多个云提供商的资源,降低了跨云协作难度、提供商锁定风险和用户成本开销。然而,云提供商间的访问控制策略的异构性和信任机制的缺乏,极易造成隐私泄露和数据丢失等安全隐患,严重影响了多云的推广应用。文中综合考虑信任、上下文和服务等级协议(SLA)等因素,提出了基于经纪人的多云访问控制模型(MC-ABAC)。首先,构建了多云访问控制模型结构,该结构由虚拟资源管理器(VRM)、访问控制管理器(ACM)和云访问控制经纪人(CACB)等模块组成;其次,设计了多云访问控制模型,该模型定义了主体、资源、环境和操作等,形式化描述了信任、上下文、SLA和授权策略等,实现了云提供商信任度量和跨云的授权;再次,设计了多云访问控制的工作流程,包括从本地提供商访问多云的工作流程和从CACB访问多云的工作流程;最后,利用CloudSim 4.0和OpenAZ搭建多云访问控制环境,验证该模型的请求成功率和响应时间等可用性指标。实验结果表明,当正常使用且请求数量较大时,该模型的请求成功率比ABAC模型提升了18%左右,且响应时间性能优于ABAC模型。 展开更多
关键词 多云 云经纪人 访问控制 信任管理 服务等级协议 上下文信息
下载PDF
上一页 1 下一页 到第
使用帮助 返回顶部