Security access control framework for mutual access between distributed cloud environments and access method thereof

A security access control and access control technology, applied in the field of cloud data processing, to prevent interference, prevent channel attacks, and ensure access security.

What is AI technical title?
AI technical title is built by PatSnap AI team. It summarizes the technical point description of the patent document.
A security access control and access control technology, applied in the field of cloud data processing, to prevent interference, prevent channel attacks, and ensure access security.

CN105049408AInactive Publication Date: 2015-11-11HEFEI CITY COULD DATA CENT

3 Cites 3 Cited by

Image

Smart Image Click on the blue labels to locate them in the text.

Viewing Examples

Smart Image

Examples

Experimental program

Comparison scheme

Effect test

Embodiment Construction

[0039] In order to have a further understanding and understanding of the structural features of the present invention and the achieved effects, the preferred embodiments and accompanying drawings are used for a detailed description, as follows:

[0040] Such as figure 2As shown, the security access control architecture under the distributed cloud environment of the present invention, wherein the distributed cloud environment A includes cloud application server A1, cloud platform server A2, virtual infrastructure server A3 and physical layer device A4. Among them, the physical layer device A4 is a cloud service provider, which provides a specific physical layer device basis. The virtual infrastructure server A3 is IaaS, that is, Infrastructure-as-a-Service (Infrastructure-as-a-Service), sometimes also called Hardware-as-a-Service. When trying to run some enterprise applications on the office or company's website, it is necessary to buy a server or other expensive hardware to ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine

Login to View More

PUM

Login to View More

Abstract

The invention relates to a security access control framework for mutual access between distributed cloud environments and an access method thereof. Compared with the prior art, the security access control framework provided by the invention solves a defect that a distributed multi-cloud system access control framework is unavailable. The security access control framework further comprises a virtual resource manager A and a distributed access control module A, wherein the virtual resource manager A is used for providing and configuring virtual resources and maintaining a virtual demand resource table associated with configuration thereof, and the virtual demand resource table comprises local and remote resources in the whole virtual global catalog service library. A service-level protocol module is used for carrying out role mapping between different could systems, maps a local cloud role to a role in a remote cloud, and allows to access all allowed mapping tasks. A distributed cloud environment A and a distributed cloud environment B carry out cloud system crossing access through the service-level protocol module. The security access control framework provided by the invention can ensure secure interoperations in the cloud systems, and guarantees the access security in the cloud environment.

Description

technical field [0001] The present invention relates to the technical field of cloud data processing, in particular to a security access control framework and an access method for mutual access between distributed cloud environments. Background technique [0002] The growing popularity of cloud computing has drawn strong attention to its security challenges, especially in this regard due to resource sharing. Due to the sharing of physical resources in potential dishonest leases, the result will increase the risk of channel attacks, resulting in cloud computing characterized by multi-tenant operation and virtualization, which presents its unique security and access control challenges. Additionally, interference between multi-tenant computing can lead to unauthorized traffic. At the same time, the diversity of services in the cloud computing environment also requires different levels of granularity in access control. Inappropriate or unreliable authorization mechanisms can s...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine

Login to View More

Application Information

Patent Timeline

11 Nov 2015

Publication

CN105049408A

IPC: H04L29/06; H04L29/08

CPC: H04L63/10; H04L67/10

Inventors: 刘胜军; 李晓洁