Security access control framework under distributed cloud environment and access method thereof

A security access control and access control technology, which is applied in the field of cloud data processing to prevent channel attacks, prevent interference, and ensure access security.
CN105049409AInactive Publication Date: 2015-11-11HEFEI CITY COULD DATA CENT
3 Cites 6 Cited by

Patent Information

Authority / Receiving Office
CN ยท China
Patent Type
Applications(China)
Current Assignee / Owner
HEFEI CITY COULD DATA CENT
Publication Date
2015-11-11
Estimated Expiration
Not applicable ยท inactive patent

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention relates to a security access control framework under a distributed cloud environment and an access method thereof, which solves a defect of unavailability in allusion to a distributed multi-cloud system access control framework. The security access control framework under the distributed cloud environment comprises virtual resource manager A and a distributed access control module A, wherein the virtual resource manager A is used for providing and configuring virtual resources and maintaining a virtual demand resource table associated with the configuration thereof, and the virtual demand resource table comprises local and remote resources in the whole virtual global catalog service library; the distributed access control module A is used for strengthening an access control policy, and comprises a policy decision point, a policy strengthening point and a policy library; and a cloud application server A, a cloud platform server A and a virtual infrastructure server A are all provided with the virtual resource manager A and the distributed access control module A. Provided by the invention is a method for preventing channel attack and no interference in a multi-tenant or resource virtual environment, and a safe and reliable distributed cloud computing infrastructure is established.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the technical field of cloud data processing, in particular to a security access control framework and an access method in a distributed cloud environment. Background technique

[0002] The growing popularity of cloud computing has drawn strong attention to its security challenges, especially in this regard due to resource sharing. Due to the sharing of physical resources in potential dishonest leases, the result will increase the risk of channel attacks, resulting in cloud computing characterized by multi-tenant operation and virtualization, which presents its unique security and access control challenges. Additionally, interference between multi-tenant computing can lead to unauthorized traffic. At the same time, the diversity of services in the cloud computing environment also requires different levels of granularity in access control. Inappropriate or unreliable authorization mechanisms can significantly increase the risk...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More