Self-adaptive cloud access control method based on dynamic authorization mechanism

An access control and dynamic authorization technology, applied in electrical components, transmission systems, etc., to solve problems such as the inability to adaptively select application services

Active Publication Date: 2016-08-17
浙江刨子科技有限公司
View PDF6 Cites 48 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] In order to overcome the problems of tight coupling and staticity in traditional access control methods, and the inability to self-adaptively select application services according to user behavior, the present invention provides an adaptive access control system based on a dynamic authorization mechanism with high security and reliability. Cloud service access control method

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Self-adaptive cloud access control method based on dynamic authorization mechanism
  • Self-adaptive cloud access control method based on dynamic authorization mechanism
  • Self-adaptive cloud access control method based on dynamic authorization mechanism

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0071] The present invention will be further described below in conjunction with the accompanying drawings.

[0072] refer to Figure 1 ~ Figure 4 , an adaptive cloud service access control method based on a dynamic authorization mechanism, the cloud access control method comprising the following steps:

[0073] 1) Before the cloud service can be accessed, the administrator Mana needs to verify the cloud service CS at the cloud certification center CCC x Configure and add the access address of the cloud service add x , the reputation threshold to allow access Provide user authentication and other services ser{Login...};

[0074] 2) The service registration center adds a trusted authentication module TAM to each registered cloud service, intercepts the service access request of the cloud user, and verifies the authentication information of the cloud user and the cloud service access token CSAT u to determine whether cloud users are allowed to access;

[0075] 3) The cloud...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a self-adaptive cloud service access control method based on a dynamic authorization mechanism. Credibility modelling of user behaviours is carried out at first; the access permissions of cloud users are hierarchically described by using inheritance idea; a cloud authentication centre constructs the mapping relationship of a model according to the historical creditworthiness and role trees of the users, gives different cloud user identity tokens, and recommends cloud services allowed to access to the users; the cloud authentication centre dynamically adjusts the comprehensive creditworthiness of the users by monitoring change of the user behaviours in real time, such that the credibility of the users is judged; if the users are credible, the cloud authentication centre gives the cloud service access tokens to the users; the cloud users obtain services by the cloud service access tokens; and otherwise, access is refused. The self-adaptive cloud service access control method based on the dynamic authorization mechanism provided by the invention has relatively high security and reliability.

Description

technical field [0001] The invention relates to the field of cloud service access control, in particular to a security mechanism for judging whether a certain user has a specific operation authority for a certain cloud service in a cloud environment. Background technique [0002] Cloud computing is a new type of computing after distributed computing, grid computing, and peer-to-peer computing. Cloud computing distributes computing tasks on a resource pool composed of a large number of computers, enabling various application systems to obtain computing power, storage space, and information services as needed. It has on-demand services, fast elastic architecture, virtualized resource pools, and measurable services. Features. [0003] With the rapid development of cloud computing, cloud services are becoming more and more abundant. According to the accessibility of cloud services, it can be divided into public cloud and private cloud. The flexibility of the public cloud enab...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/0815H04L63/0823H04L63/0892H04L63/10H04L67/10
Inventor 陆佳炜吴斐斐徐俊肖刚高飞李杰
Owner 浙江刨子科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap