Unlock instant, AI-driven research and patent intelligence for your innovation.

A multi-tenant access control method and device

An access control and access information technology, applied in the field of data security, can solve problems such as RBAC security risks, and achieve the effect of improving security and improving security

Active Publication Date: 2021-07-16
ZTE CORP
View PDF4 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] The present invention provides a method and device for multi-tenant access control, which are used to solve the problem that existing RBAC grants certain security risks to tenants

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A multi-tenant access control method and device
  • A multi-tenant access control method and device
  • A multi-tenant access control method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] The present invention will be described in further detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

[0026] An embodiment of the present invention provides an access control method. figure 1 is a flowchart of an access control method according to an embodiment of the present invention.

[0027] Step S110, acquiring attributes corresponding to each role.

[0028] In this embodiment, the attribute is the information of the operation authority. For example: the attribute is the unique code of the operation authority.

[0029] The attribute corresponding to the role refers to the operation permission corresponding to the role.

[0030] Pre-set role pool and attribute pool. A role pool is a collection of roles. An attribute pool is a collection of attributes.

[0031] According to the attri...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a multi-tenant access control method and device. The method includes: acquiring the attributes corresponding to each role; clustering the roles corresponding to the same attributes into a task group; generating corresponding access for each task group according to the attributes corresponding to the roles in each task group Information, so as to use the access information corresponding to the task group to obtain the operation authority of the resource. The invention manages each role by grouping task groups, generates access information for the task groups, obtains resource operation authority through the access information, and improves the security of authorization. Furthermore, the present invention can assign fine-grained permissions to roles, and after the roles are assigned to users, the user's access requests can be managed uniformly, which improves the security of cloud services and the effectiveness of system access.

Description

technical field [0001] The present invention relates to the technical field of data security, in particular to a multi-tenant access control method and device. Background technique [0002] Cloud computing is based on the Internet to provide processing, storage, infrastructure and software services of large-scale resource pools to users, so as to realize low-cost, automated, fast provision and flexible IT services. Enterprises can reduce operating costs by leasing software and hardware services provided by cloud computing, that is, cloud services. The cloud service provider leases the same instance to different tenants, that is, a multi-tenant application. Tenants store and process data through a cloud service provider that is not fully trusted, and there is a risk of tenant information being leaked. [0003] Therefore, the main problem faced by cloud services is access control, and it is necessary to effectively control the operation authority of tenants to protect the inf...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/06H04L63/0815H04L63/0876H04L63/0892H04L63/10H04L67/10H04L65/40
Inventor 童遥申光
Owner ZTE CORP