Unlock instant, AI-driven research and patent intelligence for your innovation.

Cross-cloud resource sharing system and method based on distributed information flow control

A technology for sharing system and information flow, applied in the field of cross-cloud resource sharing system based on distributed information flow control, can solve the problem of coarse granularity of control objects, achieve the effect of confidentiality and integrity protection, and low system overhead

Active Publication Date: 2020-04-10
SUN YAT SEN UNIV
View PDF3 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In terms of access control technology, role-based access control (RBAC) and attribute-based (ABAC) access control methods are mainly used to map the attributes or roles of cloud service users to the target cloud, thereby realizing the data resource sharing function, but the control Object granularity is coarser

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Cross-cloud resource sharing system and method based on distributed information flow control
  • Cross-cloud resource sharing system and method based on distributed information flow control
  • Cross-cloud resource sharing system and method based on distributed information flow control

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0067] The first aspect of the present invention provides a cross-cloud resource sharing system based on distributed information flow control, as shown in Figure 1, including a registration management module, a data management module, an identity authentication module, an information flow control module, a log database, and a log audit module;

[0068] The registration management module is used to complete the resource request cloud and provide cloud information registration;

[0069] The identity authentication module is used to complete resource request cloud and cloud identity verification when resources are shared;

[0070] The data management module is used to store the owned resource directory and data mapping relationship submitted by the cloud when registering, so as to facilitate query and determine the cloud of resources according to the parameters sent by the request cloud, and then assist in completing cloud identity authentication;

[0071] The information flow m...

Embodiment 2

[0088] In the second aspect of the present invention, a cross-cloud resource sharing method based on distributed information flow control is applied to the above-mentioned system, such as Figure 7 , including the following steps:

[0089] S1. The resource request cloud initiates a registration request, and the request message is forwarded to the registration management module through the network platform. The registration management module analyzes the request message to determine whether to agree to the registration. If the registration is approved, the registration operation is performed and the resource information contained in the request cloud is stored in the Data management module, and the registration management log information generated at the same time is stored in the log database;

[0090] S2. The resource information of the request cloud stored by the data management module is stored in a certain data structure and sent to the identity authentication module to pe...

Embodiment 3

[0099] A cross-cloud resource sharing method based on distributed information flow control provided in this embodiment is consistent with Embodiment 2, and only each step is further limited.

[0100] S1. The resource request cloud initiates a registration request, and the request message is forwarded to the registration management module through the network platform. The registration management module analyzes the request message to determine whether to agree to the registration. If the registration is approved, the registration operation is performed and the resource information contained in the request cloud is stored in the Data management module, and the registration management log information generated at the same time is stored in the log database;

[0101] S2. The resource information of the request cloud stored by the data management module is stored in a certain data structure and sent to the identity authentication module to perform identity authentication on the reso...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

the invention provides a cross-cloud resource sharing system and method based on distributed information control, the fine-grained tracking and control over cloud data resources are achieved, the process safety of data sharing is strictly protected from the aspects of confidentiality and integrity, the system expenditure is small, and extra storage expenditure cannot be caused.

Description

technical field [0001] The present invention relates to the field of cross-cloud resource sharing, and more specifically, to a cross-cloud resource sharing system and method based on distributed information flow control. Background technique [0002] As a new computing model, cloud computing has brought great changes to people's lives and provided many conveniences. However, in the complex network and cloud environment, a large amount of user data faces various security threats, among which the leakage of user privacy data and sensitive information will cause unacceptable economic losses to enterprises and individuals, which will seriously hinder the rapid development of cloud computing. develop. At present, cloud data privacy protection is mainly focused on privacy protection in the cloud, mainly involving technologies such as cloud identity authentication, access control, security isolation, virtualization, information flow control, secure computing, and secure storage, e...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/60G06F21/62G06F21/55
CPCG06F21/604G06F21/6218G06F21/552G06F2221/2141
Inventor 金舒原鲁金钿陈浩
Owner SUN YAT SEN UNIV