Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Wide-area virtual data space account dynamic mapping mechanism and data security management and control method

A virtual data, dynamic mapping technology, applied in the computer field, can solve the problems of different implementation complexity, lack of data isolation and secure access, different security risks, etc., to achieve isolation and security management, improve security, and realize security management. Effect

Active Publication Date: 2020-12-01
BEIHANG UNIV
View PDF4 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The method mainly has the following three points: (1) The service provider separates the data of the tenant by cutting the database, storage area, structure description or table. If necessary, symmetric or asymmetric encryption is required to protect sensitive data, but different isolation practices have different implementation complexities and different security risks
(2) Suppliers can use the application mounting environment to separate the application operating environments of different tenants on the process, and protect the application operating environments of each tenant when cross-process communication is not possible, but this requires the service provider to provide reasonable computing environment
SAAS technology is mainly aimed at the isolation of user space under the one-to-one account mapping mechanism, but it lacks the consideration of data isolation and secure access under the many-to-many account dynamic mapping mechanism

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Wide-area virtual data space account dynamic mapping mechanism and data security management and control method
  • Wide-area virtual data space account dynamic mapping mechanism and data security management and control method
  • Wide-area virtual data space account dynamic mapping mechanism and data security management and control method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0047] Combined with the accompanying drawings below ( Figure 1-Figure 5 ) The present invention is described in further detail.

[0048] Such as figure 1 as shown in figure 1 Shown is the implementation flowchart of the present invention. Include the following steps:

[0049] 1) The client registers a wide-area virtual data space account;

[0050] 2) Log in to the wide-area virtual data space and generate account data;

[0051] 3) access to wide-area virtual data space account data;

[0052] 4) Cancel account data space;

[0053] 5) Based on the virtual data space account dynamic mapping mechanism, through the LDAP directory service, customize the directory tree to isolate the account data space;

[0054] 6) Through the division of account data space and authority setting, the security management of account data space is realized.

[0055] The mechanism of virtual data space dynamic account mapping is as follows: figure 2 As shown, by generating a local account map...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a wide-area virtual data space account dynamic mapping mechanism and a data security management and control method. Based on a global unified account and supercomputing center local account diversified mapping mechanism, a set of account dynamic mapping mechanism is realized, and based on the account dynamic mapping mechanism, account data space isolation and safety access are realized through account data space isolation and authority control. Firstly, a set of dynamic account mapping mechanism is realized by researching a mapping relationship between a global unified account and a local account, the problem of balanced mapping between a virtual account and the local account is solved, and unified management and access of the global account are supported; secondly,based on an account dynamic mapping mechanism, isolation and space authority management are carried out through data space, and safety control over user space is achieved. According to the method, theproblem of unbalanced distribution of the virtual data space account and the local account of the supercomputing center is solved, and safe access of the user space is realized through isolation andauthority management of the user space.

Description

technical field [0001] The invention discloses a wide-area virtual data space account dynamic mapping mechanism and data security management and control method, relates to a cross-domain virtual account mapping mechanism and account data security management and control, and belongs to the field of computer technology. Background technique [0002] At present, in the national high-performance computing environment, each supercomputing center has an independent account management system, which covers various forms such as tokens, virtual private networks, and access keys, and is independent of each other between supercomputing centers. Each management method brings challenges to the unified account security management and control of multiple supercomputing centers in a wide-area environment. For the unified management of storage resources in multiple supercomputing centers, it is necessary to design a set of reasonable cross-domain virtual data space to manage and schedule the...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06G06F16/22
CPCG06F16/2246H04L63/02H04L63/10H04L63/101H04L63/20
Inventor 肖利民苗冠秦秦广军霍志胜宋尧周汉杰徐耀文王超波常佳辉张晨浩
Owner BEIHANG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com