论文部分内容阅读
针对基于角色的访问控制模型在云计算跨域访问方面安全性不足的问题,在基于角色映射技术的基础上引入网络中跳数的定义,提出一种基于跳数的访问控制策略以解决在角色映射过程中所产生的权限渗透问题.从访问过程和形式化定义两方面对该策略进行了研究,并进行了仿真性能实验.与其他策略进行了比较,该策略通过在角色集和用户集中添加相应的字段来实现对跨域访问距离的细粒度控制,因此并未产生新的集合,进行跨域访问时也无须建立任何的镜像角色.实验结果表明该策略与传统跨域访问策略相比具有更高的效率以及更低的存储消耗.
Aiming at the problem of lack of security in the cross-domain access of cloud computing based on the role-based access control model, this paper introduces the definition of the number of hops in the network based on role mapping technology and proposes a hops-based access control strategy to solve the problem This paper studies the policy from the process of access and the formal definition and carries out the simulation performance experiment.Compared with other strategies, Corresponding fields to achieve fine-grained control of the cross-domain access distance, no new set is generated and no mirror role is required to establish cross-domain access.Experimental results show that this strategy has the following advantages over traditional cross-domain access policies: Higher efficiency and lower storage consumption.