云计算下基于用户行为信任的访问控制模型

doi:10.11772/j.issn.1001-9081.2014.04.1051

计算机应用 ›› 2014, Vol. 34 ›› Issue (4): 1051-1054.DOI: 10.11772/j.issn.1001-9081.2014.04.1051

云计算下基于用户行为信任的访问控制模型

张凯,潘晓中

武警工程大学电子技术系,西安 710086

收稿日期:2013-10-09 修回日期:2013-11-19 出版日期:2014-04-01 发布日期:2014-04-29
通讯作者: 张凯
作者简介:张凯(1990-),男,山西长治人,硕士研究生,主要研究方向:网络安全、云计算;
潘晓中(1964-),男,陕西西安人,教授,主要研究方向:网络安全、密码学。

Access control model based on trust of users' behavior in cloud computing

ZHANG Kai,PAN Xiaozhong

Department of Electronics, Engineering University of Armed Police Force, Xi'an Shaanxi 710086, China

Received:2013-10-09 Revised:2013-11-19 Online:2014-04-01 Published:2014-04-29
Contact: ZHANG Kai

摘要/Abstract

摘要：

针对当前云计算访问控制中角色不能随着时间动态改变的问题，提出了一种基于用户行为信任的云计算访问控制模型。该模型根据综合用户的直接和间接信任值得到的信任值确定其信任等级，激活其所对应的角色以及赋予该角色一定的访问权限，提供请求的资源，从而达到访问控制的目的；并给出了基本组成元素和实现过程。实验结果表明，所提出的访问控制模型能够提高用户行为信任值评估的客观性，能够抵抗各类非法用户访问云计算，增强了云计算中资源的安全性和可靠性。

Abstract:

Considering the problem that the role of the user cannot be changed dynamically over time in access control model of cloud computing, a new access control model was proposed based on trust of users' behaviors for cloud computing. The trust level was determined according to the trust value synthesized from direct trust and recommendation trust, the roles were activated and granted permission to access resources, then services provided the requested resources, so as to achieve the purposes of access control. Besides, the basic elements and implementation process were proposed. The experimental results demonstrate that the proposed model can improve the objectivity of the trust evaluation of users' behaviors, and it can resist all illegal users access to cloud computing and enhance reliability and security of the data in cloud computing.

中图分类号:

TP393.08

张凯潘晓中. 云计算下基于用户行为信任的访问控制模型[J]. 计算机应用, 2014, 34(4): 1051-1054.

ZHANG Kai PAN Xiaozhong. Access control model based on trust of users' behavior in cloud computing[J]. Journal of Computer Applications, 2014, 34(4): 1051-1054.

参考文献

［1］MELL P, GRANCE T. The NIST definition of cloud computing (draft) ［J］. NIST Special Publication, 2011, 800(145): 7.
［2］FENG D, ZHANG M, ZHANG Y, et al.Study on cloud computing security ［J］. Journal of Software, 2011, 22(1): 71-83. (冯登国,张敏,张妍,等.云计算安全研究［J］.软件学报,2011,22(1):71-83.)
［3］LIN G, HE S, HUANG H, et al.Access control security model based on behavior in cloud computing environment ［J］. Journal on Communications, 2012, 33(3): 59-66. (林果园,贺珊,黄皓,等.基于行为的云计算访问控制安全模型［J］.通信学报,2012,33(3):59-66.)
［4］ZHAO M, YAO Z. Access control model based on RBAC in cloud computing ［J］. Journal of Computer Applications, 2012, 32(S2): 267-270. (赵明斌,姚志强.基于RBAC的云计算访问控制模型［J］.计算机应用,2012,32(S2):267-270.)
［5］ZHU Y, ZHANG J. Research on access control of SaaS platform ［J］.Computing Engineering and Applications, 2011, 47(24): 12-16. (朱养鹏,张璟.SaaS平台访问控制研究［J］.计算机工程与应用,2011,47(24):12-16.)
［6］MA Q, AI Z. Access control models for cloud computing ［J］. Computing Engineering and Design, 2012,33(12): 4487-4492. (马强,艾中良.面向云计算环境的访问控制模型［J］.计算机工程与设计,2012,33(12):4487-4492.)
［7］JIN S, CAI H, JIANG L. Research on multi-tenant service oriented access control model ［J］. Application Research of Computers, 2013, 30(7): 2136-2139. (金诗剑,蔡鸿明,姜丽红.面向服务的多租户访问控制模型研究［J］.计算机应用研究,2013,30(7): 2136-2139.)
［8］FU X, WU Z, YANG P. Trust degree and attributes based RBAC authorization model ［J］. Application Research of Computers, 2011, 28(2): 742-745. (符湘萍,吴振强,杨蓓.一种基于可信度和属性的 RBAC授权模型［J］.计算机应用研究,2011,28(2):742-745.)
［9］WU X, ZHANG R, ZENG B, et al.A trust evaluation model for cloud computing ［J］. Procardia Computer Science, 2013, 17: 1170-1177.
［10］SANDHU R S, COYNE E J, FEINSTEIN H L, et al.Role-based access control models ［J］. IEEE Computer, 1996, 29(2): 38-47.
［11］TIAN L-Q, LIN C, NI Y. Evaluation of user behavior trust in cloud computing ［C］// ICCASM 2010: Proceedings of the 2010 International Conference on Computer Application and System Modeling. Piscataway: IEEE, 2010: V7-567-V7-572.
［12］ZHOU X, YU T. Defense system model based on trust for cloud computing ［J］. Journal of Computing Applications, 2011, 31(6): 1531-1535. (周茜,于炯.云计算下基于信任的防御系统模型［J］.计算机应用,2011,31(6):1531-1535.)
［13］GUO S, TIAN L, SHEN X. Research on FAHP method in user behavior trust computation ［J］. Computer Engineering and Applications, 2011, 47(12): 59-61.(郭树凯,田立勤,沈学利.FAHP在用户行为信任评估中的研究［J］.计算机工程与应用,2011,47(12):59-61.)
［14］YI T, TIAN L, HU Z, et al.AHP-based user behavior evaluation method in trust worthy network ［J］. Computing Engineering and Applications, 2007, 43(19): 123-126. (冀铁果,田立勤,胡志兴,等.可信网络中一种基于AHP的用户行为评估方法［J］.计算机工程与应用,2007,43(19):123-126.)

[1]	毕文婷林海涛张立群. 基于多阶段演化信号博弈模型的移动目标防御决策算法[J]. 计算机应用, 0, (): 0-0.
[2]	朱玉娜, 张玉涛, 闫少阁, 范钰丹, 陈韩托. 基于半监督子空间聚类的协议识别方法[J]. 计算机应用, 2021, 41(10): 2900-2904.
[3]	肖跃雷, 邓小凡. 基于证书的有线局域网安全关联方案改进与分析[J]. 计算机应用, 2021, 41(7): 1970-1976.
[4]	杜心雨, 王化群. LTE-A网络中基于动态组的有效的身份认证和密钥协商方案[J]. 计算机应用, 2021, 41(6): 1715-1722.
[5]	王垚, 孙国梓. 基于聚类和实例硬度的入侵检测过采样方法[J]. 计算机应用, 2021, 41(6): 1709-1714.
[6]	葛丽娜, 胡雨谷, 张桂芬, 陈园园. 云计算环境基于客体属性匹配的逆向混合访问控制方案[J]. 计算机应用, 2021, 41(6): 1604-1610.
[7]	陈权李莉陈永乐段跃兴. 面向深度学习可解释性的对抗攻击算法[J]. 计算机应用, 0, (): 0-0.
[8]	郭帅, 苏旸. 基于数据流的加密流量分类方法[J]. 计算机应用, 2021, 41(5): 1386-1391.
[9]	张全龙, 王怀彬. 基于膨胀卷积和门控循环单元组合的入侵检测模型[J]. 计算机应用, 2021, 41(5): 1372-1377.
[10]	唐延强, 李成海, 宋亚飞. 基于改进粒子群优化和极限学习机的网络安全态势预测[J]. 计算机应用, 2021, 41(3): 768-773.
[11]	杭梦鑫, 陈伟, 张仁杰. 基于改进的一维卷积神经网络的异常流量检测[J]. 计算机应用, 2021, 41(2): 433-440.
[12]	欧彬利, 钟夏汝, 代建华, 杨田. 基于变精度覆盖粗糙集的入侵检测方法[J]. 计算机应用, 2020, 40(12): 3465-3470.
[13]	杨建喜, 张媛利, 蒋华, 朱晓辰. 边缘计算中基于深度Q网络的物理层假冒攻击检测方法[J]. 计算机应用, 2020, 40(11): 3229-3235.
[14]	陈旖, 张美璟, 许发见. 基于一维卷积神经网络的HTTP慢速DoS攻击检测方法[J]. 计算机应用, 2020, 40(10): 2973-2979.
[15]	赵国新, 丁若凡, 游建舟, 吕世超, 彭锋, 李菲, 孙利民. 基于工控业务仿真的高交互可编程逻辑控制器蜜罐系统设计实现[J]. 计算机应用, 2020, 40(9): 2650-2656.

云计算下基于用户行为信任的访问控制模型

Access control model based on trust of users' behavior in cloud computing

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics