摘要
针对当前云计算访问控制中角色不能随着时间动态改变的问题,提出了一种基于用户行为信任的云计算访问控制模型。该模型根据综合用户的直接和间接信任值得到的信任值确定其信任等级,激活其所对应的角色以及赋予该角色一定的访问权限,提供请求的资源,从而达到访问控制的目的;并给出了基本组成元素和实现过程。实验结果表明,所提出的访问控制模型能够提高用户行为信任值评估的客观性,能够抵抗各类非法用户访问云计算,增强了云计算中资源的安全性和可靠性。
Considering the problem that the role of the user cannot be changed dynamically over time in access control model of cloud computing,a new access control model was proposed based on trust of users' behaviors for cloud computing.The trust level was determined according to the trust value synthesized from direct trust and recommendation trust,the roles were activated and granted permission to access resources,then services provided the requested resources,so as to achieve the purposes of access control.Besides,the basic elements and implementation process were proposed.The experimental results demonstrate that the proposed model can improve the objectivity of the trust evaluation of users' behaviors,and it can resist all illegal users access to cloud computing and enhance reliability and security of the data in cloud computing.
出处
《计算机应用》
CSCD
北大核心
2014年第4期1051-1054,共4页
journal of Computer Applications
关键词
信息安全
云计算
访问控制
基于角色的访问控制
用户行为
信任
information security
cloud computing
access control
Role-Based Access Control (RBAC)
user behavior
trust
