摘要
云计算继承和融合了众多技术,并结合具体应用进行了突破性创新,已成为当前研究的重点和热点.身份认证与资源授权是确保云计算安全的前提,其主要内容涉及云用户与云服务之间以及云平台中不同系统之间的访问与控制.在对云计算信息基础架构进行简要介绍的基础上,针对云计算环境中统一身份认证的特点和要求,综合分析了SAML2.0、OAuth2.0和OpenID2.0等技术规范的功能特点,提出了一种开放标准的云计算身份认证模型,为云计算中逻辑安全域的形成与管理提供了参考.
Cloud computing is a groundbreaking applications on the basis of a number of technologies, has become the focus of the current application and research. Among them, the authentication and authorization between cloud users and cloud services, and between different systems of cloud computing platform is a precondition for ensuring security of cloud computing. This paper briefly introduces information infrastructure on the basis of authentication and authorization for cloud computing, comprehensive analysis of the SAML2.0, OAuth2.0 and OpenID2.0 technical specifications and other features. On this basis, this paper presents an identity authentication model of cloud computing with open standard. This model provides a reference for the formation and management of cloud computing logical security domain.
出处
《数学的实践与认识》
北大核心
2017年第6期116-126,共11页
Mathematics in Practice and Theory
基金
公安技术学(江苏省高等学校重点学科建设专项资金资助)
2013年江苏省高等教育教改研究立项课题(2013JSJG150
2105JSJG148)
江苏省社会公共安全科技协同创新项目
江苏高校品牌专业建设工程资助项目(TAPP)
国家社会科学基金(13BTQ046)
关键词
云计算
身份认证
授权
单点登录(SSO)
安全域
cloud computing
authentication
authorization
Single Sign On(SSO)
security domain
