摘要
针对云计算环境下基于信任访问控制模型不能动态适应网络环境变化的问题,提出一种基于数据安全的动态访问控制模型。首先,采用关联规则的方法对用户历史访问行为进行分析,提取用户频繁访问路径并创建访问行为数据库;然后,基于实时访问行为获取用户实时状态信息,利用"时空切片"的方式构建具有时空敏感性的可信度评估模块;最后,结合动态访问授权管理模块和访问控制规则模块实现基于用户访问行为的动态访问控制。实验证明,所提出的模型较传统的基于信任访问控制模型具有更高的安全性。
To solve the problem that the trust-based access control model in cloud computing environment can not adapt to the changes of network environment dynamically, a dynamic access control model based on data security is proposed. Firstly, the association rule method is used to analyze the user’s historical access behavior, extract the user’s frequent access path and create the access behavior database. Then, the user’s real-time state information is obtained based on the real-time access behavior, and a credibility evaluation module with spatiotemporal sensitivity is established by using the spatiotemporal slice. Finally, combining the dynamic access authorization management module and access control rule module, the dynamic access control is realized based on user access behavior. Experiments show that the proposed model has higher security than the traditional trust-based access control model.
作者
段炼
朱龙
岳岩岩
吕正林
汪帆
李飞龙
DUAN Lian;ZHU Long;YUE Yanyan;LV Zhenglin;WANG Fan;LI Feilong(China Mobile Internet Technology Co.,Ltd.,Shenzhen 51804&China)
出处
《移动通信》
2021年第6期99-102,共4页
Mobile Communications
关键词
用户访问行为
时空切片
时空敏感性
动态访问控制
user access behavior
spatiotemporal slice
spatiotemporal sensitivity
dynamic access control
