摘要
面对云计算环境中海量数据资源,文中提出基于分类分级数据的属性访问权限控制改进方法。根据分类分级特性描述数据从属类别,将大类别划分为多个子类别集合,形成层层分类的树形拓扑分类关系结构,依据数据分类范畴集和安全级别确定数据资源访问模式。基于分类分层访问控制方式,在数据属主提供隐私数据时,将数据资源进行加密并设定密文长度上传至云端存储,在域权威提供给用户授权私钥中含有属性集符合上述访问模式时可解密文件,从而实现数据访问权限控制过程。实验表明,运用文中方法可实现云环境下数据资源安全访问目的。
The improved method of attribute azimuth control based on classified and graded data is proposed in the virtual resource text of cloud computing data center. In the face of massive data resources in the cloud computing environment, according to the classification of characterization data of subordinate categories, categories will be divided into multiple sub set of classes, forming a tree topology classification relationship structure layer classification, basis set and security level data categories to determine the data access pattern classification;hierarchical access control based on the privacy of data in the data Lord, will encrypt the data resources and set the length of ciphertext is uploaded to the cloud storage, to provide users with authorization key attributes set in accordance with the above access mode can decrypt files in the domain of authority, so as to realize the data access control process. The experiment shows that the use of this method can achieve the purpose of secure access to data resources in the cloud environment.
作者
娄道国
李若斌
刘冰
张冬冬
Lou Daoguo;Li RuoBin;Liu Bing;Zhang Dongdong(Dalian University of Technology,Dalian 116000,China;State Grid Dalian Electric Power Supply Company,Dalian 116000,China)
出处
《科技通报》
2019年第1期169-172,共4页
Bulletin of Science and Technology
关键词
云计算
数据中心
虚拟化资源
访问权限
cloud computing
data center
virtualized resources
access rights
