摘要
分析了传统的单域分布式存储服务中几种常用的访问控制模型 .针对广域存储虚拟化的需求 ,指出传统模型的不足之处 ,进而引出了存储服务点的概念 .提出通过使用存储服务点结合基于票据的访问控制的形式来实现广域范围类的单一用户身份认证并提高存储服务的效率 .在此基础上 。
After analyzing the traditional access control models in single-domain distributed storage system, the drawbacks of such models was pointed out when being used in multi-domain. The concept of storage service point (SSP) was introduced. Based on SSP, an access control model integrating SSP with ticket-based access control was given which can be used to implement single-sign-on and improve the efficiency of storage service in wide-area storage. By adding some entries specifically to normal access control list and using it along with ticket-based access control, the QoS of storage service was achieved.
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2004年第1期38-40,共3页
Journal of Huazhong University of Science and Technology(Natural Science Edition)
基金
国家高技术研究发展计划资助项目 (2 0 0 1AA1110 11)
国家杰出青年科学基金资助项目 (6 0 12 5 2 0 8)
关键词
存储虚拟化
访问控制列表
单一认证
存储服务点
storage virtualization
access control list
single sign on
storage service point