For the constant distance spacing policy,the existing researches of the string stability focus on the single-predecessor information framework(SPIF) and predecessor-successor information framework(PSIF).The resear...For the constant distance spacing policy,the existing researches of the string stability focus on the single-predecessor information framework(SPIF) and predecessor-successor information framework(PSIF).The research results demonstrated that the string stability could not be guaranteed with the SPIF,and then the PSIF was proposed to resolve this string instability.But the issue,whether the string stability can be guaranteed when applying the PSIF,is still controversial.Meanwhile,most of the previous researches on the string stability were conducted without consideration of the parasitic time delays and lags.In this paper,the practical longitudinal vehicle dynamics model is built with consideration of the parasitic time delays and lags existing in the actuators,sensors or the communication systems.Secondly,the detailed theoretical analysis of string stability in frequency domain is conducted to demonstrate that the classical linear control laws can not ensure the string stability when applying both the symmetrical PSIF(SPSIF) and asymmetrical PSIF(APSIF).Thirdly,a control law,which adds the position and velocity information of the leading vehicle,is proposed to guarantee string stability for small/medium platoon,and the other control law,which adds the acceleration information of the controlled vehicle,is proposed to guarantee string stability for large platoon as well as small/medium platoon.Finally,the comparative simulation is conducted to confirm the conducted analysis and the proposed control laws.The conducted research completes the means to analyze the string stability in frequency domain,provides the parameters' reference for the design and implementation of the practical automatic following controllers,and improves the reliability and stability of the platoon of automatic vehicles.展开更多
Weighted factor is given to access eontrol policies to express the importanceof policy and its effect on access control decision. According to this weighted access controlframework, a trustworthiness model for aceess ...Weighted factor is given to access eontrol policies to express the importanceof policy and its effect on access control decision. According to this weighted access controlframework, a trustworthiness model for aceess request is also given. In this model, we give themeasure of trustworthiness factor to access request- by using some idea of uncertainty reasoning ofexpert system, present and prove the parallel propagation formula of request trustworthiness factoramong multiple policies, and get thefinal trustworthiness factor to decide whether authorizing. Inthis model, authorization decision is given according to the calculation of request trustworthinessfactor, which is more understandable, more suitable for real requirement and more powerfulforsecurity enhancement than traditional methods. Meanwhile the finer access control granularity isanother advantage.展开更多
Cloud computing is touted as the next big thing in the Information Technology (IT) industry, which is going to impact the businesses of any size and yet the security issue continues to pose a big threat on it. The sec...Cloud computing is touted as the next big thing in the Information Technology (IT) industry, which is going to impact the businesses of any size and yet the security issue continues to pose a big threat on it. The security and privacy issues persisting in cloud computing have proved to be an obstacle for its widespread adoption. In this paper, we look at these issues from a business perspective and how they are damaging the reputation of big companies. There is a literature review on the existing issues in cloud computing and how they are being tackled by the Cloud Service Providers (CSP). We propose a governing body framework which aims at solving these issues by establishing relationship amongst the CSPs in which the data about possible threats can be generated based on the previous attacks on other CSPs. The Governing Body will be responsible for Data Center control, Policy control, legal control, user awareness, performance evaluation, solution architecture and providing motivation for the entities involved.展开更多
In the paper, an iterative method is presented to the optimal control of batch processes. Generally it is very difficult to acquire an accurate mechanistic model for a batch process. Because support vector machine is ...In the paper, an iterative method is presented to the optimal control of batch processes. Generally it is very difficult to acquire an accurate mechanistic model for a batch process. Because support vector machine is powerful for the problems characterized by small samples, nonlinearity, high dimension and local minima, support vector regression models are developed for the optimal control of batch processes where end-point properties are required. The model parameters are selected within the Bayesian evidence framework. Based on the model, an iterative method is used to exploit the repetitive nature of batch processes to determine the optimal operating policy. Numerical simulation shows that the iterative optimal control can improve the process performance through iterations.展开更多
Initiated three decades ago,integrated design of controllers and fault detectors has continuously attracted research attention.The recent development of the unified control and detection framework with an observer-bas...Initiated three decades ago,integrated design of controllers and fault detectors has continuously attracted research attention.The recent development of the unified control and detection framework with an observer-based residual generator in its core gives a more general form of the previous works.Its applications to residual centred modelling of uncertain control systems,fault detection in feedback control systems with uncertainties,fault-tolerant control(FTC)as well as control performance degradation monitoring,detection and recovery are introduced.In conclusion,some future perspectives are proposed.展开更多
In view of the currant status of the quality risk control of livestock products, the differences between the quality, safety and risk of the livestock products were pointed clearly; the derivative mechanism model of t...In view of the currant status of the quality risk control of livestock products, the differences between the quality, safety and risk of the livestock products were pointed clearly; the derivative mechanism model of the quality risk was studied; the risk system of livestock products was established; and the types of controllable risk were identified. On this basis, the design principles of risk control framework were established. Then the modular system of risk control was constructed and the attributes of production system were detailed into the describable indicators of risk control based on the thrae-dimensional risks.展开更多
Aiming at the tele-operation instability caused by time delay of interuet information transfer for internet based tele-robotics, this paper proposes a novel control framework for internet based tele-roboties, which ca...Aiming at the tele-operation instability caused by time delay of interuet information transfer for internet based tele-robotics, this paper proposes a novel control framework for internet based tele-roboties, which can guarantee the non-distortion-transfer of control information and reduce the difference of action time between the local simulated virtual robot and the remote real robot. This framework is insensitive to the inherent interact time delay, and differs from other tele-robotics systems that try to use some mathematic models to describe the internet delay or take some assumptions. In order to verify the framework, a 4-DOF fischertechnik industry robot tele-operation system has been developed using the new proposed framework. Experimental results demonstrate the applicable performance of the new framework. The framework is open structured and can be applied to other general purposed tele-operation systems.展开更多
This paper proposes a two-step general framework for reversible data hiding(RDH)schemes with controllable contrast enhancement.The first step aims at preserving visual perception as much as possible on the basis of ac...This paper proposes a two-step general framework for reversible data hiding(RDH)schemes with controllable contrast enhancement.The first step aims at preserving visual perception as much as possible on the basis of achieving high embedding capacity(EC),while the second step is used for increasing image contrast.In the second step,some peak-pairs are utilized so that the histogram of pixel values is modified to perform histogram equalization(HE),which would lead to the image contrast enhancement.However,for HE,the utilization of some peak-pairs easily leads to over-enhanced image contrast when a large number of bits are embedded.Therefore,in our proposed framework,contrast over-enhancement is avoided by controlling the degree of contrast enhancement.Since the second step can only provide a small amount of data due to controlled contrast enhancement,the first one helps to achieve a large amount of data without degrading visual quality.Any RDH method which can achieve high EC while preserve good visual quality,can be selected for the first step.In fact,Gao et al.’s method is a special case of our proposed framework.In addition,two simple and commonly-used RDH methods are also introduced to further demonstrate the generalization of our framework.展开更多
The command and control(C2) is a decision-making process based on human cognition,which contains operational,physical,and human characteristics,so it takes on uncertainty and complexity.As a decision support approac...The command and control(C2) is a decision-making process based on human cognition,which contains operational,physical,and human characteristics,so it takes on uncertainty and complexity.As a decision support approach,Bayesian networks(BNs) provide a framework in which a decision is made by combining the experts' knowledge and the specific data.In addition,an expert system represented by human cognitive framework is adopted to express the real-time decision-making process of the decision maker.The combination of the Bayesian decision support and human cognitive framework in the C2 of a specific application field is modeled and executed by colored Petri nets(CPNs),and the consequences of execution manifest such combination can perfectly present the decision-making process in C2.展开更多
The research on legged robots attracted much attention both from the academia and industry. Legged robots are multi-input multi-output with multiple end-e ector systems. Therefore,the mechanical design and control fra...The research on legged robots attracted much attention both from the academia and industry. Legged robots are multi-input multi-output with multiple end-e ector systems. Therefore,the mechanical design and control framework are challenging issues. This paper reviews the development of type synthesis and behavior control on legged robots; introduces the hexapod robots developed in our research group based on the proposed type synthesis method. The control framework for legged robots includes data driven layer,robot behavior layer and robot execution layer. Each layer consists several components which are explained in details. Finally,various experiments were conducted on several hexapod robots. The summarization of the type synthesis and behavior control design constructed in this paper would provide a unified platform for communications and references for future advancement for legged robots.展开更多
In this paper, a robust model predictive control approach is proposed for a class of uncertain systems with time-varying, linear fractional transformation perturbations. By adopting a sequence of feedback control laws...In this paper, a robust model predictive control approach is proposed for a class of uncertain systems with time-varying, linear fractional transformation perturbations. By adopting a sequence of feedback control laws instead of a single one, the control performance can be improved and the region of attraction can be enlarged compared with the existing model predictive control (MPC) approaches. Moreover, a synthesis approach of MPC is developed to achieve high performance with lower on-line computational burden. The effectiveness of the proposed approach is verified by simulation examples.展开更多
With the development of cloud computing, the mutual understandability among distributed data access control has become an important issue in the security field of cloud computing. To ensure security, confidentiality a...With the development of cloud computing, the mutual understandability among distributed data access control has become an important issue in the security field of cloud computing. To ensure security, confidentiality and fine-grained data access control of Cloud Data Storage (CDS) environment, we proposed Multi-Agent System (MAS) architecture. This architecture consists of two agents: Cloud Service Provider Agent (CSPA) and Cloud Data Confidentiality Agent (CDConA). CSPA provides a graphical interface to the cloud user that facilitates the access to the services offered by the system. CDConA provides each cloud user by definition and enforcement expressive and flexible access structure as a logic formula over cloud data file attributes. This new access control is named as Formula-Based Cloud Data Access Control (FCDAC). Our proposed FCDAC based on MAS architecture consists of four layers: interface layer, existing access control layer, proposed FCDAC layer and CDS layer as well as four types of entities of Cloud Service Provider (CSP), cloud users, knowledge base and confidentiality policy roles. FCDAC, it’s an access policy determined by our MAS architecture, not by the CSPs. A prototype of our proposed FCDAC scheme is implemented using the Java Agent Development Framework Security (JADE-S). Our results in the practical scenario defined formally in this paper, show the Round Trip Time (RTT) for an agent to travel in our system and measured by the times required for an agent to travel around different number of cloud users before and after implementing FCDAC.展开更多
The poor physicochemical stability and bioavailability of apigenin were main factors that limited its application in the food industry.Theγ-cyclodextrin-metal-organic frameworks(γ-CD-MOFs)were prepared using polyeth...The poor physicochemical stability and bioavailability of apigenin were main factors that limited its application in the food industry.Theγ-cyclodextrin-metal-organic frameworks(γ-CD-MOFs)were prepared using polyethylene glycol(PEG)as surfactants to solve these issues.The size ofγ-CD-MOFs,ranging from nanometer to micrometer dimensions,could be controlled by using PEG with different molecular weights.Theγ-CD-MOFs based on PEG 10000(molecular weight of 10000)had a small pore size(1.58 nm)and high BET surface area(810.15 m^(2)/g),leading to a high encapsulation efficiency(74.23%)and loading capacity(41.17%)for apigenin.Apigenin interacted withγ-CD-MOFs through van der Waals forces,hydrophobic interactions and hydrogen bonding,but did not affect the inherent crystallinity ofγ-CD-MOFs.Furthermore,γ-CD-MOF-10000 protected apigenin better against UV light and temperature,resulting in better anti-cancer properties and controlled release efficiency(79.89%).This strategy of constructingγ-CD-MOFs nanocarriers with tunable size may open new possibilities for hydrophobic drug applications.展开更多
Emerging cloud computing has introduced new platforms for developing enterprise academic web applications, where software, platforms and infrastructures are published to the globe as services. Software developers can ...Emerging cloud computing has introduced new platforms for developing enterprise academic web applications, where software, platforms and infrastructures are published to the globe as services. Software developers can build their systems by multiple invocations of these services. This research is devoted to investigating the management and data flow control over enterprise academic web applications where web services and developed academic web application are constructing infrastructure-networking scheme at the application level. Academic web services are invoked over http port and using REST based protocol;thus traditional access control method is not enough to control the follow of data using host and port information. The new cloud based access control rules proposed here are to be designed and implemented to work at this level. The new proposed access control architecture will be a web service gateway, and it published itself as a service (SaaS). We used three case studies to test our moodle and then we apply JSON parsers to perceive web service description file (WSDL file) and supply policies according to data are to be allowed or denied based on user roll through our parsing.展开更多
User’s data is considered as a vital asset of several organizations.Migrating data to the cloud computing is not an easy decision for any organization due to the privacy and security concerns.Service providers must e...User’s data is considered as a vital asset of several organizations.Migrating data to the cloud computing is not an easy decision for any organization due to the privacy and security concerns.Service providers must ensure that both data and applications that will be stored on the cloud should be protected in a secure environment.The data stored on the public cloud will be vulnerable to outside and inside attacks.This paper provides interactive multi-layer authentication frameworks for securing user identities on the cloud.Different access control policies are applied for verifying users on the cloud.A security mechanism is applied to the cloud application that includes user registration,granting user privileges,and generating user authentication factor.An intrusion detection system is embedded to the security mechanism to detect malicious users.The multi factor authentication,intrusion detection,and access control techniques can be used for ensuring the identity of the user.Finally,encryption techniques are used for protecting the data from being disclosed.Experimental results are carried out to verify the accuracy and efficiency of the proposed frameworks and mechanism.The results recorded high detection rate with low false positive alarms.展开更多
基金supported by Doctoral Foundation of Ministry of Education of China (Grant No.20070006011)
文摘For the constant distance spacing policy,the existing researches of the string stability focus on the single-predecessor information framework(SPIF) and predecessor-successor information framework(PSIF).The research results demonstrated that the string stability could not be guaranteed with the SPIF,and then the PSIF was proposed to resolve this string instability.But the issue,whether the string stability can be guaranteed when applying the PSIF,is still controversial.Meanwhile,most of the previous researches on the string stability were conducted without consideration of the parasitic time delays and lags.In this paper,the practical longitudinal vehicle dynamics model is built with consideration of the parasitic time delays and lags existing in the actuators,sensors or the communication systems.Secondly,the detailed theoretical analysis of string stability in frequency domain is conducted to demonstrate that the classical linear control laws can not ensure the string stability when applying both the symmetrical PSIF(SPSIF) and asymmetrical PSIF(APSIF).Thirdly,a control law,which adds the position and velocity information of the leading vehicle,is proposed to guarantee string stability for small/medium platoon,and the other control law,which adds the acceleration information of the controlled vehicle,is proposed to guarantee string stability for large platoon as well as small/medium platoon.Finally,the comparative simulation is conducted to confirm the conducted analysis and the proposed control laws.The conducted research completes the means to analyze the string stability in frequency domain,provides the parameters' reference for the design and implementation of the practical automatic following controllers,and improves the reliability and stability of the platoon of automatic vehicles.
文摘Weighted factor is given to access eontrol policies to express the importanceof policy and its effect on access control decision. According to this weighted access controlframework, a trustworthiness model for aceess request is also given. In this model, we give themeasure of trustworthiness factor to access request- by using some idea of uncertainty reasoning ofexpert system, present and prove the parallel propagation formula of request trustworthiness factoramong multiple policies, and get thefinal trustworthiness factor to decide whether authorizing. Inthis model, authorization decision is given according to the calculation of request trustworthinessfactor, which is more understandable, more suitable for real requirement and more powerfulforsecurity enhancement than traditional methods. Meanwhile the finer access control granularity isanother advantage.
文摘Cloud computing is touted as the next big thing in the Information Technology (IT) industry, which is going to impact the businesses of any size and yet the security issue continues to pose a big threat on it. The security and privacy issues persisting in cloud computing have proved to be an obstacle for its widespread adoption. In this paper, we look at these issues from a business perspective and how they are damaging the reputation of big companies. There is a literature review on the existing issues in cloud computing and how they are being tackled by the Cloud Service Providers (CSP). We propose a governing body framework which aims at solving these issues by establishing relationship amongst the CSPs in which the data about possible threats can be generated based on the previous attacks on other CSPs. The Governing Body will be responsible for Data Center control, Policy control, legal control, user awareness, performance evaluation, solution architecture and providing motivation for the entities involved.
基金Project supported by the National Natural Science Foundation of China(Grant No.60504033)
文摘In the paper, an iterative method is presented to the optimal control of batch processes. Generally it is very difficult to acquire an accurate mechanistic model for a batch process. Because support vector machine is powerful for the problems characterized by small samples, nonlinearity, high dimension and local minima, support vector regression models are developed for the optimal control of batch processes where end-point properties are required. The model parameters are selected within the Bayesian evidence framework. Based on the model, an iterative method is used to exploit the repetitive nature of batch processes to determine the optimal operating policy. Numerical simulation shows that the iterative optimal control can improve the process performance through iterations.
基金This work was supported by the National Natural Science Foundation of China(62020106003,62073029)the Beijing Natural Science Foundation(4202045)the Fundamental Research Funds for the Central Universities(FRF-TP-20-012A3).
文摘Initiated three decades ago,integrated design of controllers and fault detectors has continuously attracted research attention.The recent development of the unified control and detection framework with an observer-based residual generator in its core gives a more general form of the previous works.Its applications to residual centred modelling of uncertain control systems,fault detection in feedback control systems with uncertainties,fault-tolerant control(FTC)as well as control performance degradation monitoring,detection and recovery are introduced.In conclusion,some future perspectives are proposed.
基金supported by the Science and Technology Development Plan Issue of Jinlin Province(20060217)
文摘In view of the currant status of the quality risk control of livestock products, the differences between the quality, safety and risk of the livestock products were pointed clearly; the derivative mechanism model of the quality risk was studied; the risk system of livestock products was established; and the types of controllable risk were identified. On this basis, the design principles of risk control framework were established. Then the modular system of risk control was constructed and the attributes of production system were detailed into the describable indicators of risk control based on the thrae-dimensional risks.
基金Sponsored by the National Natural Science Foundation of China (Grant No. 60776816)Scientific Research Foundation of Education Department of Yunnan Province (Grant No.08Y10326)
文摘Aiming at the tele-operation instability caused by time delay of interuet information transfer for internet based tele-robotics, this paper proposes a novel control framework for internet based tele-roboties, which can guarantee the non-distortion-transfer of control information and reduce the difference of action time between the local simulated virtual robot and the remote real robot. This framework is insensitive to the inherent interact time delay, and differs from other tele-robotics systems that try to use some mathematic models to describe the internet delay or take some assumptions. In order to verify the framework, a 4-DOF fischertechnik industry robot tele-operation system has been developed using the new proposed framework. Experimental results demonstrate the applicable performance of the new framework. The framework is open structured and can be applied to other general purposed tele-operation systems.
基金This work was supported in part by National NSF of China(Nos.61872095,61872128,61571139 and 61201393)New Star of Pearl River on Science and Technology of Guangzhou(No.2014J2200085)+2 种基金the Open Project Program of Shenzhen Key Laboratory of Media Security(Grant No.ML-2018-03)the Opening Project of Guang Dong Province Key Laboratory of Information Security Technology(Grant No.2017B030314131-15)Natural Science Foundation of Xizang(No.2016ZR-MZ-01).
文摘This paper proposes a two-step general framework for reversible data hiding(RDH)schemes with controllable contrast enhancement.The first step aims at preserving visual perception as much as possible on the basis of achieving high embedding capacity(EC),while the second step is used for increasing image contrast.In the second step,some peak-pairs are utilized so that the histogram of pixel values is modified to perform histogram equalization(HE),which would lead to the image contrast enhancement.However,for HE,the utilization of some peak-pairs easily leads to over-enhanced image contrast when a large number of bits are embedded.Therefore,in our proposed framework,contrast over-enhancement is avoided by controlling the degree of contrast enhancement.Since the second step can only provide a small amount of data due to controlled contrast enhancement,the first one helps to achieve a large amount of data without degrading visual quality.Any RDH method which can achieve high EC while preserve good visual quality,can be selected for the first step.In fact,Gao et al.’s method is a special case of our proposed framework.In addition,two simple and commonly-used RDH methods are also introduced to further demonstrate the generalization of our framework.
基金supported by the National Natural Science Foundation of China (60874068)
文摘The command and control(C2) is a decision-making process based on human cognition,which contains operational,physical,and human characteristics,so it takes on uncertainty and complexity.As a decision support approach,Bayesian networks(BNs) provide a framework in which a decision is made by combining the experts' knowledge and the specific data.In addition,an expert system represented by human cognitive framework is adopted to express the real-time decision-making process of the decision maker.The combination of the Bayesian decision support and human cognitive framework in the C2 of a specific application field is modeled and executed by colored Petri nets(CPNs),and the consequences of execution manifest such combination can perfectly present the decision-making process in C2.
基金Supported by National Natural Science Foundation of China(Grant No.U1613208)
文摘The research on legged robots attracted much attention both from the academia and industry. Legged robots are multi-input multi-output with multiple end-e ector systems. Therefore,the mechanical design and control framework are challenging issues. This paper reviews the development of type synthesis and behavior control on legged robots; introduces the hexapod robots developed in our research group based on the proposed type synthesis method. The control framework for legged robots includes data driven layer,robot behavior layer and robot execution layer. Each layer consists several components which are explained in details. Finally,various experiments were conducted on several hexapod robots. The summarization of the type synthesis and behavior control design constructed in this paper would provide a unified platform for communications and references for future advancement for legged robots.
基金supported by National Natural Science Foundation of China (No. 60934007, No. 61074060)China Postdoctoral Science Foundation (No. 20090460627)+1 种基金Shanghai Postdoctoral Scientific Program (No. 10R21414600)China Postdoctoral Science Foundation Special Support (No. 201003272)
文摘In this paper, a robust model predictive control approach is proposed for a class of uncertain systems with time-varying, linear fractional transformation perturbations. By adopting a sequence of feedback control laws instead of a single one, the control performance can be improved and the region of attraction can be enlarged compared with the existing model predictive control (MPC) approaches. Moreover, a synthesis approach of MPC is developed to achieve high performance with lower on-line computational burden. The effectiveness of the proposed approach is verified by simulation examples.
文摘With the development of cloud computing, the mutual understandability among distributed data access control has become an important issue in the security field of cloud computing. To ensure security, confidentiality and fine-grained data access control of Cloud Data Storage (CDS) environment, we proposed Multi-Agent System (MAS) architecture. This architecture consists of two agents: Cloud Service Provider Agent (CSPA) and Cloud Data Confidentiality Agent (CDConA). CSPA provides a graphical interface to the cloud user that facilitates the access to the services offered by the system. CDConA provides each cloud user by definition and enforcement expressive and flexible access structure as a logic formula over cloud data file attributes. This new access control is named as Formula-Based Cloud Data Access Control (FCDAC). Our proposed FCDAC based on MAS architecture consists of four layers: interface layer, existing access control layer, proposed FCDAC layer and CDS layer as well as four types of entities of Cloud Service Provider (CSP), cloud users, knowledge base and confidentiality policy roles. FCDAC, it’s an access policy determined by our MAS architecture, not by the CSPs. A prototype of our proposed FCDAC scheme is implemented using the Java Agent Development Framework Security (JADE-S). Our results in the practical scenario defined formally in this paper, show the Round Trip Time (RTT) for an agent to travel in our system and measured by the times required for an agent to travel around different number of cloud users before and after implementing FCDAC.
基金supported by National Natural Science Foundation of China(32272470)the Fundamental Research Funds for the Central Universities(JUSRP12005)+3 种基金the Soft Science Research Project of Wuxi Science and Technology Association(KX-22-C053)supported by 111 project-B07029national first-class discipline program of Food Science and Technology(JUFSTR20180204)the program of“Collaborative Innovation Center of Food Safety and Quality Control in Jiangsu Province”,China.
文摘The poor physicochemical stability and bioavailability of apigenin were main factors that limited its application in the food industry.Theγ-cyclodextrin-metal-organic frameworks(γ-CD-MOFs)were prepared using polyethylene glycol(PEG)as surfactants to solve these issues.The size ofγ-CD-MOFs,ranging from nanometer to micrometer dimensions,could be controlled by using PEG with different molecular weights.Theγ-CD-MOFs based on PEG 10000(molecular weight of 10000)had a small pore size(1.58 nm)and high BET surface area(810.15 m^(2)/g),leading to a high encapsulation efficiency(74.23%)and loading capacity(41.17%)for apigenin.Apigenin interacted withγ-CD-MOFs through van der Waals forces,hydrophobic interactions and hydrogen bonding,but did not affect the inherent crystallinity ofγ-CD-MOFs.Furthermore,γ-CD-MOF-10000 protected apigenin better against UV light and temperature,resulting in better anti-cancer properties and controlled release efficiency(79.89%).This strategy of constructingγ-CD-MOFs nanocarriers with tunable size may open new possibilities for hydrophobic drug applications.
文摘Emerging cloud computing has introduced new platforms for developing enterprise academic web applications, where software, platforms and infrastructures are published to the globe as services. Software developers can build their systems by multiple invocations of these services. This research is devoted to investigating the management and data flow control over enterprise academic web applications where web services and developed academic web application are constructing infrastructure-networking scheme at the application level. Academic web services are invoked over http port and using REST based protocol;thus traditional access control method is not enough to control the follow of data using host and port information. The new cloud based access control rules proposed here are to be designed and implemented to work at this level. The new proposed access control architecture will be a web service gateway, and it published itself as a service (SaaS). We used three case studies to test our moodle and then we apply JSON parsers to perceive web service description file (WSDL file) and supply policies according to data are to be allowed or denied based on user roll through our parsing.
文摘User’s data is considered as a vital asset of several organizations.Migrating data to the cloud computing is not an easy decision for any organization due to the privacy and security concerns.Service providers must ensure that both data and applications that will be stored on the cloud should be protected in a secure environment.The data stored on the public cloud will be vulnerable to outside and inside attacks.This paper provides interactive multi-layer authentication frameworks for securing user identities on the cloud.Different access control policies are applied for verifying users on the cloud.A security mechanism is applied to the cloud application that includes user registration,granting user privileges,and generating user authentication factor.An intrusion detection system is embedded to the security mechanism to detect malicious users.The multi factor authentication,intrusion detection,and access control techniques can be used for ensuring the identity of the user.Finally,encryption techniques are used for protecting the data from being disclosed.Experimental results are carried out to verify the accuracy and efficiency of the proposed frameworks and mechanism.The results recorded high detection rate with low false positive alarms.
