| As a new mode of network service providers, cloud computing services to provide users with convenient services. Distributed computing, parallel computing, grid computing and other technologies are integrated to give full play to the convenience of the network to provide users with better convenience and scalability. By physical resources and network services treated differently, cloud computing services greatly improved utilization of network resources.Software as a service (SaaS) is one of the main embodiment as cloud computing service model. It can provide application services to rental software which can be online used. Users can according to their own needs, through the Internet to purchase software suppliers required application software service, this service is provided by the software vendor deployed in the cloud, and the software of a set for the service, make software instance can through the network for users, support and through the Internet to provide users with technical. Users according to the need to pay cost at the same time, the developers have more energy into other work.Despite all the advantages of cloud computing make it very broad prospects for development, but the security issue is one of the main factors that hinder their promotion. Due to the lack of a unified cloud computing industry standards, such as how the data is stored, whether cloud computing providers to meet local legal requirements and industry standards, and so on. If companies choose cloud computing services platform from where to select the service provider, then the problem will be the company’s most concerned is about the security of date which stored in cloud.In order to improve cloud computing security services, this paper studies the full cloud computing security challenges affecting cloud computing model and analyze critical security reasons, the two aspects in SaaS mode to enhance data security:data transmission and data storage.Data security interaction model first proposed by a trusted third party, to provide users and service providers manage data encryption keys, pass to help the client and the service provider side to establish secure data transmission channel. On the other hand, the use of trusted third party periodic replacement key service providers to prevent malicious leaks employees use privileged user data.Another presentation of data protection mechanisms presents an effective data secure storage method, using data block mechanism for sensitive data in the user data and non-sensitive data to distinguish, respectively, encrypted storage and stored in plain text, in order to ensure the user sensitive information, while achieving security and system performance balance. Data block mechanism in accordance with data privacy constraints, in order to more effectively protect the user data privacy attributes in a single bound paper, based on the combination of attributes also filed a dependency property constraints and constraints, in order to ensure confidentiality of sensitive user data to be processed. |
PDF Full Text Request