Research On Application Of RBAC-based Access Control Enhanced Model In Cloud Environment

The application of cloud computing advantages is widely favored,and at the same time it also brings many challenges to users.Cloud security challenges are currently the focus of attention.In order to ensure the security of users' privacy data in the cloud,various cloud security technologies have emerged,The cloud resource access control technology bears the brunt.Cloud computing also has a huge impact on the development of the medical industry.How to establish and improve a secure and operable data access control mechanism for the medical platform in the cloud environment is a necessary means to achieve the safe sharing of medical data and medical information in the cloud environment,and it's also the biggest bottleneck of platform development.At present,role-based access control technology is difficult to meet the needs with the changes of system functions.In order to better achieve safe data sharing and prevent illegal access by unauthorized users,the paper proposes an enhanced RBAC access control model to implement the flexible and fine-grained access control,we has mainly done the following research:First,the peper starts with cloud computing related issues,describes the challenges brought by cloud computing applications and related security technologies,and focuses on cloud resource access control technologies.Then,it analyzes the current adaptation needs of health information systems in access control and the research status of RBAC model and ABAC model.Second,we analyzed the existing access control model and propose an enhanced RBAC emergency access control model that combines the advantages of the RBAC and ABAC models.And described the model's constituent elements,manifestations,model advantages,and the entire authorization process in detail.The key algorithms for the rules of the model was carried out by the Pseudo-code,which includ dynamic reduction algorithm of user role rules and dynamic reduction algorithm of role permissions.Third,we elaborated the actual medical referral scenarios that required emergency access to patient medical information,and implemented the enhanced model of emergency access control based on the Jiukang cloud medical platform,including the implementation of system authority database and emergency access control Functional realization.Finally,relying on the Jiukang cloud medical platform to build an experimental test environment,the system's emergency access control functions and permissions access control related functions were tested,and made a comprehensive comparative analysis of the minimum permission principle,subject and object attributes,security and other aspects of access control model mentioned in the paper,it confirms the availability and security of the model,which can solve the problem of cloud platform access control to a certain extent and promote the further development of the medical information platform.