The Design And Implementation Of Cloud Computing Access Control Gateway Based On Nginx

Cloud computing is growing rapidly, global sales of the top five software company's main products are included cloud computing technology. Now Amazon's EC2 and Google's Google App Engine is a typical cloud computing services, they use the Internet to connect to external users, It has gone through Distributed processingâ†'Parallel Computingâ†'Grid Computingâ†'Cloud Computing in the development process, Although many companies recognize the advantages of cloud computing, they still do not want to own sensitive data or critical business into the cloud, that is because there are many security problems in cloud computing. It is these security problems have constrained the development of cloud computing.Although there are many benefits of cloud computing, but there is still a barrier to prevent users from using cloud services, cloud that is the security and privacy issues. Users are often not in their control in an environment of skepticism, so it will not easily put their sensitive data in cloud services.The cloud service provider for access control at the network layer mainly contains the implementation of the case in two ways:1) Based on firewall, this approach to the IP and port access permissions as the benchmark for the validation, but this approach has obvious limitations and security risks.2) Based on gateway, this approach is normally provided by CSP (Cloud Service Provider) to develop access control policy, the tenant is responsible for developing strategies, and then submitted to the CSP (Cloud Service Provider) and wait for approval.The main work of the paper is:1) Achieve a kind of gateway-based access control mode, migrate the traditional access control model based on the firewall to the access control gateway to provide more flexible filtering, such as url, user ID, certificate, etc.2) improving the flexibility of access control and separating access control policy from client to CSP, making their policy transparent to each other, reducing security risks.3) implements a cloud applications for public safety in the access control gateway, and test the effect of access control.