| As cloud computing matures, IaaS (Infrastructure as a Service) and PaaS (Platform-as-a-Service) develop quickly and there are numerous successful commercial applications.But the development of SaaS is relatively slow and lag because of its safety. Specifically, SaaS is a new software application delivery model and the "ownership" of the software from the client has transferred to external suppliers.Users can deal with their core business in the cloud through the service accessed online from the Cloud.Compared to traditional model, users get more opening to the outside and the data are easy to leak and be stolen.Meanwhile,Enterprises are facing much more security threats. This paper presents a application access control architecture based on the SaaS model to make access and control be isolation and manage the core service of business hierarchically and automatically.Then the application becomes a single-instance with multi-tenancy.On the other hand, this paper proposes a new access control model to meet the demand of the dynamic SaaS business and effective ensure the safety of the access control. Finally, according to the above research, we design the accounts and software management system, which can achieve effective dynamic control for SaaS security system permissions. |
PDF Full Text Request