The Design And Implementation Of Access Control Model Based On Cloud Computing Platform

Cloud computing model offers available, on-demand, and convenient network access. The model offers massive data analysis, with the feature of on-demand resources, flexible expansion, reliable, safe, and easy to use. With the evolution of cloud computing model, cloud computing platform has gradually been widespread concerned.Cloud computing platform is supported by powerful parallel computing and distributed storage capacity, and provides users with a variety of applications and services. Cloud computing platform provides services for many types of users, therefore the access control system for the platform should provide access control and resource constraints for different categories of users, allowing users to use the platform more safely. Compared to the two traditional access control model, autonomous access control and mandatory access control, RBAC (Role Based Access Control) can meet the needs of many types of users to access cloud platform.On this basis, this paper presents a cloud computing platform access control system, including the management of roles, the customization of permissions, the access control authentication and other parts. The system provides security for multi-tenant cloud platform. The main work of this paper includes the following three parts.Firstly, the paper does research on background and technical studies related. The research contains the cloud computing technology architecture, the functional and organizational structure of cloud computing platform, the technologies of cloud computing platform, RBAC technology, and other access control scheme in cloud computing platform. The research lays the foundation of the access control model designed for cloud computing platform.Secondly, the paper designs access control system for cloud computing platform. It lists the roles, functions, defined tenants, users systematically. And it defines three levels of access control mechanism, which is tenant level, role level and user level. Taking the different types of objects into account, the paper designs flexibly customized and extended access control scheme, the permission management solutions, and the database for the system.Thirdly, the paper demonstrates the implementation and verification of the access control system for cloud computing platform.Based on the access control model designed, the systems include permission management, access control module.