| In recent years,with the rapid development of cloud computing.Cloud computing works as a new mode of information service,the importance of its security is self-evident.The application model of cloud computing determines that they are different from the traditional IT in terms of data security,for example,the distributed environment of cloud computing,the virtualization of system resources,the diversity of data access and so on.Data security access control has been an urgent issue to be solved in the field of cloud computing security.Using OpenStack as cloud computing platform,researching the OpenStack’s original user management module and role-based access control model.Using Open LDAP as the backend of the user management module,the module utilizes the characteristic LDAP directory server,the user management module adds user organization management.The OpenStack’s original role-based access control policy can’t satisfy the current security requirements when users access data,just integrating roles with users can’t fully reflect the users’ security attributes,and can’t obtain the users’ behavior in real time.And then putting forward a kind of access control model that based on the evaluation of trust rank and assessment of behavior rating.The trust management of the model takes the cross-domain operation of the users into account,and combines the users’ initial trust,historical trust and cross-domain reference trust.During the process of accumulating trust,the system dynamically assigns different trust degrees to users according to the users’ current trust.Meanwhile,the system monitors the users’ behavior,and the monitoring time slice changes with user behavior level.It is proved by the analysis of experiments that the user management’s hierarchical structure module has been optimized.Meanwhile,the model of monitoring users’ access operations is proved to be more reliable,safer and better real-time by the analysis of experiments. |
PDF Full Text Request