The Design And Implementation Of Access Control System In Cloud Architecture

Nowadays,more and more enterprises and individuals begin to use the Cloud Computing,at the same time,people also pay more attention on cloud computing security.Security access control is an important research content of the cloud computing security,this article's mainly work is to design asecurity access control model in cloud environment,so as to realize a better security access control system.Based on the study of the theory of security access control,finding security access control policy can not ensure the safety of the user security and permission,so base on the object security,puts forward the concept that,user safety and privilegesecurity are the same with object security in the importance.Role inheritance is one of the important principles of RBAC model,however,the example analysis shows that role inheritance in a multi-user system,especially in cloud computing environment,will bring a series of hiddensecurity danger,therefore abandones the principle.After exploring the cloud management platform,cloud computing is more sensitive with the threat of privilege,so introduces the relationship between the users,in order to solve thelateral extensionseparation of duties.According to the above research conclusions,puts forward a applicable to the security Access Control model in the case of cloud architecture-the Role-based Access Control(F-RBAC: Flat-Role-based Access Control).Using finite automaton model proves that F-RBAC security model has the following advantage:it can reduce the authorized users to the greatest extent within the scope of authorization of false and malicious operation brought about by the loss.Finally,based on it open source cloud architecture,design and implementation of F-RBAC security model.The development environmentis the Ubuntu operating system,the development tools is Pycharm,the development language is Python,the development frame is the Django framework.By different test cases,the implementation of security access control system was tested and analyzed.Test results showed that the application of F-RBAC model has reduced the complexity of security access control system,at the same time,eliminated the cloud architecture privileges threat,implements the subject,object,permissions,managementseparated,made the administrator more clear division of labor under the cloud architecture,it also can effectively avoid people's wrong operations or malicious actions who is working in the cloud service provider.