| The desktop cloud is an important component of cloud computing.Its emergence enables users to log on to their virtual desktops anytime and anywhere by.connecting thin clients such as personal laptops,mobile phones,and tablets to the network.Desktop cloud has features of simple,cost-effective and so on,so this technology is widely applied.At the same time,today's society is an information era with the rapid development of the Internet,and the business activities of major enterprises are also becoming more and more networked.The management of the desktop cloud is usually done through the Web system,including the unified management of the virtual desktop and the related users,and a large number of resources of the system and the user are included.Therefore,in order to ensure the security of the system and resources,access security management measures must be adopted,and access control technology is indispensable.The desktop cloud-based Web system has the characteristics of open environment,dynamic users,and various types of resources.The traditional access control model has many limitations in the control performance of such systems.Firstly,by comparing the common access control models,the advantages and disadvantages of different models are summarized and analyzed.On this basis,the model of access control based on Attribute-role-task(A-TRBAC)is proposed and the security of the model is proved.This model introduces the concept of attributes,meta-rights,etc.The task instance is used as the basic unit of authority allocation,so dynamic,adaptive,fine-grained access control can be achieved.Compared with the existing typical access control models,such as access control ability and management cost,the proposed access control model has obvious advantages.At the same time,in order to further verify the access control performance of the proposed A-TRBAC model,this paper combines the model and the open source security framework Spring-Security to form a Web access security management scheme based on the A-TRBAC model,and it is implemented in an already built Web system based on the desktop cloud.The access security management solution in this paper can implement more granular and secure access security protection for Web resources.The solution can effectively protect the four levels of identity authentication,uniform resource identifiers(URI),service methods,and physical resources in the Web system.Finally,through the security analysis,function and performance test of the scheme,it is verified that the scheme of this paper can perform rights management for different roles based on the task,while ensuring the dynamic access control capability without affecting the system performance.In addition,the scheme is implemented on the basis of the Spring-Security security framework.It can carry out the program development efficiently and have strong security.It has a certain popularization value in the practical application and development. |
PDF Full Text Request