esearch on Access Control Model Based on the Trust Value Assessment of Cloud Computing

doi:10.3969/j.issn.1671-1122.2016.07.011

Abstract

Abstract:

To reduce the possible threats of users’ behavior, improve the security of cloud computing system, and ensure the dynamic access control, this paper proposes an access control model based on the trust value assessment of cloud computing. The model determines the level of trust and completes the authorization process by dynamically computing the integrated trust value of the user’s behavior. Considering the interaction characteristics of user behavior factors, the model introduces the theory of analytic network process on the basis of establishing the complete trust value evaluation model, which can realize the objective weight distribution of user behavior factor and improve the reliability and objectivity of the model. The attenuation factor is added in the model to further ensure the dynamic change of the integrated trust value of users’ behavior, so that the user can gain the dynamic access and this improves the security of cloud environment. This paper expounds the structure of model, composition elements, implementation process and strategies of access control. And at last the experimental results show that the model can achieve dynamic, secure and reliable access control in cloud environment.

Key words: cloud computing, access control, trust value, dynamic authorization

CLC Number:

TP309

Yundong FAN, Xiaoping WU, Xiong SHI. esearch on Access Control Model Based on the Trust Value Assessment of Cloud Computing[J]. Netinfo Security, 2016, 16(7): 71-77.

Figures/Tables 13

References 18

[1]	都王轩. 基于Openstack云平台的安全审计与预警机制的设计[D]. 南京:东南大学,2014.
[2]	宋好好. 云计算信息系统信息安全等级保护测评关键技术研究[J]. 信息网络安全,2015(9):167-169.
[3]	韩薇. 云环境下远程用户身份认证技术研究[D]. 兰州:兰州理工大学,2014.
[4]	马威,韩臻,成阳. 可信云计算中的多级管理机制研究[J]. 信息网络安全,2015(7):20-25.
[5]	SIRISHA A, KUMARI G G.API Access Control in Cloud using the Role Based Access Control Model[C]//IEEE. Trendz in Information Sciences & Computing (TIS2010), December 17-19, 2010, Chennai, India. New Jersey: IEEE, 2010: 135-137.
[6]	TAN Zhanjiang, TANG Zhuo, LI Renfa, et al.Research on Trust-based Access Control Model in Cloud Computing[C]//IEEE. Information Technology and Artificial Intelligence Conference (ITAIC), 2011 6th IEEE joint International, August 20-22, 2011, Chongqing, China. New Jersey: IEEE, 2011: 339-344.
[7]	WANG Wenhui, HAN Jing, SONG Mmeina, et al.The Design of a Trust and Role Based Access Control Model in Cloud Computing[C]//IEEE. 6th International Conference on Pervasive Computing and Applications, October 26-28, 2011, Port Elizabeth, South Africa. New Jersey: IEEE, 2011: 330-334.
[8]	朱养鹏,张璟. SaaS平台访问控制研究[J]. 计算机工程与应用,2011,47(24):12-16.
[9]	TANG Z,WEI J,SALLAM A.A New RBAC Based Access Control Model for Cloud Computing[J]. International Journal of Modern Education and Computer Science, 2011, 5(3): 279-288.
[10]	黄晶晶,方群. 基于上下文和角色的云计算访问控制模型[J]. 计算机应用,2015,35(2):393-396.
[11]	胡园园,顾新,王涛. 基于网络层次分析法的知识链信任评估研究[J]. 情报科学,2015,33(12):40-45.
[12]	张晓琴. 网络计算系统的可信监测及信任模型研究[D]. 重庆:重庆大学,2012.
[13]	别玉玉. 云计算环境下基于信任的访问控制技术研究[D]. 徐州:中国矿业大学,2014.
[14]	郑周,张大军,李运发. 云计算中面向数据存储的安全访问控制机制[J]. 信息网络安全,2015(9):221-226.
[15]	王磊,黄梦醒. 云计算环境下基于灰色AHP的供应商信任评估研究[J]. 计算机应用研究,2013,30(3):742-750.
[16]	王刚. 一种基于SDN技术的多区域安全云计算架构研究[J]. 信息网络安全,2015(9):20-24.
[17]	林果园,贺珊,黄皓,等. 基于行为的云计算访问控制安全模型[J]. 通信学报,2012,33(3):59-66.
[18]	赵明斌,姚志强. 基于RBAC的云计算访问控制模型[J]. 计算机应用,2012,32(S2):267-270.