标题:
基于属性的云存储访问控制系统的设计与实现Design and Implementation of an Attribute Based Access Control System for Cloud Storage
作者:
孙鹏建, 张思悦, 刘川意, 王枞
关键字:
访问控制, 基于属性, 云存储Access Control; Attribute Based; Cloud Storage
期刊名称:
《Computer Science and Application》, Vol.3 No.8, 2013-11-25
摘要:
本文针对云存储应用的安全访问需求,以及目前适用于云存储环境的基于属性的方案,设计和实现了一种基于属性的云存储系统访问控制机制:EncFS。EncFS是基于fuse的用户态文件系统,权限鉴别建立在Linux系统对用户的划分基础上,将用户的身份信息作为属性进行访问控制,不需要输入口令,从而简化了对身份和口令的管理和存储,实现了云存储下的细粒度访问控制,解决了大规模用户动态扩展问题。>To satisfy the security demand of cloud storage application, this paper designed and implemented an attribute based access control mechanism named EncFS, which is suitable for cloud storage system. EncFS is a file system of user space, which is based on fuse and access control strategy for Linux operating system. It uses identity information as attributes for access control. Therefore, this system can simplify password management and storage, realize the fine-grained access control and solve the problem of dynamic expansion of large-scale users.