Research On Access Control Negotiation Mechanism In Cloud Environment

With the vigorous development of the Internet,cloud computing,Internet of Things,artificial intelligence and many other technologies have been used more and more.Among them,cloud computing is applied to the network environment due to its virtuality,reliability and high cost performance.In order to limit illegal users' access to the system in the cloud environment,people introduced access control technology.Access control technology can realize the identification and blocking of malicious and unauthorized access by formulating a stricter access mechanism.Ordinary cloud users need to verify the validity of their identities in order to obtain authorization from the access control system and successfully access the system.In this process,users may need to submit many important private information,there is a risk of exposure of private information.In order to reduce this possible privacy risk,an automatic trust negotiation mechanism was introduced.The proposal of the automatic trust negotiation mechanism is mainly used to protect the privacy data of the parties involved in the negotiation,through the iterative exchange of information,and the step-by-step disclosure to achieve the minimum degree of privacy.However,the existing negotiation mechanism lacks a clear response to identity dynamics,fine-grained authorization,and multiple access in the cloud environment.In response to the above problems,this paper proposes an improved access control negotiation mechanism in the cloud environment based on previous research.By introducing concepts such as trust level,trust status,disclosure level,and separation of resource and service negotiation,fine-grained control during the access control negotiation process in a cloud environment is achieved,which further reduces the risk of privacy leakage of all parties to the negotiation.The work of this article mainly includes the following aspects:(1)Carefully studied the access control technology and automatic trust negotiation and negotiation mechanism in the cloud environment.The content of access control principle,access control model,automatic trust negotiation strategy,combination of access control and trust negotiation are analyzed in detail.Clarified some of the existing problems,and aimed at these problems,this article proposed the access control negotiation mechanism.(2)A calculation method of trust level is proposed to intuitively measure the concept of trust.The trust level is introduced into the access control negotiation strategy to achieve fine-grained authorization control.The separation of resource negotiation and service negotiation further refines the requirements and processes of different types of entities when negotiating.Explain the whole negotiation process through algorithms,frameworks and flowcharts.(3)The negotiation mechanism proposed in this paper is analyzed by case analysis and simulation experiment.The case study mainly sets up a relatively simple actual case,imitates the entire access control negotiation execution process,and verifies the feasibility of the negotiation mechanism in this paper.The simulation experiment analyzes the negotiation efficiency of the negotiation mechanism in this paper by setting some indexes.Furthermore,a comparative experiment is set to compare the access control negotiation mechanism in this paper with other negotiation strategies to verify the reliability,robustness and efficiency of the access control negotiation mechanism in this paper.