دانلود رایگان مقاله انگلیسی بررسی مدل های کنترل دسترسی و فن آوری برای محاسبات ابر - اشپرینگر 2018

Abstract

Access control is an important measure for the protection of information and system resources to prevent illegitimate users from getting access to protected objects and legitimate users from attempting to access the objects in ways that exceed what they are allowed. The restriction placed on access from a subject to an object is determined by the access policy. With the rapid development of cloud computing, cloud security has increasingly become a common concern and should be dealt with seriously. In this paper, we survey access control models and policies in different application scenarios, especially for cloud computing, by following the development of the internet as the main line and by examining different network environments and user requirements. Our focus in the survey is on the relationships among different models and technologies along with the application scenarios as well as the pros and cons of each model. Special attention will be placed on access control for cloud computing, which is reflected in the summaries of the access control models and methods. We also identify some emerging issues of access control and point out some future research directions for cloud computing.

6 Conclusion

Access control is an important information security technology and has become indispensable for enterprises to protect data and resources in information systems. After many years of development, research on access control models has achieved noticeable progress. Cloud computing is a new paradigm, making access control critical in providing effective protection to cloud computing resources. This makes access control in cloud computing one of the most important issues in present research on cloud security. Therefore, a great deal of attention has been attracted from academia and industry. However, its characteristics of virtualization, distribution and multi-tenancy have brought many challenges to the development of access control technologies. In addition, access control in cloud computing is not just a technical problem, it also involves a lot of aspects such as standardization, laws and regulations, codes of conduct, etc. At present, research of cloud computing access control technologies is still in its early stage. Future studies should therefore emphasize more on the design of cloud access control models as well as on policy analysis and consistency analysis of access control in addition to other key technologies.

This paper investigated common access control mechanisms and reviewed some traditional access control models and technologies as well as the framework of access control for cloud computing. This paper also discussed research progress of access control in recent years and pointed out some key issues for future research on cloud access control. We hope that the discussion on challenges and issues of cloud computing access control would bring benefit to the future research.