计算机科学

计算机科学 ›› 2016, Vol. 43 ›› Issue (Z6): 339-341.doi: 10.11896/j.issn.1002-137X.2016.6A.081

• 信息安全 • 上一篇    下一篇

云计算中身份认证技术研究

周长春,田晓丽,张宁,杨宇君,李铎   

  1. 北京电子科技学院研科处 北京100070,北京电子科技学院研究生院 北京100070,北京电子科技学院研究生院 北京100070,西安电子科技大学通信与工程学院 西安710071,西安电子科技大学通信与工程学院 西安710071
  • 出版日期:2018-11-14 发布日期:2018-11-14

Research on Identity Authentication Technology in Cloud Computing

ZHOU Chang-chun, TIAN Xiao-li, ZHANG Ning, YANG Yun-jun and LI Duo   

  • Online:2018-11-14 Published:2018-11-14

PDF (PC)

454

摘要: 对于云平台中用户之间的安全性认证问题,在分析openstack云平台的平台架构、安全认证组件keystone、云计算中身份认证的主要安全性问题及当前云环境中主流的身份认证技术的基础之上,针对云平台下的统一身份认证机制及统一身份认证技术的漏洞,着重分析了OpenID身份认证的工作原理,提出了OpenID当前存在的安全性问题,并得出了一些改进方案。最后以OpenID改进技术为基础,在openstack平台上实现了身份认证技术。

关键词: openstack,身份认证,OpenID

Abstract: For the security authentication between the user in question of cloud platform,based on the openstack cloud platform architecture,security authentication keystone components,the identity authentication of the main security issues in cloud computing and the current cloud environments mainstream identity authentication technology,aiming at the mechanism for unified authentication and unified identity authentication technology platform under the cloud of vulnerability,this article analyzed the work principle of OpenID authentication, presented currently existing OpenID security problems,and obtained some improvements.Finally on the basis of the OpenID improvement techniques,the identity authentication technology was realized on the openstack platform.

Key words: Openstack,Identity authentication,OpenID

[1] Hu Luo-kai,Ying Shi,Jia Xiang-yang,et al.Towards an Approach of Semantic Access Control for Cloud Computing[C]∥Cloud Computing,2009.Beijing,China:Springer Berlin Heidelberg,2009:145-156
[2] OASIS Standard.SAMLV2.0[EB/OL].(2005).http://docs.oasis-open.org/security/saml/v2.0
[3] 江浩浩,徐东升.SAML在集成身份认证中的应用[J].电信网技术,2012(7):17-21
[4] 王群,李馥娟,钱焕延.云计算身份认证模型研究[J].电子技术应用,2015,1(2):135-138
[5] 江伟玉,高能,刘泽义,等.一种云计算中的多重身份认证与授权方案[J].信息网络安全,2012(8):7-10
[6] 秦晓娜,郝平,何恩.基于OpenID安全认证的Web实时通信系统[J].信息安全与通信保密,2013(4):70-72
[7] 夏晔,钱松荣.OpenID身份认证系统的等级模型研究[J].微型电脑应用,2011,7(4):20-23
[8] Wei J,Zhang M,Ding X,et al.Research on Multi-Level Security Framework for OpenID[C]∥International Symposium on Electronic Commerce & Security,2010.2010:393-397
[9] 吴志勇,孙乐昌.针对钓鱼攻击的防范技术研究[J].信息安全与通信保密,2006(11):126-128
[10] 张进铎,毛承国,李硕,等.Openstack 开源云平台主模块的架构分析[J].信息化技术与信息化,2014(4):244-247
[11] Sitaram D,Phalachandra H L,Vishwanath A,et al.Keystone Federated Security[C]∥ICITST.2013:659-664
[12] 熊微,房秉毅,张云勇,等.OpenStack认证安全问题研究[J].邮电设计技术,2014(7):21-25
[13] Khan R H,Ylitalo J,Ahmed A S.OpenID Authentication As A Service in OpenStack[C]∥Internation Conference on Information Assurance & Security,2011.2011:372-377
[14] Chadwick,David W,Matteo C.Security APIs for My private cloud-granting access to anyone,from anywhere at anytime[C]∥Third IEEE International Conference on Cloud Computing Technology and Science,2011.2011:792-798
No related articles found!
Viewed
Full text


Abstract

Cited
  Shared   
  Discussed   
No Suggested Reading articles found!
渝ICP备16013121号-4
地址:重庆市渝北区洪湖西路18号    邮编:401121  
电话:023-63500828(编辑部) 023-67039612(会议/专题) 023-67039623(财务/发票)
E-mail:jsjkx12@163.com
本系统由北京玛格泰克科技发展有限公司设计开发