dc.contributor | 資管系 | |
dc.creator (作者) | 姜國輝 | zh_TW |
dc.date (日期) | 2015 | |
dc.date.accessioned | 18-五月-2017 10:59:45 (UTC+8) | - |
dc.date.available | 18-五月-2017 10:59:45 (UTC+8) | - |
dc.date.issued (上傳時間) | 18-五月-2017 10:59:45 (UTC+8) | - |
dc.identifier.uri (URI) | http://nccur.lib.nccu.edu.tw/handle/140.119/109774 | - |
dc.description.abstract (摘要) | 繼網際網路蓬勃發展後,吾人的工作與生活變得更為便利。雲端運算問世之後,更多用戶將其做資料備份與發佈的平台。用戶常用雲端的方案有以下三種:即公有雲(Public Cloud)、私有雲(Private Cloud)及混合雲(Hybrid Cloud)。使用公有雲將服務與資料儲存交由雲端提供商託管,例如使用 Google Apps、G-mail,以減少企業內部的成本。用戶亦可建置私有雲,以提供檔案備援與內部服務。另外,用戶可結合公有雲與私有雲以構成混合雲,即使用公有雲儲存敏感度不高之資料並將敏感度較高的資料存至私有雲或本地端。如此地在混合雲環境混用數位資財的狀況下,本地端與雲端資料的一致性成為關鍵性的問題。雖然,以長期的眼光看來,用戶使用雲端運算可以獲利,然而不同地點之資料的一致性問題卻會讓用戶裹足不前。其問題來自於兩方面: 首先是”資訊混亂”的問題,它源自於不同地點的資料版本不一;其次的問體是”管理危機”,它肇因於不可靠的資料存取。本研究將探討用戶在使用混合雲時遇到的安全控管及互通性問題,即用戶帳號認證,存取權限管理以及用戶權責。本計畫將研究使用開放標準 OpenID 與 O'Auth 來進行對公有雲的帳號認證、檔案存取授權及管控,以開發出一個跨本地端電腦或私有雲與公有雲帳號與檔案內容權限之管理與權責同步系統。在本研究中,我們將結合多個主流公有雲平台(例Google App/GAE、Apple iCloud、MS Azure、FaceBook 等),以及 Hadoop 為本之私有雲平台、本地端則包含多種作業系統之電腦主機,例如 Linux、Ms-Windowsc 和OS X等。其間,用戶由任一本地端主機登入後,可以處理對應的雲端之身分認證及獲得資料存取權。如此,本系統可解決在公有雲、私有雲與本地端系統多重帳號的困擾以及組織人員由外部存取與內部存取時的權限不足或檔案版本不同的問題。整體而言,我們將根據 CMMI 來校驗系統的功能性、可靠性和一致性,以展現此一方法的可用性與卓越性。 | |
dc.description.abstract (摘要) | With the benefit from public cloud, users are able to utilize their business information in lower cost but higher efficiency. Integrity between local storages and the clouds is a critical issue which often messes up the users'digital assets in a hybrid cloud environment. The downside makes the users reluctant to embrace cloud technology, though they may benefit from it in the long-term. Thedrawback comes from two aspects: “the information chaos”and “the management crisis”. The chaos originates from the possibility of information inconsistency among replicas in different places. The managerial crisis lies in the nontrustable access to the digital assets.This research aims to solve the Hybrid Cloud security control and interoperability issues such as Authentication as well as Access Right Authorization and consequent Accountability. The research refers to the de facto open standards, viz. OpenID and O‘Auth to facilitateAuthentication, Access Right Authorization and Accountability for the Hybrid Cloud environments. The mechanisms are implemented for a cross-platform whichencompasses local hosts with different OS, the private cloud based on Hadoop, and the mainstream platforms as the public cloud scenario, such as Google Apps/GAE, Apple's iCloud, FaceBook etc. Users can launch the login from whatever a local host and then deal with Access Right Permissions on the respective clouds. Last but not least, we will validate, according to CMMI, the functionality,reliability and integrity of the solutions to show the superiority and applicability of our approach. | |
dc.format.extent | 5790678 bytes | - |
dc.format.mimetype | application/pdf | - |
dc.relation (關聯) | MOST 103-2221-E-004-014 | |
dc.subject (關鍵詞) | 混合雲; 單一登入; 檔案同步服務; 檔案權限管理; 資訊安全 | |
dc.subject (關鍵詞) | Hybrid Cloud; Single-Sign-On; File Synchronization; FileAccess Right Management; Information Security | |
dc.title (題名) | 混合雲之用戶身份認證、檔案授權及權責~雲端運算資安與互通性之基礎研究 | zh_TW |
dc.type (資料類型) | report | |