CN106209854A - A kind of cloud platform method of servicing and system realizing access control based on state machine - Google Patents

A kind of cloud platform method of servicing and system realizing access control based on state machine Download PDF

Info

Publication number
CN106209854A
CN106209854A CN201610551889.1A CN201610551889A CN106209854A CN 106209854 A CN106209854 A CN 106209854A CN 201610551889 A CN201610551889 A CN 201610551889A CN 106209854 A CN106209854 A CN 106209854A
Authority
CN
China
Prior art keywords
user
cloud platform
message
request
platform server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201610551889.1A
Other languages
Chinese (zh)
Other versions
CN106209854B (en
Inventor
吴响
赵辰阳
李娜娜
臧昊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Xuzhou Medical University
Original Assignee
Xuzhou Medical University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Xuzhou Medical University filed Critical Xuzhou Medical University
Priority to CN201610551889.1A priority Critical patent/CN106209854B/en
Publication of CN106209854A publication Critical patent/CN106209854A/en
Application granted granted Critical
Publication of CN106209854B publication Critical patent/CN106209854B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/142Managing session states for stateless protocols; Signalling session states; State transitions; Keeping-state mechanisms

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer And Data Communications (AREA)
  • Information Transfer Between Computers (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a kind of cloud platform method of servicing and system realizing accessing control based on state machine, relate to access control technology field.The present invention realizes the access of different brackets service in cloud platform server by state machine mechanism and controls, it is that user authorizes different access rights by the authorization module of server in cloud platform, processing module processes subscription request message according to authority, gives correct response.When user's request is beyond the certain number of times of authority, this user will be temporarily lost with accessing the right of cloud platform server, can be recovered by timer mechanism;When different rights user asks same service, then the user that priority treatment authority is higher.Disabled user also can actively be shielded by cloud platform server, ensures the safety of whole cloud platform with this.User can access the respective services oneself having in the range of authority, and grade of service value is corresponding with user right value.

Description

A kind of cloud platform method of servicing and system realizing access control based on state machine
Technical field
The present invention relates to access control technology field, a kind of realization based on state machine accesses the cloud platform clothes controlled Business method and system.
Background technology
The appearance of cloud platform, brings facility to user and enterprise.Cloud platform can be used very easily to be supplied to us Service.Cloud platform provides service based on " cloud ", uses when creating application for developer.The basis of oneself need not be built, complete Cloud platform entirely can be relied on to create new application.But cloud platform is provided the unconfined download of service and is used the most not Reasonably, also cannot guarantee that user is to problems such as the safe handlings of cloud platform.
Summary of the invention
In order to overcome the shortcoming of above-mentioned prior art, the invention provides a kind of realization based on state machine and access the cloud controlled Platform service method and system, it is achieved the reasonable access of service in cloud platform server, and ensure that the safety of cloud platform.
The present invention realizes with following technical scheme: a kind of realization based on state machine accesses the cloud platform service side controlled Method, each module of cloud platform server calls, it is achieved the access of user's request controls;
When cloud platform server receives the login request message of user, checking that registration message is the most legal, examination & verification is logical Later, the access rights that this user is certain are authorized;
After cloud platform server receives the request service message of user, search the predefined solicited status of state machine Corresponding relation with request event, it is judged that it is right that the event being currently generated and any in the solicited status of current state machine exist Should be related to;
(1) if there is corresponding relation with the first solicited status, it may be assumed that the authority credentials of user is more than or equal to being asked service Grade point, then this access message is legal, cloud platform server accept this request, state machine jumps to response status, cloud platform Server one Response message of return is to user, and the inside comprises response message;
(2) if there is corresponding relation with the second solicited status, it may be assumed that the authority credentials of user is less than the grade being asked service Value, then this access information is illegal, and cloud platform server refuses this request, and state machine jumps to the state of going beyond one's commission, and returns to user One Refuse message, tells user unauthorized access, and starts the enumerator in this state, by the meter of this user's corresponding account Number devices add one, if user continuously transmits the number of times of request message of going beyond one's commission when reaching set point number, then directly turn from the state of going beyond one's commission Entering blocked state, and trigger the timer of this state simultaneously, cloud platform server temporarily will shield within the ensuing setting time Cover all request service messages of this user, until timer periods arrives, the cloud platform server recovering state to this user To solicited status, timer zero simultaneously;When user have sent the most legal request before not up to setting message of going beyond one's commission After message, the enumerator under state of going beyond one's commission will automatic clear, and reenter solicited status.
(3) if cloud platform server judges the disabled user asking user to be malicious attack, then in matching status machine Disarmed state, the permanent request message refusing this user;
(4) ask the authority of same service higher if cloud platform server have received again while processing user's request The request of user, then mate race to control state, stop the service to this user immediately, start user higher to authority and take Business, until service terminates to turn again to the user that Service Privileges is low;
When cloud platform server judges user's request as legitimate request, send response message to this user immediately Response;When cloud platform server judges user's request as illegal request, then return refusal message Refuse to user.
Preferably, the transmission of message between user and cloud platform server is realized by five kinds of messages:
Register message: user asks registration message;
Adopt message: cloud platform server passes through user's registration message;
Request message: user asks service message;
Response message: cloud platform server response subscription request message;
Refuse message: cloud platform server refuses user's request message.
Preferably, user is as follows with cloud platform server communication process:
(1) user sends Register message and carries wanted login account to cloud platform server registration account, the inside Authority;
(2) cloud platform server examination & verification user's registration message, audits successfully rear line and returns an Adopt message notifying User registration success;
(3) the successful account of user's Login Register and to cloud platform server send Request message, the inside comprises user The message of request service;
(4), after cloud platform server receives request, whether the authority of comparison user right and request message is mated, as Then one Response message of return is to user for fruit coupling, and the inside comprises response message;If user's unauthorized access, return one Individual Refuse message, tells user unauthorized access.
Preferably, in cloud platform server, state machine context is as follows:
Normal condition: when not having user to ask, cloud platform server state in which;
Solicited status: when receiving user and asking, enters solicited status, is divided into two kinds;The first: the authority credentials of user It is more than or equal to the grade point being asked service, accesses message legal;The second: the authority credentials of user is less than being asked service Grade point, accesses information illegal;
Response status: cloud platform server begins to respond to the request of user, exports response to user;
Go beyond one's commission state: cloud platform server tells user unauthorized access, and starts enumerator;
Blocked state: this state temporarily masks all request service messages of unauthorized user, and starts timer;
Disarmed state: the permanent all request message refusing malicious attack user;
Race to control state: user's request that preferential answering priority is high.
A kind of realization based on state machine accesses the cloud platform service system controlled, it is characterised in that: cloud platform server is adjusted Use each module, it is achieved the access of user's request controls:
Authorization module, when cloud platform server receives the login request message of user, checks whether registration message closes Method, examination & verification, by rear, authorizes the access rights that this user is certain;
Processing module, after cloud platform server receives the request service message of user, searches state machine and pre-defines The corresponding relation of solicited status and request event, it is judged that the event being currently generated and which in the solicited status of current state machine There is corresponding relation in one;
(1) if there is corresponding relation with the first solicited status, it may be assumed that the authority credentials of user is more than or equal to being asked service Grade point, then this access message is legal, cloud platform server accept this request.State machine jumps to response status, cloud platform Server one Response message of return is to user, and the inside comprises response message;
(2) if there is corresponding relation with the second solicited status, it may be assumed that the authority credentials of user is less than the grade being asked service Value, then this access information is illegal, and cloud platform server refuses this request.State machine jumps to the state of going beyond one's commission, and returns to user One Refuse message, tells user unauthorized access.And start the enumerator in this state, by the meter of this user's corresponding account Number device adds one;If user continuously transmits the number of times of request message of going beyond one's commission when reaching set point number, then directly turn from the state of going beyond one's commission Entering blocked state, and trigger the timer of this state simultaneously, cloud platform server temporarily will shield within the ensuing setting time Cover all request service messages of this user, until timer periods arrives, the cloud platform server recovering state to this user To solicited status, timer zero simultaneously;When user have sent the most legal request before not up to setting message of going beyond one's commission After message, the enumerator under state of going beyond one's commission will automatic clear, and reenter solicited status;
(3) if cloud platform server judges the disabled user asking user to be malicious attack, then in matching status machine Disarmed state, the permanent request message refusing this user;
(4) ask the authority of same service higher if cloud platform server have received again while processing user's request The request of user, then mate race to control state, stop the service to this user immediately, start user higher to authority and take Business, until service terminates to turn again to the user that Service Privileges is low.
Perform module, when cloud platform server judges user's request as legitimate request, send response to this user immediately Message Response;When cloud platform server judges user's request as illegal request, then return refusal message to user Refuse。
Preferably, the transmission of message between user and cloud platform server is realized by five kinds of messages:
Register message: user asks registration message;
Adopt message: cloud platform server passes through user's registration message;
Request message: user asks service message;
Response message: cloud platform server response subscription request message;
Refuse message: cloud platform server refuses user's request message.
Preferably, user is as follows with cloud platform server communication process:
(1) user sends Register message and carries wanted login account to cloud platform server registration account, the inside Authority;
(2) cloud platform server examination & verification user's registration message, audits successfully rear line and returns an Adopt message notifying User registration success;
(3) the successful account of user's Login Register and to cloud platform server send Request message, the inside comprises user The message of request service;
(4), after cloud platform server receives request, whether the authority of comparison user right and request message is mated, as Then one Response message of return is to user for fruit coupling, and the inside comprises response message;If user's unauthorized access, return one Individual Refuse message, tells user unauthorized access.
Preferably, in cloud platform server, state machine context is as follows:
Normal condition: when not having user to ask, cloud platform server state in which;
Solicited status: when receiving user and asking, enters solicited status, is divided into two kinds;The first: the authority credentials of user It is more than or equal to the grade point being asked service, accesses message legal;The second: the authority credentials of user is less than being asked service Grade point, accesses information illegal;
Response status: cloud platform server begins to respond to the request of user, exports response to user;
Go beyond one's commission state: cloud platform server tells user unauthorized access, and starts enumerator;
Blocked state: this state temporarily masks all request service messages of unauthorized user, and starts timer;
Disarmed state: the permanent all request message refusing malicious attack user;
Race to control state: user's request that preferential answering priority is high.
Preferably, if user continuously transmits request message of going beyond one's commission five times, then directly proceed to blocked state from the state of going beyond one's commission, And triggering the timer of this state simultaneously, cloud platform server will temporarily mask this user's in ensuing 3 hours All request service messages, until timer periods arrives, cloud platform server to the recovering state of this user to solicited status, with Time timer zero;
After user have sent the most legal request message before not up to five message of going beyond one's commission, under state of going beyond one's commission Enumerator will automatic clear, and reenter solicited status.
The invention has the beneficial effects as follows: when user meets access rights, can be smoothed out;When user's unauthorized access, Enumerator and timer mechanism well limit user's unauthorized access to cloud platform, and cloud platform also achieves self-insurance simultaneously Protect, effectively limit user's access to cloud platform server, ensured the interests of high access rights user.
Accompanying drawing explanation
The invention will be further described below in conjunction with the accompanying drawings.
Fig. 1 is the overall architecture schematic diagram in invention;
Fig. 2 is access control mechanisms theory diagram;
Fig. 3 is data flow diagram;
Fig. 4 is state machine state transition diagram.
Detailed description of the invention
As depicted in figs. 1 and 2, a kind of cloud platform service system that access controls, user and cloud of realizing based on state machine is put down Station server is joined directly together in logic, and cloud platform server calls authorization module, processing module and execution module complete to access Controlling, the request for different rights user gives different responses, and realizes the self-shield of platform.
As shown in Figure 4, in cloud platform server, seven kinds of states of state machine, when meeting different conditions, i.e. trigger not Same state, response user:
Normal condition: when not having user to ask, cloud platform server state in which;
Solicited status: when receiving user and asking, enters solicited status.It is divided into two kinds, the first: the authority credentials of user It is more than or equal to the grade point being asked service, accesses message legal;The second: the authority credentials of user is less than being asked service Grade point, accesses information illegal;
Response status: cloud platform server begins to respond to the request of user, exports response to user;
Go beyond one's commission state: cloud platform server tells user unauthorized access, and starts enumerator;
Blocked state: this state temporarily masks all request service messages of unauthorized user, and starts timer;
Disarmed state: the permanent all request message refusing malicious attack user;
Race to control state: user's request that preferential answering priority is high.
As shown in Figures 3 and 4, a kind of realization based on state machine accesses the cloud platform method of servicing controlled, and user accesses cloud and puts down The workflow of station server is as follows:
(1) user sends Register message and carries wanted login account to cloud platform server registration account, the inside Authority;
(2) cloud platform server examination & verification user's registration message, audits successfully rear line and returns an Adopt message notifying User registration success;
(3) the successful account of user's Login Register and to cloud platform server send Request message, the inside comprises user The message of request service;
(4) after cloud platform server receives the request service message of user, the predefined request of state machine is searched The corresponding relation of state and request event, it is judged that the event being currently generated and any in the solicited status of current state machine are deposited At corresponding relation;
(5) if there is corresponding relation with the first solicited status, it may be assumed that the authority credentials of user is more than or equal to being asked service Grade point, then this access message is legal, cloud platform server accept this request.State machine jumps to response status, cloud platform Server one Response message of return is to user, and the inside comprises response message;
(6) if there is corresponding relation with the second solicited status, it may be assumed that the authority credentials of user is less than the grade being asked service Value, then this access information is illegal, and cloud platform server refuses this request.State machine jumps to the state of going beyond one's commission, and returns to user One Refuse message, tells user unauthorized access.And start the enumerator in this state, by the meter of this user's corresponding account Number device adds one;
The effect of enumerator is: if user continuously transmits request message of going beyond one's commission five times, then directly proceed to from the state of going beyond one's commission Blocked state, and trigger the timer of this state simultaneously, cloud platform server temporarily will mask in ensuing 3 hours All request service messages of this user, until timer periods arrives, cloud platform server to the recovering state of this user to please Seek state, simultaneously timer zero;
After user have sent the most legal request message before not up to five message of going beyond one's commission, under state of going beyond one's commission Enumerator will automatic clear, and reenter solicited status.
(7) if cloud platform server judges the disabled user asking user to be malicious attack, then in matching status machine Disarmed state, the permanent request message refusing this user;
(8) ask the authority of same service higher if cloud platform server have received again while processing user's request The request of user, then mate race to control state, stop the service to this user immediately, start user higher to authority and take Business, until service terminates to turn again to the user that Service Privileges is low.

Claims (9)

1. one kind realizes accessing the cloud platform method of servicing controlled based on state machine, it is characterised in that: cloud platform server calls Each module, it is achieved the access of user's request controls;
When cloud platform server receives the login request message of user, check that registration message is the most legal, audit by rear, Authorize the access rights that this user is certain;
After cloud platform server receives the request service message of user, search the predefined solicited status of state machine and ask Seek the corresponding relation of event, it is judged that the event being currently generated is corresponding with any existence in the solicited status of current state machine closes System;
(1) if there is corresponding relation with the first solicited status, it may be assumed that the authority credentials of user more than or equal to asked service etc. Level value, then this access message is legal, and cloud platform server accepts this request, and state machine jumps to response status, cloud platform service Device one Response message of return is to user, and the inside comprises response message;
(2) if there is corresponding relation with the second solicited status, it may be assumed that the authority credentials of user is less than the grade point being asked service, Then this access information is illegal, and cloud platform server refuses this request, and state machine jumps to the state of going beyond one's commission, and returns one to user Refuse message, tells user unauthorized access, and starts the enumerator in this state, by the enumerator of this user's corresponding account Add one, if user continuously transmits the number of times of request message of going beyond one's commission when reaching set point number, then directly proceed to resistance from the state of going beyond one's commission Plug-like state, and trigger the timer of this state simultaneously, cloud platform server temporarily will mask within the ensuing setting time All request service messages of this user, until timer periods arrives, cloud platform server to the recovering state of this user to please Seek state, simultaneously timer zero;When user have sent the most legal request message before not up to setting message of going beyond one's commission After, the enumerator under state of going beyond one's commission will automatic clear, and reenter solicited status.
(3) if cloud platform server judges the disabled user asking user to be malicious attack, then refusing in matching status machine State absolutely, the permanent request message refusing this user;
(4) if cloud platform server have received again the higher use of authority asking same service while processing user's request The request at family, then mate race to control state, stop the service to this user immediately, starts user higher to authority and services, Until service terminates to turn again to the user that Service Privileges is low;
When cloud platform server judges user's request as legitimate request, send response message Response to this user immediately; When cloud platform server judges user's request as illegal request, then return refusal message Refuse to user.
A kind of realization based on state machine the most according to claim 1 accesses the cloud platform method of servicing controlled, and its feature exists In: realize the transmission of message between user and cloud platform server by five kinds of messages:
Register message: user asks registration message;
Adopt message: cloud platform server passes through user's registration message;
Request message: user asks service message;
Response message: cloud platform server response subscription request message;
Refuse message: cloud platform server refuses user's request message.
A kind of cloud platform method of servicing and system realizing access control based on state machine the most according to claim 2, its It is characterised by: user is as follows with cloud platform server communication process:
(1) user sends Register message and carries the authority of wanted login account to cloud platform server registration account, the inside;
(2) cloud platform server examination & verification user's registration message, audits successfully rear line and returns an Adopt message notifying user Succeed in registration;
(3) the successful account of user's Login Register and to cloud platform server send Request message, the inside comprise user request The message of service;
(4), after cloud platform server receives request, whether the authority of comparison user right and request message is mated, if Join then return a Response message to user, the inside comprises response message;If user's unauthorized access, return one Refuse message, tells user unauthorized access.
A kind of realization based on state machine the most according to claim 1 accesses the cloud platform method of servicing controlled, and its feature exists In: in cloud platform server, state machine context is as follows:
Normal condition: when not having user to ask, cloud platform server state in which;
Solicited status: when receiving user and asking, enters solicited status, is divided into two kinds;The first: the authority credentials of user is more than Or equal to being asked the grade point of service, access message legal;The second: the authority credentials of user is less than the grade being asked service Value, accesses information illegal;
Response status: cloud platform server begins to respond to the request of user, exports response to user;
Go beyond one's commission state: cloud platform server tells user unauthorized access, and starts enumerator;
Blocked state: this state temporarily masks all request service messages of unauthorized user, and starts timer;
Disarmed state: the permanent all request message refusing malicious attack user;
Race to control state: user's request that preferential answering priority is high.
5. one kind realizes accessing the cloud platform service system controlled based on state machine, it is characterised in that: cloud platform server calls Each module, it is achieved the access of user's request controls:
Authorization module, when cloud platform server receives the login request message of user, checks that registration message is the most legal, examines After core passes through, authorize the access rights that this user is certain;
Processing module, after cloud platform server receives the request service message of user, lookup state machine is predefined please Seek the corresponding relation of state and request event, it is judged that any with the solicited status of current state machine of the event being currently generated There is corresponding relation;
(1) if there is corresponding relation with the first solicited status, it may be assumed that the authority credentials of user more than or equal to asked service etc. Level value, then this access message is legal, and cloud platform server accepts this request.State machine jumps to response status, cloud platform service Device one Response message of return is to user, and the inside comprises response message;
(2) if there is corresponding relation with the second solicited status, it may be assumed that the authority credentials of user is less than the grade point being asked service, Then this access information is illegal, and cloud platform server refuses this request.State machine jumps to the state of going beyond one's commission, and returns one to user Refuse message, tells user unauthorized access.And start the enumerator in this state, by the enumerator of this user's corresponding account Add one;If user continuously transmits the number of times of request message of going beyond one's commission when reaching set point number, then directly proceed to resistance from the state of going beyond one's commission Plug-like state, and trigger the timer of this state simultaneously, cloud platform server temporarily will mask within the ensuing setting time All request service messages of this user, until timer periods arrives, cloud platform server to the recovering state of this user to please Seek state, simultaneously timer zero;When user have sent the most legal request message before not up to setting message of going beyond one's commission After, the enumerator under state of going beyond one's commission will automatic clear, and reenter solicited status;
(3) if cloud platform server judges the disabled user asking user to be malicious attack, then refusing in matching status machine State absolutely, the permanent request message refusing this user;
(4) if cloud platform server have received again the higher use of authority asking same service while processing user's request The request at family, then mate race to control state, stop the service to this user immediately, starts user higher to authority and services, Until service terminates to turn again to the user that Service Privileges is low.
Perform module, when cloud platform server judges user's request as legitimate request, send response message to this user immediately Response;When cloud platform server judges user's request as illegal request, then return refusal message Refuse to user.
A kind of realization based on state machine the most according to claim 5 accesses the cloud platform service system controlled, and its feature exists In: realize the transmission of message between user and cloud platform server by five kinds of messages:
Register message: user asks registration message;
Adopt message: cloud platform server passes through user's registration message;
Request message: user asks service message;
Response message: cloud platform server response subscription request message;
Refuse message: cloud platform server refuses user's request message.
A kind of realization based on state machine the most according to claim 6 accesses the cloud platform service system controlled, and its feature exists In: user is as follows with cloud platform server communication process:
(1) user sends Register message and carries the authority of wanted login account to cloud platform server registration account, the inside;
(2) cloud platform server examination & verification user's registration message, audits successfully rear line and returns an Adopt message notifying user Succeed in registration;
(3) the successful account of user's Login Register and to cloud platform server send Request message, the inside comprise user request The message of service;
(4), after cloud platform server receives request, whether the authority of comparison user right and request message is mated, if Join then return a Response message to user, the inside comprises response message;If user's unauthorized access, return one Refuse message, tells user unauthorized access.
A kind of realization based on state machine the most according to claim 5 accesses the cloud platform service system controlled, and its feature exists In: in cloud platform server, state machine context is as follows:
Normal condition: when not having user to ask, cloud platform server state in which;
Solicited status: when receiving user and asking, enters solicited status, is divided into two kinds;The first: the authority credentials of user is more than Or equal to being asked the grade point of service, access message legal;The second: the authority credentials of user is less than the grade being asked service Value, accesses information illegal;
Response status: cloud platform server begins to respond to the request of user, exports response to user;
Go beyond one's commission state: cloud platform server tells user unauthorized access, and starts enumerator;
Blocked state: this state temporarily masks all request service messages of unauthorized user, and starts timer;
Disarmed state: the permanent all request message refusing malicious attack user;
Race to control state: user's request that preferential answering priority is high.
A kind of realization based on state machine the most according to claim 5 accesses the cloud platform service system controlled, and its feature exists In: if user continuously transmits request message of going beyond one's commission five times, then directly proceed to blocked state from the state of going beyond one's commission, and triggering should simultaneously The timer of state, cloud platform server will temporarily mask all request services of this user in ensuing 3 hours Message, until timer periods arrives, cloud platform server is to the recovering state of this user to solicited status, and timer is returned simultaneously Zero;
After user have sent the most legal request message before not up to five message of going beyond one's commission, the counting under state of going beyond one's commission Device will automatic clear, and reenter solicited status.
CN201610551889.1A 2016-07-13 2016-07-13 A kind of cloud platform method of servicing and system that access control is realized based on state machine Active CN106209854B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610551889.1A CN106209854B (en) 2016-07-13 2016-07-13 A kind of cloud platform method of servicing and system that access control is realized based on state machine

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610551889.1A CN106209854B (en) 2016-07-13 2016-07-13 A kind of cloud platform method of servicing and system that access control is realized based on state machine

Publications (2)

Publication Number Publication Date
CN106209854A true CN106209854A (en) 2016-12-07
CN106209854B CN106209854B (en) 2017-05-31

Family

ID=57477499

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610551889.1A Active CN106209854B (en) 2016-07-13 2016-07-13 A kind of cloud platform method of servicing and system that access control is realized based on state machine

Country Status (1)

Country Link
CN (1) CN106209854B (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111597130A (en) * 2019-02-21 2020-08-28 意法半导体(格勒诺布尔2)公司 Method for arbitrating access to a shared memory and corresponding electronic device
CN114416274A (en) * 2021-10-18 2022-04-29 徐州医科大学 Virtual resource management system and method thereof
CN115242436A (en) * 2022-06-14 2022-10-25 徐州恒佳电子科技有限公司 Malicious traffic detection method and system based on command line characteristics
CN116305267A (en) * 2023-03-14 2023-06-23 中国医学科学院北京协和医院 Privacy disclosure risk assessment method and system for hybrid cloud model

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105187487A (en) * 2015-07-31 2015-12-23 华南理工大学 Copying state machine modular framework design method oriented to cloud storage
CN105577656A (en) * 2015-12-17 2016-05-11 北京荣之联科技股份有限公司 Unified identity authentication method based on cloud platform
CN105634804A (en) * 2015-12-29 2016-06-01 华为技术有限公司 Service dial testing method, device and system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105187487A (en) * 2015-07-31 2015-12-23 华南理工大学 Copying state machine modular framework design method oriented to cloud storage
CN105577656A (en) * 2015-12-17 2016-05-11 北京荣之联科技股份有限公司 Unified identity authentication method based on cloud platform
CN105634804A (en) * 2015-12-29 2016-06-01 华为技术有限公司 Service dial testing method, device and system

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111597130A (en) * 2019-02-21 2020-08-28 意法半导体(格勒诺布尔2)公司 Method for arbitrating access to a shared memory and corresponding electronic device
CN111597130B (en) * 2019-02-21 2023-08-08 意法半导体(格勒诺布尔2)公司 Method for arbitrating access to a shared memory and corresponding electronic device
CN114416274A (en) * 2021-10-18 2022-04-29 徐州医科大学 Virtual resource management system and method thereof
CN115242436A (en) * 2022-06-14 2022-10-25 徐州恒佳电子科技有限公司 Malicious traffic detection method and system based on command line characteristics
CN115242436B (en) * 2022-06-14 2023-12-01 徐州恒佳电子科技有限公司 Malicious traffic detection method and system based on command line characteristics
CN116305267A (en) * 2023-03-14 2023-06-23 中国医学科学院北京协和医院 Privacy disclosure risk assessment method and system for hybrid cloud model
CN116305267B (en) * 2023-03-14 2023-11-14 中国医学科学院北京协和医院 Privacy disclosure risk assessment method and system for hybrid cloud model

Also Published As

Publication number Publication date
CN106209854B (en) 2017-05-31

Similar Documents

Publication Publication Date Title
US10129250B2 (en) System and method of notifying mobile devices to complete transactions
CN106778109B (en) Authentication authority evaluation method and device based on intelligent contract
US9166966B2 (en) Apparatus and method for handling transaction tokens
US8572686B2 (en) Method and apparatus for object transaction session validation
CN102624677B (en) Method and server for monitoring network user behavior
US8752123B2 (en) Apparatus and method for performing data tokenization
CN106209854A (en) A kind of cloud platform method of servicing and system realizing access control based on state machine
US20130047205A1 (en) Apparatus and Method for Making Access Decision Using Exceptions
US8806602B2 (en) Apparatus and method for performing end-to-end encryption
US8752157B2 (en) Method and apparatus for third party session validation
US20130047242A1 (en) Apparatus and Method for Performing Real-Time Authentication Using Subject Token Combinations
WO2006062272A1 (en) Internet access time control method using authentication assertion
US9049596B1 (en) Prevention of fraud in mobile SIM reissuing via knowledge based authentication
US8726341B2 (en) Apparatus and method for determining resource trust levels
US8572690B2 (en) Apparatus and method for performing session validation to access confidential resources
CN105847277A (en) Service account share management method and system used for third party application
CN116319024B (en) Access control method and device of zero trust system and zero trust system
CN102739638A (en) Establishing privileges through claims of valuable assets
US8572724B2 (en) Method and apparatus for network session validation
WO2014061897A1 (en) Method for implementing login confirmation and authorization service using mobile user terminal
US8584202B2 (en) Apparatus and method for determining environment integrity levels
US8533783B1 (en) Method and system for enabling automatic access to an online account
JP2023030009A (en) Apparatus, method, and computer program product for lockout of billing management device
US8572688B2 (en) Method and apparatus for session validation to access third party resources
US8584201B2 (en) Method and apparatus for session validation to access from uncontrolled devices

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant