CN106850653A - A kind of access method and access mechanism of cloud data - Google Patents

A kind of access method and access mechanism of cloud data Download PDF

Info

Publication number
CN106850653A
CN106850653A CN201710096132.2A CN201710096132A CN106850653A CN 106850653 A CN106850653 A CN 106850653A CN 201710096132 A CN201710096132 A CN 201710096132A CN 106850653 A CN106850653 A CN 106850653A
Authority
CN
China
Prior art keywords
access
user
cloud
cloud data
rights
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710096132.2A
Other languages
Chinese (zh)
Inventor
王帅
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Zhengzhou Yunhai Information Technology Co Ltd
Original Assignee
Zhengzhou Yunhai Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zhengzhou Yunhai Information Technology Co Ltd filed Critical Zhengzhou Yunhai Information Technology Co Ltd
Priority to CN201710096132.2A priority Critical patent/CN106850653A/en
Publication of CN106850653A publication Critical patent/CN106850653A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Storage Device Security (AREA)

Abstract

The invention discloses a kind of access method of cloud data, the instruction of the cloud data of the second cloud server is accessed by the user for receiving the first cloud server;According to above-mentioned instruction, the access rights of above-mentioned user are obtained;Above-mentioned access rights are compared with pre-stored access rights, is judged whether consistent;When consistent, judge that above-mentioned user has the authority for accessing above-mentioned cloud data, so that above-mentioned user accesses above-mentioned cloud data by the first telecommunication media between above-mentioned first cloud server and above-mentioned second cloud server.The access rights of the cloud data in different cloud servers, the i.e. user with access rights are set and just may have access to corresponding cloud data, it is ensured that the cloud data of different cloud servers will not make the security of cloud data higher by the random access of user.It can be seen that, the application is conducive to improving the security of cloud data.

Description

A kind of access method and access mechanism of cloud data
Technical field
The present invention relates to field of cloud calculation, the more particularly to a kind of access method and access mechanism of cloud data.
Background technology
With the progress of network technology, cloud computing is also arisen at the historic moment.
Cloud be network, internet it is abstract, cloud computing can refer to be visited using available, network easily and on demand Ask, corresponding computing is carried out into configurable computing resources shared pool.Cloud computing must be accompanied by cloud data access, and cloud number According to being generally stored on cloud server.
User can access the cloud data stored on different cloud servers, to meet corresponding demand.And different high in the clouds Corresponding cloud data can be arbitrarily accessed between the user of server, for example, the user of cloud server A can arbitrarily access cloud Hold the cloud data of server.But, user arbitrarily accesses the cloud data on different cloud servers, can cause the access of cloud data Security is relatively low.Therefore the security for how improving cloud data is this area problem demanding prompt solution.
The content of the invention
It is an object of the invention to provide a kind of access method and access mechanism of cloud data, it is therefore intended that solve existing skill The relatively low problem of the security of art medium cloud data.
In order to solve the above technical problems, the present invention provides a kind of access method of cloud data, the method includes:
Receive the instruction of the cloud data of user's second cloud server of access of the first cloud server;
According to the instruction, the access rights of the user are obtained;
The access rights are compared with pre-stored access rights, is judged whether consistent;
When consistent, judge that the user has the authority for accessing the cloud data, so that the user is by described the The first telecommunication media between one cloud server and second cloud server accesses the cloud data.
Alternatively, the access rights are compared with pre-stored access rights described, after judging whether unanimously Also include:
When inconsistent, the user is judged without the authority for accessing the cloud data, obtain the second high in the clouds clothes The authorized order of the rights management person of business device;
According to the authorized order, the authority that the user accesses the cloud data is authorized, so that the user passes through institute State the first telecommunication media and access the cloud data.
Alternatively, described in the acquisition
The authorized order of the rights management person of the second cloud server includes:
When the rights management person is the first rights management person without authorization privilege, obtain with all permissions The authorization privilege instruction of the second rights management person;
Instructed according to the authorization privilege, authorize the first rights management person authorization privilege;
Obtain first authorized order of the second rights management person.
Alternatively, the user in the first cloud server of the reception accesses the instruction of the cloud data of the second cloud server Also include before:
Obtain the access rights authorized order of the rights management person of second cloud server;
According to the access rights authorized order, the data access authority that the user accesses the cloud data is authorized, and The data access authority is stored as the pre-stored access rights.
Alternatively, also include:
Receive the access instruction of the user of second cloud server;
According to the access instruction, the access privilege is authorized, so that the user is visited by the second telecommunication media Ask the cloud data.
Additionally, present invention also offers a kind of access mechanism of cloud data, the device includes:
Receiver module, the user for receiving the first cloud server accesses the finger of the cloud data of the second cloud server Order;
Authority acquiring module, for according to the instruction, obtaining the access rights of the user;
Comparing module, for the access rights to be compared with pre-stored access rights, judges whether consistent;
Consistent module is judged, for when consistent, judging that the user has the authority for accessing the cloud data, so that institute State user and the cloud is accessed by the first telecommunication media between first cloud server and second cloud server Data.
Alternatively, also include:
Authorized order acquisition module, for when inconsistent, judging the user without the power for accessing the cloud data Limit, obtains the authorized order of the rights management person of second cloud server;
Right-granting module, for according to the authorized order, authorizing the authority that the user accesses the cloud data, with The user is set to access the cloud data by first telecommunication media.
Alternatively, the authorized order acquisition module includes:
Authorization privilege instructs acquiring unit, for being the first authority pipe without authorization privilege as the rights management person During reason person, the authorization privilege instruction of the second rights management person with all permissions is obtained;
Granting unit, for being instructed according to the authorization privilege, authorizes the first rights management person authorization privilege;
Acquiring unit, the first authorized order for obtaining the second rights management person.
Alternatively, also include:
Access rights authorized order module, the access rights of the rights management person for obtaining second cloud server Authorized order;
Authority authorizes memory module, and the cloud is accessed for according to the access rights authorized order, authorizing the user The data access authority of data, and the data access authority is stored as the pre-stored access rights.
Alternatively, also include:
Access instruction receiver module, the access instruction of the user for receiving second cloud server;
Module is authorized, for according to the access instruction, authorizing the access privilege, so that the user is by the Cloud data described in two communication medium access.
The access method and access mechanism of a kind of cloud data provided by the present invention, by receiving the first cloud server User access the second cloud server cloud data instruction;According to above-mentioned instruction, the access rights of above-mentioned user are obtained;Will Above-mentioned access rights are compared with pre-stored access rights, are judged whether consistent;When consistent, judge that above-mentioned user has and visit The authority of above-mentioned cloud data is asked, so that above-mentioned user passes through between above-mentioned first cloud server and above-mentioned second cloud server The first telecommunication media access above-mentioned cloud data.The access rights of the cloud data in different cloud servers are set, i.e., with visit Ask that the user of authority just may have access to corresponding cloud data, it is ensured that the cloud data of different cloud servers will not be random by user Access, make the security of cloud data higher.It can be seen that, the application is conducive to improving the security of cloud data.
Brief description of the drawings
For the clearer explanation embodiment of the present invention or the technical scheme of prior art, below will be to embodiment or existing The accompanying drawing to be used needed for technology description is briefly described, it should be apparent that, drawings in the following description are only this hair Some bright embodiments, for those of ordinary skill in the art, on the premise of not paying creative work, can be with root Other accompanying drawings are obtained according to these accompanying drawings.
A kind of flow of specific embodiment of the cloud data access method that Fig. 1 is provided by the embodiment of the present invention is illustrated Figure;
A kind of concrete configuration diagram of the cloud data access that Fig. 2 is provided by the embodiment of the present invention;
The structured flowchart of the cloud DAA that Fig. 3 is provided by the embodiment of the present invention.
Specific embodiment
In order that those skilled in the art more fully understand the present invention program, with reference to the accompanying drawings and detailed description The present invention is described in further detail.Obviously, described embodiment is only a part of embodiment of the invention, rather than Whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not making creative work premise Lower obtained every other embodiment, belongs to the scope of protection of the invention.
Fig. 1 is referred to, a kind of specific embodiment of the cloud data access method that Fig. 1 is provided by the embodiment of the present invention Schematic flow sheet, the access method is comprised the following steps:
Step 101:Receive the instruction of the cloud data of user's second cloud server of access of the first cloud server;
It should be noted that above-mentioned user can refer to the keeper of above-mentioned first cloud server, or above-mentioned The domestic consumer of the first cloud server.
It should be evident that above-mentioned first cloud server can refer to that any two is different with above-mentioned second cloud server Cloud server.What it may indicate that is that the cloud data accessed on current cloud server can be by another cloud server User accesses.
Step 102:According to the instruction, the access rights of the user are obtained;
Specifically, according to the access instruction of above-mentioned user, can check and obtain according to the identity information of above-mentioned user State the authority that user has.
Step 103:The access rights are compared with pre-stored access rights, is judged whether consistent;
It is understood that above-mentioned access right and above-mentioned pre-stored access rights are compared, check that above-mentioned user is It is no to have corresponding authority.It can determine whether the user uses corresponding access rights by the user profile of above-mentioned user, For example, can judge whether above-mentioned user has access rights according to the user name of above-mentioned user, you can with by whether record There is the user name of above-mentioned user to judge whether above-mentioned user there are corresponding access rights.Certainly, differentiate whether above-mentioned user has Corresponding access rights can also have other identification methods, be not limited thereto.
Step 104:When consistent, judge that the user has the authority for accessing the cloud data, so that the user is logical The first telecommunication media crossed between first cloud server and second cloud server accesses the cloud data.
It should be noted that above-mentioned authority can refer to the authority that above-mentioned user can access above-mentioned cloud data.And it is above-mentioned First telecommunication media can refer to Yunmen device, i.e., Yunmen device is provided between different cloud servers, and user can lead to Corresponding Yunmen device is crossed, corresponding cloud server is accessed, for example, being provided with Yunmen device A, high in the clouds on cloud server A Yunmen device B is provided with server B, the user in cloud server needs to access the cloud data on cloud server A, then uses Family can accordingly be accessed by Yunmen device A.
It is understood that above-mentioned Yunmen device can be authenticated to user, i.e., user accesses cloud by Yunmen device , it is necessary to pass through above-mentioned Yunmen device during data, Yunmen device judges whether current accessed user has corresponding access rights.It is aobvious and Easy insight, above-mentioned Yunmen device can be embodied in one section of programmed logic code with authentication functions, it is of course also possible to table It is now other forms.
In order to preferably manage the access rights of each user, rights management person can be set, with the access to cloud data Authority is managed.
And in order that user can successfully have access to corresponding cloud data, extraction mandate can be carried out to user, that is, carry Take and authorize the authority that user accesses corresponding cloud data.
Therefore in some embodiments of the invention, the second cloud server is accessed in the user for receiving the first cloud server Cloud data instruction before can also include:Obtain the access rights mandate of the rights management person of second cloud server Instruction;According to the access rights authorized order, the data access authority that the user accesses the cloud data is authorized, and by institute State data access authority and be stored as the pre-stored access rights.
It should be noted that above-mentioned rights management person also refers to people, i.e. keeper can be grasped by corresponding mandate Make, authorize user corresponding authority;It is of course also possible to refer to that certain has the code of rights management function, i.e., by performing phase The code answered carries out corresponding rights management.
After authorizing the corresponding authority of user, Yunmen device can correspondingly record the information of the user, so as to follow-up Yunmen Device is used when authenticating.
The user for accessing cloud data may not authorized in advance, in order that the user for meeting access consideration has access to accordingly Cloud data, it is also possible to after judging that user does not possess access rights, authorize access privilege so that user access needed for Cloud data.
Therefore in some embodiments of the invention, its licensing process can be specially:When inconsistent, the user is judged Without the authority for accessing the cloud data, the authorized order of the rights management person of second cloud server is obtained;According to The authorized order, authorizes the authority that the user accesses the cloud data, so that the user is by the described first communication matchmaker It is situated between and accesses the cloud data.
In authentication process, when judging that active user does not have access rights, rights management person can authorize active user Corresponding access rights, make do not possess access rights, but meet the user of access consideration that corresponding cloud data can be accessed.
For the work of clear and definite rights management person, rights management person can be divided into super keepe and common management Member.Super keepe possesses all permissions, and common management administrator possesses part authority.Super keepe can be to common management administrator Authority be managed limitation.Usually, super keepe can have one, and common management administrator is multiple.
Because rights management person may have super keepe and common management administrator, usually, common management administrator does not possess and awards Power authority.But, in some cases, super keepe can authorize common management administrator's authorization privilege.
Therefore in some embodiments of the invention, its process can be specially:When the rights management person is without awarding When weighing the first rights management person of authority, the authorization privilege instruction of the second rights management person with all permissions is obtained;According to The authorization privilege instruction, authorizes the first rights management person authorization privilege;Obtain the first of the second rights management person Authorized order.
It is understood that above-mentioned first rights management person can refer to common management administrator, the second rights management person can be with It refer to super keepe.Above-mentioned authorization privilege can refer to authorize access privilege, and its user does not possess access rights originally.
Above-mentioned authorization privilege can specifically show as using the authority of Yunmen device, i.e. user and access cloud by Yunmen device The authority of data.Certainly, above-mentioned authorization privilege can also refer to other authorization privileges, be not limited thereto.For example, high in the clouds takes The common management administrator of business device A, does not possess and authorizes the authority that user uses Yunmen device A originally, but cloud server A super pipe Reason person can authorize common management administrator corresponding authorization privilege, possess common management administrator and authorize user and use Yunmen device A Authority, i.e. user can access the cloud data of cloud server A by Yunmen device A.
It should be noted that cloud connection center fixture can be set on each cloud server.In above-mentioned cloud connection Center device can refer to the medium of data communication between different cloud servers, and it can also have authority comparison function.Accordingly Ground, can be provided with cloud connection center fixture and Yunmen device, for example, cloud server A is set on each cloud server There are cloud connection center fixture A and Yunmen device A, cloud server B to be provided with cloud connection center fixture B and Yunmen device B etc..
And when the user for accessing cloud data is the user in cloud server, then center can be connected by corresponding cloud and filled Put and conveniently and efficiently accessed, without the authentication process for carrying out Yunmen device.
Therefore in some embodiments of the invention, the process that user accesses the cloud data of corresponding cloud server can have Body is:Receive the access instruction of the user of second cloud server;According to the access instruction, authorize the user and access Authority, so that the user accesses the cloud data by the second telecommunication media.
It is understood that above-mentioned second telecommunication media can refer to cloud connection center fixture, above-mentioned user can refer to The rights management person of the second cloud server, it is also possible to refer to domestic consumer.(example when user accesses corresponding cloud server Such as, the user of cloud server A, when accessing the cloud data in cloud server A), it is not necessary to by the mandate of Yunmen device Journey, i.e., it is convenient and swift, also ensure that security when accessing cloud data.
It should be evident that cloud connection center fixture and Yunmen device can be set on each cloud.In order to preferably introduce Corresponding relation between each, may refer to Fig. 2, and the one kind for the cloud data access that Fig. 2 is provided by the embodiment of the present invention is specific Configuration diagram.
As shown in Fig. 2 the user in cloud server B accesses the cloud data in cloud server A by Yunmen device A, And cloud server A super keepes and cloud server A common management administrators connect center fixture A and access cloud service by cloud Cloud data in device A, and cloud server A super keepes can also access the cloud number of cloud server A by Yunmen device A According to.
The access method of the cloud data that the embodiment of the present invention is provided, is accessed by the user for receiving the first cloud server The instruction of the cloud data of the second cloud server;According to above-mentioned instruction, the access rights of above-mentioned user are obtained;By above-mentioned access right Limit is compared with pre-stored access rights, is judged whether consistent;When consistent, judge that above-mentioned user has and access above-mentioned cloud number According to authority so that above-mentioned user by between above-mentioned first cloud server and above-mentioned second cloud server first communication The above-mentioned cloud data of medium access.The access rights of the cloud data in different cloud servers, the i.e. use with access rights are set Family just may have access to corresponding cloud data, it is ensured that the cloud data of different cloud servers will not be made by the random access of user The security of cloud data is higher.It can be seen that, the method is conducive to improving the security of cloud data.
Cloud DAA provided in an embodiment of the present invention is introduced below, cloud data access dress described below Putting can be mutually to should refer to above-described cloud data access method.
The structured flowchart of the cloud DAA that Fig. 3 is provided by the embodiment of the present invention, the access of the cloud data of reference picture 3 Device can include:
Receiver module 301, the user for receiving the first cloud server accesses the cloud data of the second cloud server Instruction;
Authority acquiring module 302, for according to the instruction, obtaining the access rights of the user;
Comparing module 303, for the access rights to be compared with pre-stored access rights, judges whether consistent;
Judge consistent module 304, for when consistent, judging that the user has the authority for accessing the cloud data, with The user is passed through the first telecommunication media between first cloud server and second cloud server and access institute State cloud data.
Alternatively, also include:
Authorized order acquisition module, for when inconsistent, judging the user without the power for accessing the cloud data Limit, obtains the authorized order of the rights management person of second cloud server;
Right-granting module, for according to the authorized order, authorizing the authority that the user accesses the cloud data, with The user is set to access the cloud data by first telecommunication media.
Alternatively, the authorized order acquisition module includes:
Authorization privilege instructs acquiring unit, for being the first authority pipe without authorization privilege as the rights management person During reason person, the authorization privilege instruction of the second rights management person with all permissions is obtained;
Granting unit, for being instructed according to the authorization privilege, authorizes the first rights management person authorization privilege;
Acquiring unit, the first authorized order for obtaining the second rights management person.
Alternatively, also include:
Access rights authorized order module, the access rights of the rights management person for obtaining second cloud server Authorized order;
Authority authorizes memory module, and the cloud is accessed for according to the access rights authorized order, authorizing the user The data access authority of data, and the data access authority is stored as the pre-stored access rights.
Alternatively, also include:
Access instruction receiver module, the access instruction of the user for receiving second cloud server;
Module is authorized, for according to the access instruction, authorizing the access privilege, so that the user is by the Cloud data described in two communication medium access.
The access mechanism of the cloud data that the embodiment of the present invention is provided, sets the visit of the cloud data in different cloud servers Ask that authority, the i.e. user with access rights just may have access to corresponding cloud data, it is ensured that the cloud number of different cloud servers According to by the random access of user the security of cloud data will not being made higher.It can be seen that, the device is conducive to improving the safety of cloud data Property.
Each embodiment is described by the way of progressive in this specification, and what each embodiment was stressed is and other The difference of embodiment, between each embodiment same or similar part mutually referring to.For being filled disclosed in embodiment For putting, because it is corresponded to the method disclosed in Example, so description is fairly simple, related part is referring to method part Illustrate.
Professional further appreciates that, with reference to the unit of each example of the embodiments described herein description And algorithm steps, can be realized with electronic hardware, computer software or the combination of the two, in order to clearly demonstrate hardware and The interchangeability of software, generally describes the composition and step of each example according to function in the above description.These Function is performed with hardware or software mode actually, depending on the application-specific and design constraint of technical scheme.Specialty Technical staff can realize described function to each specific application using distinct methods, but this realization should not Think beyond the scope of this invention.
The step of method or algorithm for being described with reference to the embodiments described herein, directly can be held with hardware, processor Capable software module, or the two combination is implemented.Software module can be placed in random access memory (RAM), internal memory, read-only deposit Reservoir (ROM), electrically programmable ROM, electrically erasable ROM, register, hard disk, moveable magnetic disc, CD-ROM or technology In field in known any other form of storage medium.
The access method and access mechanism to cloud data provided by the present invention are described in detail above.Herein Apply specific case to be set forth principle of the invention and implementation method, the explanation of above example is only intended to help Understand the method for the present invention and its core concept.It should be pointed out that for those skilled in the art, not taking off On the premise of the principle of the invention, some improvement and modification can also be carried out to the present invention, these are improved and modification also falls into this In invention scope of the claims.

Claims (10)

1. a kind of access method of cloud data, it is characterised in that including:
Receive the instruction of the cloud data of user's second cloud server of access of the first cloud server;
According to the instruction, the access rights of the user are obtained;
The access rights are compared with pre-stored access rights, is judged whether consistent;
When consistent, judge that the user has the authority for accessing the cloud data, so that the user passes through first cloud The first telecommunication media between end server and second cloud server accesses the cloud data.
2. access method as claimed in claim 1, it is characterised in that described by the access rights and pre-stored access right Limit is compared, and is also included after judging whether unanimously:
When inconsistent, judge that the user, without the authority for accessing the cloud data, obtains second cloud server Rights management person authorized order;
According to the authorized order, the authority that the user accesses the cloud data is authorized, so that the user is by described the One telecommunication media accesses the cloud data.
3. access method as claimed in claim 2, it is characterised in that the authority pipe of acquisition second cloud server The authorized order of reason person includes:
When the rights management person is the first rights management person without authorization privilege, with all permissions second is obtained The authorization privilege instruction of rights management person;
Instructed according to the authorization privilege, authorize the first rights management person authorization privilege;
Obtain first authorized order of the second rights management person.
4. access method as claimed in claim 1, it is characterised in that accessed in the user of the first cloud server of the reception Also include before the instruction of the cloud data of the second cloud server:
Obtain the access rights authorized order of the rights management person of second cloud server;
According to the access rights authorized order, the data access authority that the user accesses the cloud data is authorized, and by institute State data access authority and be stored as the pre-stored access rights.
5. the access method as described in any one of Claims 1-4, it is characterised in that also include:
Receive the access instruction of the user of second cloud server;
According to the access instruction, the access privilege is authorized, so that the user accesses institute by the second telecommunication media State cloud data.
6. a kind of access mechanism of cloud data, it is characterised in that including:
Receiver module, the user for receiving the first cloud server accesses the instruction of the cloud data of the second cloud server;
Authority acquiring module, for according to the instruction, obtaining the access rights of the user;
Comparing module, for the access rights to be compared with pre-stored access rights, judges whether consistent;
Consistent module is judged, for when consistent, judging that the user has the authority for accessing the cloud data, so that the use Family accesses the cloud data by the first telecommunication media between first cloud server and second cloud server.
7. access mechanism as claimed in claim 6, it is characterised in that also include:
Authorized order acquisition module, for when inconsistent, judging that the user, without the authority for accessing the cloud data, obtains Take the authorized order of the rights management person of second cloud server;
Right-granting module, for according to the authorized order, the authority that the user accesses the cloud data being authorized, so that institute State user and the cloud data are accessed by first telecommunication media.
8. access mechanism as claimed in claim 7, it is characterised in that the authorized order acquisition module includes:
Authorization privilege instructs acquiring unit, for being the first rights management person without authorization privilege as the rights management person When, obtain the authorization privilege instruction of the second rights management person with all permissions;
Granting unit, for being instructed according to the authorization privilege, authorizes the first rights management person authorization privilege;
Acquiring unit, the first authorized order for obtaining the second rights management person.
9. access mechanism as claimed in claim 6, it is characterised in that also include:
Access rights authorized order module, the access rights mandate of the rights management person for obtaining second cloud server Instruction;
Authority authorizes memory module, and the cloud data are accessed for according to the access rights authorized order, authorizing the user Data access authority, and the data access authority is stored as the pre-stored access rights.
10. the access mechanism as described in any one of claim 6 to 9, it is characterised in that also include:
Access instruction receiver module, the access instruction of the user for receiving second cloud server;
Module is authorized, for according to the access instruction, authorizing the access privilege, so that the user is led to by second Cloud data described in letter medium access.
CN201710096132.2A 2017-02-22 2017-02-22 A kind of access method and access mechanism of cloud data Pending CN106850653A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710096132.2A CN106850653A (en) 2017-02-22 2017-02-22 A kind of access method and access mechanism of cloud data

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710096132.2A CN106850653A (en) 2017-02-22 2017-02-22 A kind of access method and access mechanism of cloud data

Publications (1)

Publication Number Publication Date
CN106850653A true CN106850653A (en) 2017-06-13

Family

ID=59134304

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710096132.2A Pending CN106850653A (en) 2017-02-22 2017-02-22 A kind of access method and access mechanism of cloud data

Country Status (1)

Country Link
CN (1) CN106850653A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114666138A (en) * 2022-03-25 2022-06-24 山东鼎夏智能科技有限公司 Data protection method and protection system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102571684A (en) * 2010-12-08 2012-07-11 上海杉达学院 Permission management method
CN103067406A (en) * 2013-01-14 2013-04-24 暨南大学 Access control system and access control method between public cloud and private cloud
CN103780609A (en) * 2014-01-14 2014-05-07 北京淦蓝润和信息技术有限公司 Cloud data processing method and device and cloud data security gateway
CN106485101A (en) * 2015-08-24 2017-03-08 阿里巴巴集团控股有限公司 The access method of data and device under a kind of cloud computing environment

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102571684A (en) * 2010-12-08 2012-07-11 上海杉达学院 Permission management method
CN103067406A (en) * 2013-01-14 2013-04-24 暨南大学 Access control system and access control method between public cloud and private cloud
CN103780609A (en) * 2014-01-14 2014-05-07 北京淦蓝润和信息技术有限公司 Cloud data processing method and device and cloud data security gateway
CN106485101A (en) * 2015-08-24 2017-03-08 阿里巴巴集团控股有限公司 The access method of data and device under a kind of cloud computing environment

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114666138A (en) * 2022-03-25 2022-06-24 山东鼎夏智能科技有限公司 Data protection method and protection system

Similar Documents

Publication Publication Date Title
CN109510849B (en) Cloud-storage account authentication method and device
CN110197058B (en) Unified internal control security management method, system, medium and electronic device
CN102724647B (en) Method and system for access capability authorization
CN103581187B (en) Method and system for controlling access rights
CN105593869B (en) Verification System, method and storage medium
CN106134154A (en) The technology that the authentication token operation utilizing machine to generate services
US20080172721A1 (en) Internet Access Time Control Method Using Authentication Assertion
CN106446638A (en) Cloud computing operation system security access method and device
CN108123795A (en) Distributing method, application process, publishing platform and the system of quantum key chip
CN108881218B (en) Data security enhancement method and system based on cloud storage management platform
CN110049048A (en) A kind of data access method, equipment and the readable medium of government affairs public service
CN109033857A (en) A kind of method, apparatus, equipment and readable storage medium storing program for executing accessing data
CN106789059A (en) A kind of long-range two-way access control system and method based on trust computing
CN107577538A (en) Container method for managing resource and system
CN109977039A (en) HD encryption method for storing cipher key, device, equipment and readable storage medium storing program for executing
CN106936765A (en) A kind of end side privacy of user guard method of web service applications
CN109347831A (en) A kind of double authentication safety access system and method based on UKey certification
CN104866774B (en) The method and system of account rights management
CN106453425A (en) Multiuser right management method and multiuser right management system for using host plugin
AU2018388459B2 (en) Consolidated identity
CN106850653A (en) A kind of access method and access mechanism of cloud data
EP2947593B1 (en) Security apparatus session sharing
CN113497806B (en) Remote login method, device and storage medium
CN109861982A (en) A kind of implementation method and device of authentication
CN105279414A (en) Verification device based on fingerprint application and verification method based on fingerprint application

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170613