CN106850653A - A kind of access method and access mechanism of cloud data - Google Patents
A kind of access method and access mechanism of cloud data Download PDFInfo
- Publication number
- CN106850653A CN106850653A CN201710096132.2A CN201710096132A CN106850653A CN 106850653 A CN106850653 A CN 106850653A CN 201710096132 A CN201710096132 A CN 201710096132A CN 106850653 A CN106850653 A CN 106850653A
- Authority
- CN
- China
- Prior art keywords
- access
- user
- cloud
- cloud data
- rights
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/105—Multiple levels of security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1097—Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a kind of access method of cloud data, the instruction of the cloud data of the second cloud server is accessed by the user for receiving the first cloud server;According to above-mentioned instruction, the access rights of above-mentioned user are obtained;Above-mentioned access rights are compared with pre-stored access rights, is judged whether consistent;When consistent, judge that above-mentioned user has the authority for accessing above-mentioned cloud data, so that above-mentioned user accesses above-mentioned cloud data by the first telecommunication media between above-mentioned first cloud server and above-mentioned second cloud server.The access rights of the cloud data in different cloud servers, the i.e. user with access rights are set and just may have access to corresponding cloud data, it is ensured that the cloud data of different cloud servers will not make the security of cloud data higher by the random access of user.It can be seen that, the application is conducive to improving the security of cloud data.
Description
Technical field
The present invention relates to field of cloud calculation, the more particularly to a kind of access method and access mechanism of cloud data.
Background technology
With the progress of network technology, cloud computing is also arisen at the historic moment.
Cloud be network, internet it is abstract, cloud computing can refer to be visited using available, network easily and on demand
Ask, corresponding computing is carried out into configurable computing resources shared pool.Cloud computing must be accompanied by cloud data access, and cloud number
According to being generally stored on cloud server.
User can access the cloud data stored on different cloud servers, to meet corresponding demand.And different high in the clouds
Corresponding cloud data can be arbitrarily accessed between the user of server, for example, the user of cloud server A can arbitrarily access cloud
Hold the cloud data of server.But, user arbitrarily accesses the cloud data on different cloud servers, can cause the access of cloud data
Security is relatively low.Therefore the security for how improving cloud data is this area problem demanding prompt solution.
The content of the invention
It is an object of the invention to provide a kind of access method and access mechanism of cloud data, it is therefore intended that solve existing skill
The relatively low problem of the security of art medium cloud data.
In order to solve the above technical problems, the present invention provides a kind of access method of cloud data, the method includes:
Receive the instruction of the cloud data of user's second cloud server of access of the first cloud server;
According to the instruction, the access rights of the user are obtained;
The access rights are compared with pre-stored access rights, is judged whether consistent;
When consistent, judge that the user has the authority for accessing the cloud data, so that the user is by described the
The first telecommunication media between one cloud server and second cloud server accesses the cloud data.
Alternatively, the access rights are compared with pre-stored access rights described, after judging whether unanimously
Also include:
When inconsistent, the user is judged without the authority for accessing the cloud data, obtain the second high in the clouds clothes
The authorized order of the rights management person of business device;
According to the authorized order, the authority that the user accesses the cloud data is authorized, so that the user passes through institute
State the first telecommunication media and access the cloud data.
Alternatively, described in the acquisition
The authorized order of the rights management person of the second cloud server includes:
When the rights management person is the first rights management person without authorization privilege, obtain with all permissions
The authorization privilege instruction of the second rights management person;
Instructed according to the authorization privilege, authorize the first rights management person authorization privilege;
Obtain first authorized order of the second rights management person.
Alternatively, the user in the first cloud server of the reception accesses the instruction of the cloud data of the second cloud server
Also include before:
Obtain the access rights authorized order of the rights management person of second cloud server;
According to the access rights authorized order, the data access authority that the user accesses the cloud data is authorized, and
The data access authority is stored as the pre-stored access rights.
Alternatively, also include:
Receive the access instruction of the user of second cloud server;
According to the access instruction, the access privilege is authorized, so that the user is visited by the second telecommunication media
Ask the cloud data.
Additionally, present invention also offers a kind of access mechanism of cloud data, the device includes:
Receiver module, the user for receiving the first cloud server accesses the finger of the cloud data of the second cloud server
Order;
Authority acquiring module, for according to the instruction, obtaining the access rights of the user;
Comparing module, for the access rights to be compared with pre-stored access rights, judges whether consistent;
Consistent module is judged, for when consistent, judging that the user has the authority for accessing the cloud data, so that institute
State user and the cloud is accessed by the first telecommunication media between first cloud server and second cloud server
Data.
Alternatively, also include:
Authorized order acquisition module, for when inconsistent, judging the user without the power for accessing the cloud data
Limit, obtains the authorized order of the rights management person of second cloud server;
Right-granting module, for according to the authorized order, authorizing the authority that the user accesses the cloud data, with
The user is set to access the cloud data by first telecommunication media.
Alternatively, the authorized order acquisition module includes:
Authorization privilege instructs acquiring unit, for being the first authority pipe without authorization privilege as the rights management person
During reason person, the authorization privilege instruction of the second rights management person with all permissions is obtained;
Granting unit, for being instructed according to the authorization privilege, authorizes the first rights management person authorization privilege;
Acquiring unit, the first authorized order for obtaining the second rights management person.
Alternatively, also include:
Access rights authorized order module, the access rights of the rights management person for obtaining second cloud server
Authorized order;
Authority authorizes memory module, and the cloud is accessed for according to the access rights authorized order, authorizing the user
The data access authority of data, and the data access authority is stored as the pre-stored access rights.
Alternatively, also include:
Access instruction receiver module, the access instruction of the user for receiving second cloud server;
Module is authorized, for according to the access instruction, authorizing the access privilege, so that the user is by the
Cloud data described in two communication medium access.
The access method and access mechanism of a kind of cloud data provided by the present invention, by receiving the first cloud server
User access the second cloud server cloud data instruction;According to above-mentioned instruction, the access rights of above-mentioned user are obtained;Will
Above-mentioned access rights are compared with pre-stored access rights, are judged whether consistent;When consistent, judge that above-mentioned user has and visit
The authority of above-mentioned cloud data is asked, so that above-mentioned user passes through between above-mentioned first cloud server and above-mentioned second cloud server
The first telecommunication media access above-mentioned cloud data.The access rights of the cloud data in different cloud servers are set, i.e., with visit
Ask that the user of authority just may have access to corresponding cloud data, it is ensured that the cloud data of different cloud servers will not be random by user
Access, make the security of cloud data higher.It can be seen that, the application is conducive to improving the security of cloud data.
Brief description of the drawings
For the clearer explanation embodiment of the present invention or the technical scheme of prior art, below will be to embodiment or existing
The accompanying drawing to be used needed for technology description is briefly described, it should be apparent that, drawings in the following description are only this hair
Some bright embodiments, for those of ordinary skill in the art, on the premise of not paying creative work, can be with root
Other accompanying drawings are obtained according to these accompanying drawings.
A kind of flow of specific embodiment of the cloud data access method that Fig. 1 is provided by the embodiment of the present invention is illustrated
Figure;
A kind of concrete configuration diagram of the cloud data access that Fig. 2 is provided by the embodiment of the present invention;
The structured flowchart of the cloud DAA that Fig. 3 is provided by the embodiment of the present invention.
Specific embodiment
In order that those skilled in the art more fully understand the present invention program, with reference to the accompanying drawings and detailed description
The present invention is described in further detail.Obviously, described embodiment is only a part of embodiment of the invention, rather than
Whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not making creative work premise
Lower obtained every other embodiment, belongs to the scope of protection of the invention.
Fig. 1 is referred to, a kind of specific embodiment of the cloud data access method that Fig. 1 is provided by the embodiment of the present invention
Schematic flow sheet, the access method is comprised the following steps:
Step 101:Receive the instruction of the cloud data of user's second cloud server of access of the first cloud server;
It should be noted that above-mentioned user can refer to the keeper of above-mentioned first cloud server, or above-mentioned
The domestic consumer of the first cloud server.
It should be evident that above-mentioned first cloud server can refer to that any two is different with above-mentioned second cloud server
Cloud server.What it may indicate that is that the cloud data accessed on current cloud server can be by another cloud server
User accesses.
Step 102:According to the instruction, the access rights of the user are obtained;
Specifically, according to the access instruction of above-mentioned user, can check and obtain according to the identity information of above-mentioned user
State the authority that user has.
Step 103:The access rights are compared with pre-stored access rights, is judged whether consistent;
It is understood that above-mentioned access right and above-mentioned pre-stored access rights are compared, check that above-mentioned user is
It is no to have corresponding authority.It can determine whether the user uses corresponding access rights by the user profile of above-mentioned user,
For example, can judge whether above-mentioned user has access rights according to the user name of above-mentioned user, you can with by whether record
There is the user name of above-mentioned user to judge whether above-mentioned user there are corresponding access rights.Certainly, differentiate whether above-mentioned user has
Corresponding access rights can also have other identification methods, be not limited thereto.
Step 104:When consistent, judge that the user has the authority for accessing the cloud data, so that the user is logical
The first telecommunication media crossed between first cloud server and second cloud server accesses the cloud data.
It should be noted that above-mentioned authority can refer to the authority that above-mentioned user can access above-mentioned cloud data.And it is above-mentioned
First telecommunication media can refer to Yunmen device, i.e., Yunmen device is provided between different cloud servers, and user can lead to
Corresponding Yunmen device is crossed, corresponding cloud server is accessed, for example, being provided with Yunmen device A, high in the clouds on cloud server A
Yunmen device B is provided with server B, the user in cloud server needs to access the cloud data on cloud server A, then uses
Family can accordingly be accessed by Yunmen device A.
It is understood that above-mentioned Yunmen device can be authenticated to user, i.e., user accesses cloud by Yunmen device
, it is necessary to pass through above-mentioned Yunmen device during data, Yunmen device judges whether current accessed user has corresponding access rights.It is aobvious and
Easy insight, above-mentioned Yunmen device can be embodied in one section of programmed logic code with authentication functions, it is of course also possible to table
It is now other forms.
In order to preferably manage the access rights of each user, rights management person can be set, with the access to cloud data
Authority is managed.
And in order that user can successfully have access to corresponding cloud data, extraction mandate can be carried out to user, that is, carry
Take and authorize the authority that user accesses corresponding cloud data.
Therefore in some embodiments of the invention, the second cloud server is accessed in the user for receiving the first cloud server
Cloud data instruction before can also include:Obtain the access rights mandate of the rights management person of second cloud server
Instruction;According to the access rights authorized order, the data access authority that the user accesses the cloud data is authorized, and by institute
State data access authority and be stored as the pre-stored access rights.
It should be noted that above-mentioned rights management person also refers to people, i.e. keeper can be grasped by corresponding mandate
Make, authorize user corresponding authority;It is of course also possible to refer to that certain has the code of rights management function, i.e., by performing phase
The code answered carries out corresponding rights management.
After authorizing the corresponding authority of user, Yunmen device can correspondingly record the information of the user, so as to follow-up Yunmen
Device is used when authenticating.
The user for accessing cloud data may not authorized in advance, in order that the user for meeting access consideration has access to accordingly
Cloud data, it is also possible to after judging that user does not possess access rights, authorize access privilege so that user access needed for
Cloud data.
Therefore in some embodiments of the invention, its licensing process can be specially:When inconsistent, the user is judged
Without the authority for accessing the cloud data, the authorized order of the rights management person of second cloud server is obtained;According to
The authorized order, authorizes the authority that the user accesses the cloud data, so that the user is by the described first communication matchmaker
It is situated between and accesses the cloud data.
In authentication process, when judging that active user does not have access rights, rights management person can authorize active user
Corresponding access rights, make do not possess access rights, but meet the user of access consideration that corresponding cloud data can be accessed.
For the work of clear and definite rights management person, rights management person can be divided into super keepe and common management
Member.Super keepe possesses all permissions, and common management administrator possesses part authority.Super keepe can be to common management administrator
Authority be managed limitation.Usually, super keepe can have one, and common management administrator is multiple.
Because rights management person may have super keepe and common management administrator, usually, common management administrator does not possess and awards
Power authority.But, in some cases, super keepe can authorize common management administrator's authorization privilege.
Therefore in some embodiments of the invention, its process can be specially:When the rights management person is without awarding
When weighing the first rights management person of authority, the authorization privilege instruction of the second rights management person with all permissions is obtained;According to
The authorization privilege instruction, authorizes the first rights management person authorization privilege;Obtain the first of the second rights management person
Authorized order.
It is understood that above-mentioned first rights management person can refer to common management administrator, the second rights management person can be with
It refer to super keepe.Above-mentioned authorization privilege can refer to authorize access privilege, and its user does not possess access rights originally.
Above-mentioned authorization privilege can specifically show as using the authority of Yunmen device, i.e. user and access cloud by Yunmen device
The authority of data.Certainly, above-mentioned authorization privilege can also refer to other authorization privileges, be not limited thereto.For example, high in the clouds takes
The common management administrator of business device A, does not possess and authorizes the authority that user uses Yunmen device A originally, but cloud server A super pipe
Reason person can authorize common management administrator corresponding authorization privilege, possess common management administrator and authorize user and use Yunmen device A
Authority, i.e. user can access the cloud data of cloud server A by Yunmen device A.
It should be noted that cloud connection center fixture can be set on each cloud server.In above-mentioned cloud connection
Center device can refer to the medium of data communication between different cloud servers, and it can also have authority comparison function.Accordingly
Ground, can be provided with cloud connection center fixture and Yunmen device, for example, cloud server A is set on each cloud server
There are cloud connection center fixture A and Yunmen device A, cloud server B to be provided with cloud connection center fixture B and Yunmen device B etc..
And when the user for accessing cloud data is the user in cloud server, then center can be connected by corresponding cloud and filled
Put and conveniently and efficiently accessed, without the authentication process for carrying out Yunmen device.
Therefore in some embodiments of the invention, the process that user accesses the cloud data of corresponding cloud server can have
Body is:Receive the access instruction of the user of second cloud server;According to the access instruction, authorize the user and access
Authority, so that the user accesses the cloud data by the second telecommunication media.
It is understood that above-mentioned second telecommunication media can refer to cloud connection center fixture, above-mentioned user can refer to
The rights management person of the second cloud server, it is also possible to refer to domestic consumer.(example when user accesses corresponding cloud server
Such as, the user of cloud server A, when accessing the cloud data in cloud server A), it is not necessary to by the mandate of Yunmen device
Journey, i.e., it is convenient and swift, also ensure that security when accessing cloud data.
It should be evident that cloud connection center fixture and Yunmen device can be set on each cloud.In order to preferably introduce
Corresponding relation between each, may refer to Fig. 2, and the one kind for the cloud data access that Fig. 2 is provided by the embodiment of the present invention is specific
Configuration diagram.
As shown in Fig. 2 the user in cloud server B accesses the cloud data in cloud server A by Yunmen device A,
And cloud server A super keepes and cloud server A common management administrators connect center fixture A and access cloud service by cloud
Cloud data in device A, and cloud server A super keepes can also access the cloud number of cloud server A by Yunmen device A
According to.
The access method of the cloud data that the embodiment of the present invention is provided, is accessed by the user for receiving the first cloud server
The instruction of the cloud data of the second cloud server;According to above-mentioned instruction, the access rights of above-mentioned user are obtained;By above-mentioned access right
Limit is compared with pre-stored access rights, is judged whether consistent;When consistent, judge that above-mentioned user has and access above-mentioned cloud number
According to authority so that above-mentioned user by between above-mentioned first cloud server and above-mentioned second cloud server first communication
The above-mentioned cloud data of medium access.The access rights of the cloud data in different cloud servers, the i.e. use with access rights are set
Family just may have access to corresponding cloud data, it is ensured that the cloud data of different cloud servers will not be made by the random access of user
The security of cloud data is higher.It can be seen that, the method is conducive to improving the security of cloud data.
Cloud DAA provided in an embodiment of the present invention is introduced below, cloud data access dress described below
Putting can be mutually to should refer to above-described cloud data access method.
The structured flowchart of the cloud DAA that Fig. 3 is provided by the embodiment of the present invention, the access of the cloud data of reference picture 3
Device can include:
Receiver module 301, the user for receiving the first cloud server accesses the cloud data of the second cloud server
Instruction;
Authority acquiring module 302, for according to the instruction, obtaining the access rights of the user;
Comparing module 303, for the access rights to be compared with pre-stored access rights, judges whether consistent;
Judge consistent module 304, for when consistent, judging that the user has the authority for accessing the cloud data, with
The user is passed through the first telecommunication media between first cloud server and second cloud server and access institute
State cloud data.
Alternatively, also include:
Authorized order acquisition module, for when inconsistent, judging the user without the power for accessing the cloud data
Limit, obtains the authorized order of the rights management person of second cloud server;
Right-granting module, for according to the authorized order, authorizing the authority that the user accesses the cloud data, with
The user is set to access the cloud data by first telecommunication media.
Alternatively, the authorized order acquisition module includes:
Authorization privilege instructs acquiring unit, for being the first authority pipe without authorization privilege as the rights management person
During reason person, the authorization privilege instruction of the second rights management person with all permissions is obtained;
Granting unit, for being instructed according to the authorization privilege, authorizes the first rights management person authorization privilege;
Acquiring unit, the first authorized order for obtaining the second rights management person.
Alternatively, also include:
Access rights authorized order module, the access rights of the rights management person for obtaining second cloud server
Authorized order;
Authority authorizes memory module, and the cloud is accessed for according to the access rights authorized order, authorizing the user
The data access authority of data, and the data access authority is stored as the pre-stored access rights.
Alternatively, also include:
Access instruction receiver module, the access instruction of the user for receiving second cloud server;
Module is authorized, for according to the access instruction, authorizing the access privilege, so that the user is by the
Cloud data described in two communication medium access.
The access mechanism of the cloud data that the embodiment of the present invention is provided, sets the visit of the cloud data in different cloud servers
Ask that authority, the i.e. user with access rights just may have access to corresponding cloud data, it is ensured that the cloud number of different cloud servers
According to by the random access of user the security of cloud data will not being made higher.It can be seen that, the device is conducive to improving the safety of cloud data
Property.
Each embodiment is described by the way of progressive in this specification, and what each embodiment was stressed is and other
The difference of embodiment, between each embodiment same or similar part mutually referring to.For being filled disclosed in embodiment
For putting, because it is corresponded to the method disclosed in Example, so description is fairly simple, related part is referring to method part
Illustrate.
Professional further appreciates that, with reference to the unit of each example of the embodiments described herein description
And algorithm steps, can be realized with electronic hardware, computer software or the combination of the two, in order to clearly demonstrate hardware and
The interchangeability of software, generally describes the composition and step of each example according to function in the above description.These
Function is performed with hardware or software mode actually, depending on the application-specific and design constraint of technical scheme.Specialty
Technical staff can realize described function to each specific application using distinct methods, but this realization should not
Think beyond the scope of this invention.
The step of method or algorithm for being described with reference to the embodiments described herein, directly can be held with hardware, processor
Capable software module, or the two combination is implemented.Software module can be placed in random access memory (RAM), internal memory, read-only deposit
Reservoir (ROM), electrically programmable ROM, electrically erasable ROM, register, hard disk, moveable magnetic disc, CD-ROM or technology
In field in known any other form of storage medium.
The access method and access mechanism to cloud data provided by the present invention are described in detail above.Herein
Apply specific case to be set forth principle of the invention and implementation method, the explanation of above example is only intended to help
Understand the method for the present invention and its core concept.It should be pointed out that for those skilled in the art, not taking off
On the premise of the principle of the invention, some improvement and modification can also be carried out to the present invention, these are improved and modification also falls into this
In invention scope of the claims.
Claims (10)
1. a kind of access method of cloud data, it is characterised in that including:
Receive the instruction of the cloud data of user's second cloud server of access of the first cloud server;
According to the instruction, the access rights of the user are obtained;
The access rights are compared with pre-stored access rights, is judged whether consistent;
When consistent, judge that the user has the authority for accessing the cloud data, so that the user passes through first cloud
The first telecommunication media between end server and second cloud server accesses the cloud data.
2. access method as claimed in claim 1, it is characterised in that described by the access rights and pre-stored access right
Limit is compared, and is also included after judging whether unanimously:
When inconsistent, judge that the user, without the authority for accessing the cloud data, obtains second cloud server
Rights management person authorized order;
According to the authorized order, the authority that the user accesses the cloud data is authorized, so that the user is by described the
One telecommunication media accesses the cloud data.
3. access method as claimed in claim 2, it is characterised in that the authority pipe of acquisition second cloud server
The authorized order of reason person includes:
When the rights management person is the first rights management person without authorization privilege, with all permissions second is obtained
The authorization privilege instruction of rights management person;
Instructed according to the authorization privilege, authorize the first rights management person authorization privilege;
Obtain first authorized order of the second rights management person.
4. access method as claimed in claim 1, it is characterised in that accessed in the user of the first cloud server of the reception
Also include before the instruction of the cloud data of the second cloud server:
Obtain the access rights authorized order of the rights management person of second cloud server;
According to the access rights authorized order, the data access authority that the user accesses the cloud data is authorized, and by institute
State data access authority and be stored as the pre-stored access rights.
5. the access method as described in any one of Claims 1-4, it is characterised in that also include:
Receive the access instruction of the user of second cloud server;
According to the access instruction, the access privilege is authorized, so that the user accesses institute by the second telecommunication media
State cloud data.
6. a kind of access mechanism of cloud data, it is characterised in that including:
Receiver module, the user for receiving the first cloud server accesses the instruction of the cloud data of the second cloud server;
Authority acquiring module, for according to the instruction, obtaining the access rights of the user;
Comparing module, for the access rights to be compared with pre-stored access rights, judges whether consistent;
Consistent module is judged, for when consistent, judging that the user has the authority for accessing the cloud data, so that the use
Family accesses the cloud data by the first telecommunication media between first cloud server and second cloud server.
7. access mechanism as claimed in claim 6, it is characterised in that also include:
Authorized order acquisition module, for when inconsistent, judging that the user, without the authority for accessing the cloud data, obtains
Take the authorized order of the rights management person of second cloud server;
Right-granting module, for according to the authorized order, the authority that the user accesses the cloud data being authorized, so that institute
State user and the cloud data are accessed by first telecommunication media.
8. access mechanism as claimed in claim 7, it is characterised in that the authorized order acquisition module includes:
Authorization privilege instructs acquiring unit, for being the first rights management person without authorization privilege as the rights management person
When, obtain the authorization privilege instruction of the second rights management person with all permissions;
Granting unit, for being instructed according to the authorization privilege, authorizes the first rights management person authorization privilege;
Acquiring unit, the first authorized order for obtaining the second rights management person.
9. access mechanism as claimed in claim 6, it is characterised in that also include:
Access rights authorized order module, the access rights mandate of the rights management person for obtaining second cloud server
Instruction;
Authority authorizes memory module, and the cloud data are accessed for according to the access rights authorized order, authorizing the user
Data access authority, and the data access authority is stored as the pre-stored access rights.
10. the access mechanism as described in any one of claim 6 to 9, it is characterised in that also include:
Access instruction receiver module, the access instruction of the user for receiving second cloud server;
Module is authorized, for according to the access instruction, authorizing the access privilege, so that the user is led to by second
Cloud data described in letter medium access.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710096132.2A CN106850653A (en) | 2017-02-22 | 2017-02-22 | A kind of access method and access mechanism of cloud data |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710096132.2A CN106850653A (en) | 2017-02-22 | 2017-02-22 | A kind of access method and access mechanism of cloud data |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106850653A true CN106850653A (en) | 2017-06-13 |
Family
ID=59134304
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710096132.2A Pending CN106850653A (en) | 2017-02-22 | 2017-02-22 | A kind of access method and access mechanism of cloud data |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106850653A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114666138A (en) * | 2022-03-25 | 2022-06-24 | 山东鼎夏智能科技有限公司 | Data protection method and protection system |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102571684A (en) * | 2010-12-08 | 2012-07-11 | 上海杉达学院 | Permission management method |
CN103067406A (en) * | 2013-01-14 | 2013-04-24 | 暨南大学 | Access control system and access control method between public cloud and private cloud |
CN103780609A (en) * | 2014-01-14 | 2014-05-07 | 北京淦蓝润和信息技术有限公司 | Cloud data processing method and device and cloud data security gateway |
CN106485101A (en) * | 2015-08-24 | 2017-03-08 | 阿里巴巴集团控股有限公司 | The access method of data and device under a kind of cloud computing environment |
-
2017
- 2017-02-22 CN CN201710096132.2A patent/CN106850653A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102571684A (en) * | 2010-12-08 | 2012-07-11 | 上海杉达学院 | Permission management method |
CN103067406A (en) * | 2013-01-14 | 2013-04-24 | 暨南大学 | Access control system and access control method between public cloud and private cloud |
CN103780609A (en) * | 2014-01-14 | 2014-05-07 | 北京淦蓝润和信息技术有限公司 | Cloud data processing method and device and cloud data security gateway |
CN106485101A (en) * | 2015-08-24 | 2017-03-08 | 阿里巴巴集团控股有限公司 | The access method of data and device under a kind of cloud computing environment |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114666138A (en) * | 2022-03-25 | 2022-06-24 | 山东鼎夏智能科技有限公司 | Data protection method and protection system |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN109510849B (en) | Cloud-storage account authentication method and device | |
CN110197058B (en) | Unified internal control security management method, system, medium and electronic device | |
CN102724647B (en) | Method and system for access capability authorization | |
CN103581187B (en) | Method and system for controlling access rights | |
CN105593869B (en) | Verification System, method and storage medium | |
CN106134154A (en) | The technology that the authentication token operation utilizing machine to generate services | |
US20080172721A1 (en) | Internet Access Time Control Method Using Authentication Assertion | |
CN106446638A (en) | Cloud computing operation system security access method and device | |
CN108123795A (en) | Distributing method, application process, publishing platform and the system of quantum key chip | |
CN108881218B (en) | Data security enhancement method and system based on cloud storage management platform | |
CN110049048A (en) | A kind of data access method, equipment and the readable medium of government affairs public service | |
CN109033857A (en) | A kind of method, apparatus, equipment and readable storage medium storing program for executing accessing data | |
CN106789059A (en) | A kind of long-range two-way access control system and method based on trust computing | |
CN107577538A (en) | Container method for managing resource and system | |
CN109977039A (en) | HD encryption method for storing cipher key, device, equipment and readable storage medium storing program for executing | |
CN106936765A (en) | A kind of end side privacy of user guard method of web service applications | |
CN109347831A (en) | A kind of double authentication safety access system and method based on UKey certification | |
CN104866774B (en) | The method and system of account rights management | |
CN106453425A (en) | Multiuser right management method and multiuser right management system for using host plugin | |
AU2018388459B2 (en) | Consolidated identity | |
CN106850653A (en) | A kind of access method and access mechanism of cloud data | |
EP2947593B1 (en) | Security apparatus session sharing | |
CN113497806B (en) | Remote login method, device and storage medium | |
CN109861982A (en) | A kind of implementation method and device of authentication | |
CN105279414A (en) | Verification device based on fingerprint application and verification method based on fingerprint application |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170613 |