学术文献库

In recent years, cloud computing has been developing rapidly and is widely used in various fields such as commerce and scientific research. However, security issues, including access control, are a very important problem in popularizing cloud computing and this has influenced its wide application of cloud computing. As one of the solutions to these problems, we have proposed a blockchain-based role-based access control model with the separation of duties constraints in a cloud environment. In the model, we used Hyperledger Fabric as a blockchain platform for storing the access control policies and provided several functions for effective role management. In addition, we presented an access control scheme for cloud storage data by combining the proposed model and the verification mechanism for the user's ownership of a role and analyzed the security properties of the scheme. Finally, we deployed Hyperledger Fabric test network, implemented an online test system that performs access control using the proposed scheme in the Ali cloud environment, and evaluated the model performance in this scenario.