云计算环境下信任管理机制研究

发布时间：2018-04-25 22:42

本文选题：本体 + 上下文　；参考：《曲阜师范大学》2014年硕士论文

【摘要】：云计算是一种融合分布式计算、网格计算和并行计算等技术的新型商业计算模式，它利用虚拟化技术，将存储资源、计算资源、网络资源和应用资源等以服务的形式对外发布。云计算用户可以“轻而易举”获取“弹性且无处不在”的服务。云计算的服务思想一方面可以缩短用户重新部署或升级IT资源的时间，另一方面可以降低软件和基础设施成本，从而在时间和空间上都能给用户带来极大的益处。然而，云计算服务在提供上述优势的同时带也来了新的安全问题：由于服务相对于用户来说是位置、应用透明的，不受用户直接控制，因而用户既担心存放到云端的隐私信息和核心数据被泄露，又质疑与之共享、交互服务的可信度。由此可见，无论是用户利用云计算平台进行数据存储、科学计算，还是与其他用户协作完成自己的作业任务，信任都成为不得不考虑的重要问题。在保持云服务优势的同时，针对如何提高交互服务间的信任度，本文从云计算的视角对信任机制做了如下四方面的研究：第一，针对云计算环境，对信任及信任关系进行了详细研究，给出了综合服务消费者动机（需求信息和反馈信息等）、行为上下文（交互时间、历史交易记录和软硬件环境等）和服务自身质量（SLA和QoS等）有关的信任要素构造信任本体的方法。第二，从云服务的角度对信任管理模型进行分类，在分类的基础上，，构建了一种融合云服务的信任管理架构，并详细分析了该架构所包含的与信任有关的要素。第三，给出了一种云计算环境下基于上下文本体的信任评估方法。该方法利用本体既可以对属性进行一致性语义描述，又可以借助时间和交互次数对信任进行动态评估。利用信任本体具有的语义特性和推理机制，描述了信任评估的具体过程。第四，提出了一种基于本体的自动信任协商模型，该模型从本体自身的特点和本体信息的传输过程两个层面对敏感信息进行保护。总之，本文从云服务协作的角度对信任有关的关键要素进行分类和综合，构建了信任本体；对信任管理模型从策略、推荐、声誉和预测四个角度进行分析，提出了一种适合云计算环境的信任管理分层架构，并将信任本体中的信任要素与本文提出的信任管理模型的三层架构进行了对应和分析，对云环境的安全建设具有理论和实践意义；利用信任本体记录服务的运行和交互的历史信息，提出了一种基于本体的信任度评估方法，用仿真实验验证了该方法的有效性；利用本体自身的层次性，从信任协商的请求和应答两个层面对敏感信息保护的策略进行了详述。为进一步保证敏感信息在传输过程层面的安全性，提出了一种基于本体的自动信任协商模型。
[Abstract]:Cloud computing is a new business computing model which combines distributed computing, grid computing and parallel computing. It uses virtualization technology to release storage resources, computing resources, network resources and application resources as services. Cloud computing users can easily access "flexible and ubiquitous" services. On the one hand, the service idea of cloud computing can shorten the time for users to redeploy or upgrade IT resources, on the other hand, it can reduce the cost of software and infrastructure, which can bring great benefits to users in time and space. However, cloud computing services offer these advantages with new security issues: because the service is located relative to the user, the application is transparent and not directly controlled by the user. Therefore, users not only worry that the privacy information and core data stored in the cloud will be leaked, but also question the credibility of the interactive services. It can be seen that whether users use cloud computing platform for data storage, scientific computing, or cooperate with other users to complete their own tasks, trust has become an important issue to be considered. While maintaining the advantage of cloud service, aiming at how to improve the trust degree between interactive services, this paper makes the following four aspects of research on trust mechanism from the perspective of cloud computing: Firstly, trust and trust relationship are studied in detail in cloud computing environment, and the comprehensive service consumer motivation (requirement information and feedback information), behavior context (interaction time, etc.) are given. The method of constructing trust ontology is based on the historical transaction record and software / hardware environment) and the quality of service (SLA and QoS etc.). Secondly, the trust management model is classified from the point of view of cloud service. On the basis of the classification, a trust management architecture integrating cloud services is constructed, and the factors related to trust are analyzed in detail. Thirdly, a trust evaluation method based on context ontology in cloud computing environment is presented. In this method, ontology can be used not only to describe attribute consistency semantics, but also to evaluate trust dynamically by time and interaction times. The process of trust evaluation is described by using the semantic characteristics and reasoning mechanism of trust ontology. Fourthly, an automatic trust negotiation model based on ontology is proposed, which protects sensitive information from two aspects: ontology's own characteristics and ontology's information transmission process. In a word, this paper classifies and synthesizes the key elements related to trust from the perspective of cloud service collaboration, constructs trust ontology, and analyzes trust management model from four angles: policy, recommendation, reputation and prediction. In this paper, a trust management hierarchical architecture suitable for cloud computing environment is proposed, and the trust elements in the trust ontology are compared with the three-tier framework of the trust management model proposed in this paper. It has theoretical and practical significance for the security construction of cloud environment, and uses trust ontology to record the running and interactive historical information of the service, proposes an ontology-based trust evaluation method, and verifies the effectiveness of the method by simulation experiments. Based on the hierarchy of ontology, the strategy of protecting sensitive information is described in detail from two levels: request and response of trust negotiation. In order to ensure the security of sensitive information in the transmission process, an ontology based automatic trust negotiation model is proposed.
【学位授予单位】：曲阜师范大学
【学位级别】：硕士
【学位授予年份】：2014
【分类号】：TP393.08

【参考文献】