Multi-tenant virtual domain isolation construction method based on L-DHT
Aiming at the problem of security isolation of multi-tenant data in cloud environment,a tenant virtual domain isolation construction method based on L-DHT was proposed.Firstly,through the design of multi-tenant isolation mapping algorithm based on label-hash mapping,the balanced mapping mechanism of...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2020-06-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2020088/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841539341905559552 |
|---|---|
| author | Lifeng CAO Xin LU Zhensheng GAO Xuehui DU |
| author_facet | Lifeng CAO Xin LU Zhensheng GAO Xuehui DU |
| author_sort | Lifeng CAO |
| collection | DOAJ |
| description | Aiming at the problem of security isolation of multi-tenant data in cloud environment,a tenant virtual domain isolation construction method based on L-DHT was proposed.Firstly,through the design of multi-tenant isolation mapping algorithm based on label-hash mapping,the balanced mapping mechanism of tenant resources was constructed to realize the distributed management of tenant resources.Secondly,for the security isolation and access between tenant data mapped to the same storage node,based on the predicate encryption mechanism,through the effective binding of security labels and tenant data,a tenant data isolation storage algorithm based on label predicate encryption was designed.Finally,by the design of multi-dimensional tenant data isolation control rules and using the analysis and authentication of security labels,independent,logical and secure virtual domains between tenants were built hierarchically.The security analysis shows that the method constructs tenant virtual domains which are secure and non-interference with each other.The simulation results show that the mapping algorithm can achieve a better dynamic load balance.The efficiency and security of data access are verified by the comparative analysis of tenant data retrieval efficiency and authentication access security. |
| format | Article |
| id | doaj-art-44e22d3ac96e4ed7b68eb97dd3e3b8c5 |
| institution | Kabale University |
| issn | 1000-436X |
| language | zho |
| publishDate | 2020-06-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-44e22d3ac96e4ed7b68eb97dd3e3b8c52025-01-14T07:19:11ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2020-06-014118420159735150Multi-tenant virtual domain isolation construction method based on L-DHTLifeng CAOXin LUZhensheng GAOXuehui DUAiming at the problem of security isolation of multi-tenant data in cloud environment,a tenant virtual domain isolation construction method based on L-DHT was proposed.Firstly,through the design of multi-tenant isolation mapping algorithm based on label-hash mapping,the balanced mapping mechanism of tenant resources was constructed to realize the distributed management of tenant resources.Secondly,for the security isolation and access between tenant data mapped to the same storage node,based on the predicate encryption mechanism,through the effective binding of security labels and tenant data,a tenant data isolation storage algorithm based on label predicate encryption was designed.Finally,by the design of multi-dimensional tenant data isolation control rules and using the analysis and authentication of security labels,independent,logical and secure virtual domains between tenants were built hierarchically.The security analysis shows that the method constructs tenant virtual domains which are secure and non-interference with each other.The simulation results show that the mapping algorithm can achieve a better dynamic load balance.The efficiency and security of data access are verified by the comparative analysis of tenant data retrieval efficiency and authentication access security.http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2020088/tenant virtual domaindomain isolatorsecurity labelmulti-tenant mappingdata isolation |
| spellingShingle | Lifeng CAO Xin LU Zhensheng GAO Xuehui DU Multi-tenant virtual domain isolation construction method based on L-DHT Tongxin xuebao tenant virtual domain domain isolator security label multi-tenant mapping data isolation |
| title | Multi-tenant virtual domain isolation construction method based on L-DHT |
| title_full | Multi-tenant virtual domain isolation construction method based on L-DHT |
| title_fullStr | Multi-tenant virtual domain isolation construction method based on L-DHT |
| title_full_unstemmed | Multi-tenant virtual domain isolation construction method based on L-DHT |
| title_short | Multi-tenant virtual domain isolation construction method based on L-DHT |
| title_sort | multi tenant virtual domain isolation construction method based on l dht |
| topic | tenant virtual domain domain isolator security label multi-tenant mapping data isolation |
| url | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2020088/ |
| work_keys_str_mv | AT lifengcao multitenantvirtualdomainisolationconstructionmethodbasedonldht AT xinlu multitenantvirtualdomainisolationconstructionmethodbasedonldht AT zhenshenggao multitenantvirtualdomainisolationconstructionmethodbasedonldht AT xuehuidu multitenantvirtualdomainisolationconstructionmethodbasedonldht |