本文選題：私有云平臺(tái)　切入點(diǎn)：訪問控制　出處：《北方工業(yè)大學(xué)》2015年碩士論文　論文類型：學(xué)位論文

【摘要】：在云計(jì)算技術(shù)快速發(fā)展,網(wǎng)絡(luò)速度的提升和硬件的計(jì)算能力大大增強(qiáng)的帶動(dòng)下,人類進(jìn)入到互聯(lián)網(wǎng)時(shí)代。全世界公司和組織都在使用云計(jì)算技術(shù)來構(gòu)建各自的公有云和私有云。對(duì)于學(xué)校和小型組織,使用開源的云框架構(gòu)建自己的私有云是一個(gè)很好的選擇。利用搭建的私有云平臺(tái),對(duì)資源進(jìn)行管理,提高資源的利用效率具有實(shí)際意義。 首先本文從云計(jì)算技術(shù)的發(fā)展開始,研究了建立私有云的優(yōu)勢(shì)和需要解決的問題。通過比較幾種開源的云平臺(tái)框架的特點(diǎn),選取OpenStack作為搭建私有云平臺(tái)的開源框架,并介紹了OpenStack的系統(tǒng)結(jié)構(gòu)和各組件功能。在此基礎(chǔ)上論文對(duì)OpenStack三種部署方式進(jìn)行了研究。 然后,本文主要對(duì)OpenStack框架中負(fù)責(zé)私有云平臺(tái)訪問控制資源的Keystone組件,進(jìn)行研究和分析。從Keystone的用戶管理、多租戶機(jī)制和Token管理幾方面入手,通過對(duì)實(shí)際代碼的分析,總結(jié)了Keystone組件的安全認(rèn)證工作流程。通過對(duì)Keystone組件的研究,為構(gòu)建私有云平臺(tái)的訪問控制體系提供了依據(jù)和方法。 接下來,本文闡述了私有云平臺(tái)下需要管理的資源,并對(duì)用于管理資源的OpenStack組件分別進(jìn)行研究分析。最后論文給出了一個(gè)針對(duì)實(shí)際應(yīng)用的私有云平臺(tái)構(gòu)建方案,并且實(shí)際演示了部署OpenStack的過程。 最后,在已建立起的OpenStack私有云平臺(tái)上,根據(jù)實(shí)際應(yīng)用需求進(jìn)行二次開發(fā)。實(shí)現(xiàn)了對(duì)虛擬機(jī)資源,網(wǎng)絡(luò)資源,存儲(chǔ)資源,鏡像資源等私有云平臺(tái)資源進(jìn)行統(tǒng)一管理的資源池功能。同時(shí)實(shí)現(xiàn)了對(duì)資源進(jìn)行訪問控制的功能。所有功能的開發(fā)均調(diào)用OpenStack所提供的API,實(shí)現(xiàn)了OpenStack平臺(tái)的可擴(kuò)展性和模塊之間的獨(dú)立性。開發(fā)的私有云管理平臺(tái)可以提供對(duì)IT資源的基本管理,以及用戶對(duì)私有云平臺(tái)資源訪問控制管理。
[Abstract]:Driven by the rapid development of cloud computing technology, the improvement of network speed and the greatly enhanced computing power of hardware, People are entering the Internet age. Companies and organizations around the world are using cloud computing technology to build their own public and private clouds. For schools and small organizations, It is a good choice to use the open source cloud framework to build its own private cloud. It is of practical significance to use the private cloud platform to manage resources and improve the efficiency of resource utilization. First of all, this paper starts with the development of cloud computing technology, studies the advantages of building private cloud and the problems that need to be solved. By comparing the characteristics of several open source cloud platform frameworks, we select OpenStack as the open source framework to build private cloud platform. The system structure and component functions of OpenStack are introduced, and the three deployment modes of OpenStack are studied in this paper. Then, this paper mainly studies and analyzes the Keystone component which is responsible for private cloud platform access control resource in OpenStack framework. From the aspects of Keystone user management, multi-tenant mechanism and Token management, this paper analyzes the actual code. This paper summarizes the security authentication workflow of Keystone components and provides the basis and method for constructing the access control system of private cloud platform through the research of Keystone components. Then, this paper describes the resources to be managed under the private cloud platform, and analyzes the OpenStack components used to manage the resources. Finally, this paper presents a private cloud platform construction scheme for practical applications. And the actual demonstration of the deployment of OpenStack process. Finally, on the established OpenStack private cloud platform, according to the actual application requirements, the secondary development of virtual machine resources, network resources, storage resources, The resource pool of private cloud platform resources such as mirror resources is managed uniformly. At the same time, the access control function of resources is realized. All the functions are developed by calling API provided by OpenStack, and the extensibility of OpenStack platform is realized. Private cloud management platform developed to provide basic management of IT resources, And the user to the private cloud platform resource access control management.
【學(xué)位授予單位】：北方工業(yè)大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2015
【分類號(hào)】：TP393.09;TP309

【參考文獻(xiàn)】

相關(guān)期刊論文 前7條

1 李小寧;李磊;金連文;黎德生;;基于OpenStack構(gòu)建私有云計(jì)算平臺(tái)[J];電信科學(xué);2012年09期

2 姜毅;王偉軍;曹麗;劉凱;陳桂強(qiáng);;基于開源軟件的私有云計(jì)算平臺(tái)構(gòu)建[J];電信科學(xué);2013年01期

3 尹超;黃必清;劉飛;聞立杰;王朝坤;黎曉東;楊書評(píng);葉丹;柳先輝;;中小企業(yè)云制造服務(wù)平臺(tái)共性關(guān)鍵技術(shù)體系[J];計(jì)算機(jī)集成制造系統(tǒng);2011年03期

4 馬友禮;陳世平;;OpenStack云虛擬機(jī)安全策略研究[J];信息技術(shù);2014年01期

5 趙少卡;李立耀;凌曉;徐聰;楊家海;;基于OpenStack的清華云平臺(tái)構(gòu)建與調(diào)度方案設(shè)計(jì)[J];計(jì)算機(jī)應(yīng)用;2013年12期

6 徐磊;王磊;;基于OpenStack的私有云搭建的研究[J];信息通信;2014年05期

7 李知杰;趙健飛;;OpenStack開源云計(jì)算平臺(tái)[J];軟件導(dǎo)刊;2012年12期

，

本文編號(hào)：1652476