A dynamic network access control mechanism for virtual desktop environment

To better improve the information security and mobility issues, many enterprises have started to adopt virtual desktop technologies environment. During the setup stage of current virtual desktop services, user access authority must be predefined roughly as network access level control and other applications restriction respectively. Unfortunately, the authorization capability for IP network access is not flexible and effective. In this paper, we propose a flexible and dynamic network access control system for the virtual desktop environment. When a user tries to login to the virtual desktop environment, the proposed mechanism automatically configures the user´s network access policy based on the user´s authority and the assigned virtual desktop IP address. In contrast to the existing methods, this proposed mechanism satisfies the scenario of dynamic IP address assignment. While implementing this proposed method, the required IP amount in virtual desktop environment is effectively reduced and the security is successfully enhanced.