摘要
最近大数据的增长正在引发安全和隐私问题,传统的访问控制模型难以对海量数据提供动态的访问控制。针对Hadoop云平台的数据安全问题,提出了一个基于数据敏感性的Hadoop大数据访问控制模型。模型利用数据内容、使用模式和数据敏感性来强化访问控制策略,在评估数据敏感性上用户干预最小,能根据数据集的增加和删除所引起的数据敏感性变化来调整访问控制策略。实验结果表明,该模型能够以较少的开销增强对非多媒体数据集的访问控制,解决了现有Hadoop平台中访问控制模型安全性的不足。
Recent growth in big-data is raising security and privacy concerns. Traditional access control models cannot provide dynamic access control to massive data. In view of the data security problem of Hadoop platform, a content sensitivity based access control model is proposed. The model enhances access control policies by harnessing the data context,usage patterns, and data sensitivity. The proposed model evaluates data sensitivity with minimal user intervention and adjusts access control strategies based on changes in data sensitivity caused by data set additions and deletions. Experimental results show that the proposed model is capable of enforcing access control policies on non-multimedia data sets with minimal overhead and overcomes the disadvantage on lacking of security about existing access control model in Hadoop platform.
作者
王静宇
栾俊清
谭跃生
WANG Jingyu;LUAN Junqing;TAN Yuesheng(School of Information Engineering,Inner Mongolia University of Science&Technology,Baotou,Inner Mongolia 014010,China)
出处
《计算机工程与应用》
CSCD
北大核心
2019年第23期70-77,共8页
Computer Engineering and Applications
基金
国家自然科学基金(No.61662056)
内蒙古自然科学基金(No.2016MS0609,No.2016MS0608)
