摘要
通过访问控制的方法保护用户隐私被研究者们采纳,访问控制通过验证访问者的身份的合法性来限制非法用户对数据的访问,从而有效避免隐私泄露。但目前该方法存在不考虑用户隐私信息、访问控制粒度较粗等问题,不能满足所有隐私主体的需求,也不能最大限度地保护用户的隐私信息。文章提出一种基于本体推理的隐私信息保护访问控制机制,该机制能够从所有隐私主体的隐私信息角度出发,用本体推理的方法从访问控制粒度方面进行信息优化,从隐私主体的角度考虑更多隐私主体的隐私需求。实验结果表明文章提出的访问控制机制能够更好地保护用户隐私。
Access control restricts illegal users’access to data by verifying the legitimacy of the identity of visitors,thus effectively avoiding privacy leakage.However,the method does not consider the user privacy information,the granularity of access control is relatively coarse,can not meet the needs of all privacy subjects,and can not protect the user privacy information to the maximum extent.This article aims to put forward a kind of reasoning based on ontology to protect privacy information access control mechanism,this mechanism can be from the perspective of all privacy subject's privacy information,the use of ontology reasoning method used for access control,the information was optimized from the aspects of access control granularity,and from the angle of the subject of privacy and considering the privacy requirement more privacy subject.Experimental analysis shows that the access control mechanism proposed in this paper can better protect user privacy.
作者
靳姝婷
何泾沙
朱娜斐
潘世佳
JIN Shuting;HE Jingsha;ZHU Nafei;PAN Shijia(Faculty of Information Technology,Beijing University of Technology,Beijing 100124,China)
出处
《信息网络安全》
CSCD
北大核心
2021年第8期52-61,共10页
Netinfo Security
基金
国家重点研发计划[2019QY(Y)0601]。
关键词
本体推理
隐私保护
访问控制
语义分析
ontology reasoning
privacy protection
access control
semantic analysis