摘要
当今社会,随着信息和通信技术的飞速发展,数字信息正在被广泛使用,为了进行数据分析以支撑基于信息的决策,政府、社会机构、公司和个人都可能会收集一些涉及个人的信息数据,然而伴随着大数据资源的正在进行越来越广泛的整合、分析和利用,使得数据治理问题,特别是数据隐私保护问题也越来越被人们重视,成为大数据研究的一个重点。本文针对如何保证数据资源在使用过程中的安全访问控制问题,在主流的基于角色的访问控制方式的思路之上进行了扩展,提出了一种基于角色和数据项的访问控制方式,即在数据库中增加角色对数据表中每一项的访问权限表。实践结果表明,与目前主流的几种访问控制模式相比,实现了对数据的精细化管理,对不同角色的用户访问实现了数据可控,对大数据环境下信息系统的数据隐私保护具有一定的指导意义。
With the high-speed developing of the technology of information and communication today, digital information is being widely used. In order to support the decisions based on the analysis of data, the government, social institutions , companies and individuals may collect personal information data. However, with the big data resources is becoming more widely integration, analysis and used, the problem of protect data privacy has been paid more and more attention to and become a focus of large data research.. In order to solve the access control problems of data resources, this paper has expanded the theory on account of data access control based on role, put forward a data access control model based on role and data items. Add tables of permissions the data items of each role to database table. The practice shows that the precision management of data compared with access control for the mainstream and made data request under control, which is userful for privacy protection for information systems in big data era.
出处
《软件》
2014年第7期40-43,共4页
Software
基金
国家科技支撑计划课题(2013BAH10F00
2013BAH10F01
2013BAH07F02
2014BAH26F02)
高等学校博士学科点专项科研基金课题(20110005120007)
北京高等学校青年英才计划项目(YETP0445)
关键词
计算机应用技术
访问控制
隐私保护
数据分级
角色
数据项
Computer application technology
access control
privacy protection
data staging
role
data items
