信息网络安全 ›› 2019, Vol. 19 ›› Issue (12): 29-37.doi: 10.3969/j.issn.1671-1122.2019.12.004

• 技术研究 • 上一篇    下一篇

一种兼顾业务数据安全的隐私保护世系发布方法

赵志岩1(), 吴剑2, 康凯3   

  1. 1.中国人民公安大学警务信息工程与网络安全学院,北京 100038
    2.东南大学计算机科学与工程学院,江苏南京 211189
    3.公安部户政管理研究中心,北京 100070
  • 收稿日期:2019-09-12 出版日期:2019-12-10 发布日期:2020-05-11
  • 作者简介:

    作者简介:赵志岩(1980—),女,吉林,讲师,硕士,主要研究方向为网络犯罪侦查、电子数据分析;吴剑(1993—),男,安徽,硕士研究生,主要研究方向为大数据技术、数据隐私保护;康凯(1981—),男,吉林,助理研究员,硕士,主要研究方向为网络与信息安全。

  • 基金资助:
    国家自然科学基金[61772131]

Privacy Preserving Provenance Publishing Method Accommodating Business Data Security

Zhiyan ZHAO1(), Jian WU2, Kai KANG3   

  1. 1. Institute of Police Information Engineering and Network Security, People’s Public Security University of China, Beijing 100038, China
    2. School of Computer Science and Engineering, Southeast University,Nanjing Jiangsu 211189, China
    3. Research Center of Census Administration, The Ministry of Public Security, Beijing 100070, China
  • Received:2019-09-12 Online:2019-12-10 Published:2020-05-11

摘要:

针对业务数据先于其世系工作流进行隐私保护发布场景,文章提出一种世系工作流隐私保护模型(θ,γ)-POMS。该模型引入匿名域概念,采用决策树分类思想构建世系工作流与业务数据集内在关联机制。同时文章提出一种基于(θ,γ)-POMS模型的世系工作流隐私保护发布方法——MBPub,引入模块模糊度概念度量模块隐私泄露程度,采用限制发布策略破坏模块映射关系,在保护模块隐私安全的同时维持世系工作流结构特征稳定,实现兼顾已发布业务数据隐私安全的隐私保护世系工作流共享发布。理论分析和实验结果表明,该世系工作流发布方法在保证世系工作流隐私安全的同时,支持对世系工作流结构化查询可行性的维持。

关键词: 世系, 隐私保护, 世系发布

Abstract:

Concerning the scenario that business data is published for privacy protection prior to its lineage workflow, a novel privacy-preserving lineage workflow model (θ,γ)-POMS is devised. The internal correlation mechanism between the lineage workflow and data is constructed by introducing the anonymous domain and applying the decision tree algorithm. Furthermore, an effective privacy-preserving lineage publishing method based on (θ,γ)-POMS model is proposed to achieve the privacy security in the lineage workflow publishing while achieving the privacy security in the data publishing. The concept of module fuzziness was introduced to measure the degree of module privacy disclosure, and the restricted publishing strategy was adopted to destroy the mapping relationship of modules, so as to maintain the stability of the structure of the lineage workflow while protecting the privacy security of modules.T heoretical analysis and experimental results show the proposed methods can maintain the availability of structured queries of the lineage workflow while ensure the privacy security of lineage workflow.

Key words: provenance, privacy-preserving, provenance publication

中图分类号: