Research on Privacy Protection Access Control Mechanism Based on Ontology Reasoning

doi:10.3969/j.issn.1671-1122.2021.08.007

Abstract

Abstract:

Access control restricts illegal users’ access to data by verifying the legitimacy of the identity of visitors, thus effectively avoiding privacy leakage. However, the method does not consider the user privacy information, the granularity of access control is relatively coarse, can not meet the needs of all privacy subjects, and can not protect the user privacy information to the maximum extent. This article aims to put forward a kind of reasoning based on ontology to protect privacy information access control mechanism, this mechanism can be from the perspective of all privacy subject's privacy information, the use of ontology reasoning method used for access control, the information was optimized from the aspects of access control granularity, and from the angle of the subject of privacy and considering the privacy requirement more privacy subject. Experimental analysis shows that the access control mechanism proposed in this paper can better protect user privacy.

Key words: ontology reasoning, privacy protection, access control, semantic analysis

CLC Number:

TP309

JIN Shuting, HE Jingsha, ZHU Nafei, PAN Shijia. Research on Privacy Protection Access Control Mechanism Based on Ontology Reasoning[J]. Netinfo Security, 2021, 21(8): 52-61.

Figures/Tables 15

References 17

[1]	LOBO J. Relationship-based Access Control: More Than a Social Network Access Control Model[J]. Wiley Interdisciplinary Reviews-data Mining and Knowledge Discovery, 2019, 9(2):1-17.
[2]	SANHU R, COYNE E. Role based Access Control Models[J]. IEEE Computer, 1996, 29(2):38-47.
[3]	LI Fenghua, SU Mang, SHI Guozhen, et al. Research Status and Development Trends of Access Control Model[J]. Chinese Journal of Electronics, 2012, 40(4):805-813.
	李凤华, 苏铓, 史国振, 等. 访问控制模型研究进展及发展趋势[J]. 电子学报, 2012, 40(4):805-813.
[4]	HARNAL S, CHAUHAN R. Efficient and Flexible Role-based Access Control (EFRBAC) Mechanism for Cloud[J]. ICST Transactions on Scalable Information Systems, 2018, 7(26):8-48.
[5]	DU Yifeng, GUO Yuanbo. A Dynamic Access Control Method for Fog Computing Based on Trust Value[J]. Netinfo Security, 2020, 20(4):65-72.
	杜义峰, 郭渊博. 一种基于信任值的雾计算动态访问控制方法[J]. 信息网络安全, 2020, 20(4):65-72.
[6]	MUNOZ A, LOPEZ S, POZO A, et al. An Architecture for Providing Data Usage and Access Control in Data Sharing Ecosystems[J]. Procedia Computer Science, 2019, 160(6):590-597. doi: 10.1016/j.procs.2019.11.042 URL
[7]	FANG Liang, YIN Lihua, GUO Yunchuan, et al. A Survey of Key Technologies in Attribute-based Access Control Scheme[J]. Chinese Journal of computers, 2017, 40(7):1680-1698.
	房梁, 殷丽华, 郭云川, 等. 基于属性的访问控制关键技术研究综述[J]. 计算机学报, 2017, 40(7):1680-1698.
[8]	ANNIKA B. Online Privacy Concerns: A Broad Approach to Understanding the Concerns of Different Groups for Different Uses[J]. Computers in Human Behavior, 2015, 53(7):419-426. doi: 10.1016/j.chb.2015.07.025 URL
[9]	SWEENEY L. K-Anonymity: A Model for Protecting Privacy[J]. International Journal on Uncertainty, Fuzziness and Knowledge-based Systems, 2002, 10(5):557-570. doi: 10.1142/S0218488502001648 URL
[10]	MACHANAVAJJHALA A, GEHRKE J, KIFER D. L-diversity: Privacy beyond K-anonymity[C]//IEEE. 22nd International Conference on Data Engineering, April 3-7, 2006, Atlanta, GA, USA. New York: IEEE, 2006: 24-36.
[11]	LI Ninghui, LI Tiancheng. T-closeness: Privacy beyond K-anonymity and L-diversity[C]//IEEE. 23rd International Conference on Data Engineering, April 16-20, 2007, Istanbul Turkey. New York: IEEE, 2007: 106-115.
[12]	LI Yang, WEN Wen. Survey of Research on Differential Privacy[J]. Application Research of Computers. 2012, 29(9):3201-3205+3211.
	李杨, 温雯, 谢光强. 差分隐私保护研究综述[J]. 计算机应用研究, 2012, 29(9):3201-3205+3211.
[13]	TANIAR D, RAHAYU J. Web Semantics and Ontology[M]. Pennsylvania: IGI Publishing, 2006.
[14]	JIA Junzhi, CUI Xiyan. Interoperability between Ontological Word Lists of Persons and Construction of Classification Systems[J]. Journal of The China Society for Scientific and Technical Information, 2019, 38(7):731-741.
	贾君枝, 崔西燕. 人物本体词表之间的互操作及分类体系构建[J]. 情报学报, 2019, 38(7):731-741.
[15]	ZHU Nafei, WANG Siyu, HE Jingsha, et al. On the Suitability of Applying Wordnet to Privacy Measurement[J]. Wireless Personal Communications, 2018, 103(1):359-378. doi: 10.1007/s11277-018-5447-5 URL
[16]	TANG Lulu, CHEN Ke, WU Chaozheng, et al. Improving Semantic Analysis on Point Clouds via Auxiliary Supervision of Local Geometric Priors[J]. IEEE Transactions on Cybernetics, 2020, 10(8):1-11.
[17]	HU Xinbang, YU Xuqiao, LI Shaomei, et al. Additional Knowledge Enhanced Chinese Name Entity Recognition[J]. Computer Engineering, 2021: 10(5):1-12. doi: 10.1007/BF01206535 URL
	胡新棒, 于溆乔, 李邵梅, 等. 基于知识增强的中文命名实体识别[J]. 计算机工程, 2021: 10(5):1-12.

关系	描述
part-of	部分与整体的关系
kind-of	父类与子类的关系
Instance-of	类与实例的关系
Attribute-of	属性关系

信息点	词性标注	词元	命名实体
graduated	VBD	graduate	0
Columbia	NNP	Columbia	ORGANIZATION
University	NNP	university	ORGANIZATION
live	VBP	live	0
city	NN	city	0
centre	NN	centre	0

信息点	泄露值
anamorphosis	0.014492753623188404
descriptor	3.6547703890503076E-6
jugale	3.707823507601038E-4
stargazer	2.8831737977165263E-5
downtick	5.333333333333334E-4
…	…