| 基于角色的数据隐私保护技术研究与实现 |
| |
| 引用本文: | 於晓东. 基于角色的数据隐私保护技术研究与实现[J]. 计算机时代, 2012, 0(7): 4-6 |
| |
| 作者姓名: | 於晓东 |
| |
| 作者单位: | 浙江省教育技术中心,浙江杭州,310012 |
| |
| 摘 要: | 研究并设计了一种基于角色访问控制的隐私保护技术.操作者对信息进行访问时,根据被分配的访问控制角色和被访问者的隐私设置等级,决定操作者可以得到多少信息量以及信息是否需要隐藏.该技术基于角色访问控制模型,实施分级访问;对数据库存储的敏感信息采用PBE加密;对数据内容的保护采用了匿名泛化技术.通过在一个教学管理系统中的部署和应用,验证了该技术的可行性和有效性.
|
| 关 键 词: | 隐私保护 角色访问控制 基于口令的加密 k-匿名 |
Research and implementation of role-based data protection technology |
| |
| Yu Xiaodong. Research and implementation of role-based data protection technology[J]. Computer Era, 2012, 0(7): 4-6 |
| |
| Authors: | Yu Xiaodong |
| |
| Affiliation: | Yu Xiaodong (Educational Technology Center of Zhejiang Province, Hangzhou, Zhejiang 310012, China) |
| |
| Abstract: | A new data privacy protection technology based on role access control is introduced. In this system, the amount of information which a user may access and whether the information needs hidden depend on the access control role and the privacy settings level which this user is assigned. The system realizes a hierarchical access mechanism based on role access control model, uses encryption technology to encrypt the sensitive information in database, and adopts anonymous generalization technology to protect the privacy. The feasibility and validity of this technology are verified through a teaching management system. |
| |
| Keywords: | privacy protect RBAC PBE k-anonymity |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
