An access control method for private data of online social network users

Abstract

An access control method for private data of online social network users. When a data creator creates an object to be shared on a social network, he encrypts the object with his system public key and defined access control policies, and shares the encrypted object with the The access control policy is uploaded to the social network server; each user of the social network has a unique identification code and an attribute set including its subjective attributes and objective attributes; when an indirect sharer who has no direct social connection with the data creator sends a When the direct visitor who has obtained the object requests to share the object, his access is controlled by judging whether the objective attribute of the indirect sharer conforms to the access control policy defined by the data creator. The present invention satisfies fine-grained and sustainable access control requirements while implementing encrypted storage of user data on the server side, and solves the problems in the prior art that data creators cannot control indirect sharers to access objects.

Description

Technical field [0001] The present invention relates to the field of online social networks (OSNs, Online Social Networks), in particular to a method for accessing private data of online social network users. Background technique [0002] When traditional online social network access control implements fine-grained access control (Access Control), user data (such as photos, videos, text data uploaded by users, etc.) are stored in plaintext on the server of the online social network. The storage method requires that the online social network service provider must be credible. If the server is attacked or the service provider guards and steals, the security of the user's private data cannot be guaranteed. However, if the data is encrypted and stored on the server, it will affect the design and implementation of the access control strategy, making it difficult to achieve fine-grained access control. At present, the method that can achieve both fine-grained access control policies a...

AI Technical Summary

Problems solved by technology

[0003] The usage control (Usage Control, UCON) theory and architecture can realize the continuity of the control strategy, thereby solving the problem of controllable use of data, but the current usage control methods are mainly used in the field of distributed network information systems and digital rights management, usage control The definition of policies is not suitable for applications in social network environments, and the encryption of data in the use of control methods adopts traditional symmetric or asymmetric encryption systems, which cannot meet the needs of fine-grained control policy customization in online social network application environments. At the same time, the distribution and management of keys also cause huge pressure on the storage and calculation of user terminals, especially not suitable for social network users using mobile terminals

Images