A multi-granularity access control method in big data environment

An access control, multi-granularity technology, applied in digital data protection, electronic digital data processing, digital transmission systems, etc., can solve problems such as the inability to effectively guarantee data security access, and the inability to meet the diverse access needs of different applications, and achieve mitigation services. End pressure, ensure secure access, and speed up the effect

Active Publication Date: 2019-05-31
HUAZHONG UNIV OF SCI & TECH
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In view of the above defects or improvement needs of the prior art, the present invention provides a multi-granularity access control method in a big data environment, the purpose of which is to solve the problem that the existing single-granularity access control method cannot meet the diverse access requirements of different applications , and thus cannot effectively guarantee the technical problem of safe access to data in the big data environment

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A multi-granularity access control method in big data environment
  • A multi-granularity access control method in big data environment
  • A multi-granularity access control method in big data environment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0060] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention. In addition, the technical features involved in the various embodiments of the present invention described below can be combined with each other as long as they do not constitute a conflict with each other.

[0061] Below at first the technical terms that appear in the present invention are explained and illustrated:

[0062] Granularity: The level of authority management, specifically coarse-grained and fine-grained; coarse-grained refers to the management of resource types, and fine-grained refers to the management of resource instances.

[0063] Multi-grained: In the permission management mode, i...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a multi-granularity access control method under a big data environment, which is characterized in that multi-granularity access control is realized through enriching file-level access control into access control for three levels such as folders, files and file metadata, and the data security under the big data environment is guaranteed from multiple levels. A folder-based access control policy is specified when a user creates a folder, a file and file metadata based access control policy is specified when a file is uploaded, and a file can be optionally encrypted by adopting a mode of CPABE (Ciphertext policy attribute-based encryption), thereby enabling the file to be stored in the cloud in the form of a ciphertext, and adapting to the semi-trusted property of the cloud. When the user requests data, the access permission for a folder and the access permission for a file are sequentially judged, the ciphertext can be obtained only when conditions are met simultaneously, and decryption is performed by using a key of the user. Due to addition of a policy conflict detection and policy merging module, the running of the whole system is enabled to be more efficient.

Description

technical field [0001] The invention belongs to the technical field of computer storage security, and more specifically relates to a multi-granularity access control method in a big data environment. Background technique [0002] The advent of the era of big data has made data a valuable property of companies, an important economic input and the cornerstone of new business models. The use and sharing of user data not only brings business opportunities to enterprises, but also brings unprecedented data security risks. [0003] With the gradual increase in the use of big data, the realization of controlled sharing of data is also an urgent problem to be solved. Access control technology is an important security protection technology that can effectively prevent unauthorized users from obtaining confidential and private information. [0004] For the existing single-granularity access control methods, due to the complex application scenarios and diverse requirements of big data...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/32H04L29/06G06F21/62
CPCG06F21/6209G06F2221/2141H04L9/3213H04L63/0428H04L63/0807
Inventor 周可李春花戴杰雷成
Owner HUAZHONG UNIV OF SCI & TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap