面向区块链数据交换的层次化访问控制方法  被引量:2

Hierarchical access control method for blockchain-based data exchange

在线阅读下载全文

作  者:赵越 张玉健 孙雨虹 蒋国权 Zhao Yue;Zhang Yujian;Sun Yuhong;Jiang Guoquan(School of Cyber Science and Engineering,Southeast University,Nanjing 211189,China;The Sixty-third Research Institute,National University of Defense Technology,Nanjing 210007,China;Laboratory for Big Data and Decision,National University of Defense Technology,Changsha 410073,China)

机构地区:[1]东南大学网络空间安全学院,江苏南京211189 [2]国防科技大学第六十三研究所,江苏南京210007 [3]国防科技大学大数据与决策实验室,湖南长沙410073

出  处:《网络安全与数据治理》2023年第9期72-79,共8页CYBER SECURITY AND DATA GOVERNANCE

摘  要:传统的集中式访问控制模型在某些场景下存在局限性,特别是在政府部门、军事应用等特殊场景中,数据的安全管理需要考虑保密性、完整性等因素,并且需要灵活且严格的访问控制机制。此外,现有的层次化访问控制方法对访问层级区限的评估和验证过程存在单点故障问题,且存在访问层级区限泄露的风险。为了克服这些限制,提出了一种面向区块链数据交换的层次化访问控制方法,结合同态加密实现对访问层级区限的保护。实验结果表明,本方法有效地遏制了用户“越级”访问数据主体的安全问题,且在一些关键的功能上符合预期的运行效率。Traditional centralized access control models have limitations in certain scenarios.Particularly in government agencies,military application,and other special contexts,data security management requires considerations of confidentiality,integrity,and the need for flexible and stringent access control mechanisms.Moreover,existing hierarchical access control methods suffer from single point of failure issues in the evaluation and verification of access level boundaries,as well as the risk of level boundary leakage.To overcome these limitations,this paper proposes a hierarchical access control method for blockchain-based data exchange,incorporating homomorphic encryption for protecting the level boundaries.Experimental results demonstrate that this approach effectively addresses security concerns regarding unauthorized access to data subjects and exhibits high operational efficiency in key functionalities.

关 键 词:区块链 数据交换 基于属性的访问控制 强制访问控制 层次化访问控制 

分 类 号:TP311[自动化与计算机技术—计算机软件与理论]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象