摘要
隐私数据泄漏威胁企业互联网的安全,而访问控制可以保证企业互联网的安全性。为了提高企业互联网访问控制效果,提出基于多组件签名的企业互联网访问控制方法。根据多个安全组件的关系获取企业互联网密钥序列,计算签名信息状态,并认证企业互联网的多组件签名。合并互联网的隐私数据,计算企业互联网数据的隐私度,获取用户行为作用下产生的总体信任度。利用信誉模糊综合判定的转换形式,构建企业互联网访问控制模型,以实现企业互联网的访问控制。试验结果表明,所提方法可以将用户授权效率提升到85%~96%,并将隐私数据泄漏量控制在10个以下。如果用户访问的信任度较低,企业互联网将禁止该用户的访问行为。该方法可以提高企业互联网访问控制效果,保证访问安全。
Privacy data leakage threatens the security of the enterprise Internet,and access control can ensure the security of enterprise Internet.To improve the effect of access control of enterprise Internet,an access control method for enterprise Internet based on multi-component signature is proposed.Based on the relationship of multiple security components,the enterprise Internet key sequence is obtained,the signature information state is calculated,and the multi-component signature of the enterprise Internet is authencated.The privacy data of the Internet is merged to calculate the privacy degree of the enterprise Internet data,and obtain the overall trust degree generated under the effect of user behavior.Using the transformed form of fuzzy comprehensive determination of reputation,the access control model of enterprise Internet is constructed to realize the access control of enterprise Internet.The experimental results show that the proposed method can improve the efficiency of user authorization to 85%~96%,and the privacy data leakage is controlled to less than 10.If the trust level of a user’s access is low,the enterprise Internet will prohibit the user’s access behavior.The method can improve the access control effect of enterprise Internet and ensure the access security.
作者
范仲恺
代昊琦
梁子键
陈禹旭
刘博
FAN Zhongkai;DAI Haoqi;LIANG Zijian;CHEN Yuxu;LIU Bo(China Southern Power Grid Digital Grid Group Co.,Ltd.,Guangzhou 510700,China)
出处
《自动化仪表》
CAS
2024年第9期106-109,120,共5页
Process Automation Instrumentation
基金
南网云平台(三期)建设基金资助项目(JY-KF-03-YP-21-005-TQ)。
关键词
企业互联网
访问控制
签名认证
多组件签名
隐私度
信任度
Enterprise Internet
Access control
Authentication
Multi-component signature
Privacy degree
Trust degree
