HDFS-oriented cryptographic key resource control mechanism
The big data environment presents the characteristics of multi-user cross-network cross-access, multi-service collaborative computing, cross-service data flow, and complex management of massive files.The existing access control models and mechanisms are not fully applicable for big data scenarios.In...
Saved in:
| Main Authors: | , , , , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2022-09-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2022165/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841539966566400000 |
|---|---|
| author | Wei JIN Fenghua LI Mingjie YU Yunchuan GUO Ziyan ZHOU Liang FANG |
| author_facet | Wei JIN Fenghua LI Mingjie YU Yunchuan GUO Ziyan ZHOU Liang FANG |
| author_sort | Wei JIN |
| collection | DOAJ |
| description | The big data environment presents the characteristics of multi-user cross-network cross-access, multi-service collaborative computing, cross-service data flow, and complex management of massive files.The existing access control models and mechanisms are not fully applicable for big data scenarios.In response to the needs of fine-grained access control and multi-service strategy normalization for cryptographic data in the big data environment, starting from the scene elements and attributes of access control, the HDFS-oriented CKCM was proposed by mapping the cyberspace-oriented access control (CoAC) model.Subsequently, a fine-grained access control management model for HDFS was proposed, including management sub-models and management supporting models.The Z-notation was used to formally describe the management functions and management methods in the management model.Finally, the CKCM system was implemented based on XACML to realize fine-grained secure access control for managing file and secret keys in HDFS. |
| format | Article |
| id | doaj-art-44138307b3354775abc116f897417e04 |
| institution | Kabale University |
| issn | 1000-436X |
| language | zho |
| publishDate | 2022-09-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-44138307b3354775abc116f897417e042025-01-14T06:28:45ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2022-09-0143274159391458HDFS-oriented cryptographic key resource control mechanismWei JINFenghua LIMingjie YUYunchuan GUOZiyan ZHOULiang FANGThe big data environment presents the characteristics of multi-user cross-network cross-access, multi-service collaborative computing, cross-service data flow, and complex management of massive files.The existing access control models and mechanisms are not fully applicable for big data scenarios.In response to the needs of fine-grained access control and multi-service strategy normalization for cryptographic data in the big data environment, starting from the scene elements and attributes of access control, the HDFS-oriented CKCM was proposed by mapping the cyberspace-oriented access control (CoAC) model.Subsequently, a fine-grained access control management model for HDFS was proposed, including management sub-models and management supporting models.The Z-notation was used to formally describe the management functions and management methods in the management model.Finally, the CKCM system was implemented based on XACML to realize fine-grained secure access control for managing file and secret keys in HDFS.http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2022165/big data platformcryptographic key managementresource controlcyberspace-oriented access control |
| spellingShingle | Wei JIN Fenghua LI Mingjie YU Yunchuan GUO Ziyan ZHOU Liang FANG HDFS-oriented cryptographic key resource control mechanism Tongxin xuebao big data platform cryptographic key management resource control cyberspace-oriented access control |
| title | HDFS-oriented cryptographic key resource control mechanism |
| title_full | HDFS-oriented cryptographic key resource control mechanism |
| title_fullStr | HDFS-oriented cryptographic key resource control mechanism |
| title_full_unstemmed | HDFS-oriented cryptographic key resource control mechanism |
| title_short | HDFS-oriented cryptographic key resource control mechanism |
| title_sort | hdfs oriented cryptographic key resource control mechanism |
| topic | big data platform cryptographic key management resource control cyberspace-oriented access control |
| url | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2022165/ |
| work_keys_str_mv | AT weijin hdfsorientedcryptographickeyresourcecontrolmechanism AT fenghuali hdfsorientedcryptographickeyresourcecontrolmechanism AT mingjieyu hdfsorientedcryptographickeyresourcecontrolmechanism AT yunchuanguo hdfsorientedcryptographickeyresourcecontrolmechanism AT ziyanzhou hdfsorientedcryptographickeyresourcecontrolmechanism AT liangfang hdfsorientedcryptographickeyresourcecontrolmechanism |