Risk access control model for Hadoop
Traditional access control models are hard to restrain the malicious behavior of authorized users. Accord-ingly, Hadoop platform with this access control model is difficult to prevent the risk of privacy disclosure. A model of access control based on risk was proposed. A risk function of information...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
POSTS&TELECOM PRESS Co., LTD
2016-01-01
|
| Series: | 网络与信息安全学报 |
| Subjects: | |
| Online Access: | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2016.00015 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841530459524169728 |
|---|---|
| author | Jia-shuai LI Chang-gen PENG Yi-jie ZHU Hai-feng MA |
| author_facet | Jia-shuai LI Chang-gen PENG Yi-jie ZHU Hai-feng MA |
| author_sort | Jia-shuai LI |
| collection | DOAJ |
| description | Traditional access control models are hard to restrain the malicious behavior of authorized users. Accord-ingly, Hadoop platform with this access control model is difficult to prevent the risk of privacy disclosure. A model of access control based on risk was proposed. A risk function of information entropy was designed from users’ his-torical behavior based on setting the tags of subject and object. Furthermore, the tracking chain of risk was built, which could adjust the users’ access authority dynamically according to the risk value and its volatility. Combining with access token and risk supervision, the risk access control mechanism for big data privacy protection was real-ized, which could be applied to enhance the security of Hadoop Kerberos protocol. Finally, the experiment result shows that the model can constrain the authorized users’ access behavior effectively. |
| format | Article |
| id | doaj-art-944bab26614146a1bbae1a3c94e51def |
| institution | Kabale University |
| issn | 2096-109X |
| language | English |
| publishDate | 2016-01-01 |
| publisher | POSTS&TELECOM PRESS Co., LTD |
| record_format | Article |
| series | 网络与信息安全学报 |
| spelling | doaj-art-944bab26614146a1bbae1a3c94e51def2025-01-15T03:04:18ZengPOSTS&TELECOM PRESS Co., LTD网络与信息安全学报2096-109X2016-01-012465259542959Risk access control model for HadoopJia-shuai LIChang-gen PENGYi-jie ZHUHai-feng MATraditional access control models are hard to restrain the malicious behavior of authorized users. Accord-ingly, Hadoop platform with this access control model is difficult to prevent the risk of privacy disclosure. A model of access control based on risk was proposed. A risk function of information entropy was designed from users’ his-torical behavior based on setting the tags of subject and object. Furthermore, the tracking chain of risk was built, which could adjust the users’ access authority dynamically according to the risk value and its volatility. Combining with access token and risk supervision, the risk access control mechanism for big data privacy protection was real-ized, which could be applied to enhance the security of Hadoop Kerberos protocol. Finally, the experiment result shows that the model can constrain the authorized users’ access behavior effectively.http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2016.00015risk access controlHadoopprivacy protectioninformation entropybig data |
| spellingShingle | Jia-shuai LI Chang-gen PENG Yi-jie ZHU Hai-feng MA Risk access control model for Hadoop 网络与信息安全学报 risk access control Hadoop privacy protection information entropy big data |
| title | Risk access control model for Hadoop |
| title_full | Risk access control model for Hadoop |
| title_fullStr | Risk access control model for Hadoop |
| title_full_unstemmed | Risk access control model for Hadoop |
| title_short | Risk access control model for Hadoop |
| title_sort | risk access control model for hadoop |
| topic | risk access control Hadoop privacy protection information entropy big data |
| url | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2016.00015 |
| work_keys_str_mv | AT jiashuaili riskaccesscontrolmodelforhadoop AT changgenpeng riskaccesscontrolmodelforhadoop AT yijiezhu riskaccesscontrolmodelforhadoop AT haifengma riskaccesscontrolmodelforhadoop |