计算机工程与应用 ›› 2018, Vol. 54 ›› Issue (17): 24-29.DOI: 10.3778/j.issn.1002-8331.1806-0101

• 热点与综述 • 上一篇    下一篇

面向云计算隐私保护的5A问责制建模

王  杰1,2,陈志刚1,钱漫匀3,程宏兵3   

  1. 1.中南大学 软件学院,长沙 410012
    2.衡阳师范学院 计算机科学与技术学院,湖南 衡阳 421002
    3.浙江工业大学 计算机科学与技术学院,杭州 310023
  • 出版日期:2018-09-01 发布日期:2018-08-30

5A accountability modeling towards privacy-preserving for cloud computing

WANG Jie1,2, CHEN Zhigang1, QIAN Manyun3, CHENG Hongbing3   

  1. 1.College of Software, Central South University, Changsha 410012, China
    2.College of Computer Science & Technology, Hengyang Normal College, Hengyang, Hunan 421002, China
    3.College of Computer Science & Technology, Zhejiang University of Technology, Hangzhou 310023, China
  • Online:2018-09-01 Published:2018-08-30

摘要: 针对云计算数据安全的核心问题——隐私安全的保护问题,提出了一种面向云计算隐私保护的5A问责机制。并基于该5A问责机制,对服务提供方的隐私安全策略、租户的隐私需求、云隐私暴露条件和安全场景等进行了精确定义和形式化描述与建模。主要以描述逻辑为基础,重点研究面向语义的云隐私需求描述方法,并对云隐私需求和服务提供方的隐私策略一致性等问题进行检测,避免冲突。在界定并形式化描述云隐私暴露条件和云安全场景的基础上,采用Protégé本体建模工具对云租户的隐私需求和云服务提供方的隐私策略、隐私暴露条件和安全场景等进行建模并检验,验证了形式化建模及其描述的一致性和完整性,为后续5A问责制机制的实现奠定了基础。

关键词: 云计算, 隐私保护, 问责制, 建模

Abstract: Aiming at the core problem of data security in cloud computing privacy security, this paper proposes a 5A accountability mechanism for privacy protection in cloud computing. Based on the 5A mechanism, the service provider’s privacy security policy, tenant privacy requirements, cloud privacy exposure conditions and security scenarios are defined and formalized. On the basis of description logic, this paper focuses on semantic description method of cloud privacy requirements. And based on the definition and formal description of tenant privacy requirements, service provider’s privacy security policy, privacy exposure conditions and cloud security scenarios, it constructs the simulation test model. When testing the privacy modeling on the tool of Protégé, the test results show that privacy modeling follows the character of consistency and integrity.

Key words: cloud computing, privacy-preserving, accountability, modelling