A cross-domain access control mechanism based on model migration and semantic reasoning

• Ming Tan,
• Aodi Liu,
• Xiaohan Wang,
• Siyuan Shang,
• Na Wang,
• Xuehui Du,

Vol. 18, No. 6, June 30, 2024
10.3837/tiis.2024.06.010, Download Paper (Free):

• cross-domain
• access control
• model migration
• semantic reasoning
• Blockchain
• Data security

Abstract

Access control has always been one of the effective methods to protect data security. However, in new computing environments such as big data, data resources have the characteristics of distributed cross-domain sharing, massive and dynamic. Traditional access control mechanisms are difficult to meet the security needs. This paper proposes CACM-MMSR to solve distributed cross-domain access control problem for massive resources. The method uses blockchain and smart contracts as a link between different security domains. A permission decision model migration method based on access control logs is designed. It can realize the migration of historical policy to solve the problems of access control heterogeneity among different security domains and the updating of the old and new policies in the same security domain. Meanwhile, a semantic reasoning-based permission decision method for unstructured text data is designed. It can achieve a flexible permission decision by similarity thresholding. Experimental results show that the proposed method can reduce the decision time cost of distributed access control to less than 28.7% of a single node. The permission decision model migration method has a high decision accuracy of 97.4%. The semantic reasoning-based permission decision method is optimal to other reference methods in vectorization and index time cost.

Statistics

Cite this article