| 28 | 0 | 82 |
| 下载次数 | 被引频次 | 阅读次数 |
为了避免网络通信时出现隐私数据泄露问题,提出基于零信任的可信设备终端访问智能控制方法。采集可信设备终端访问数据,运用灰色关联度方法融合采集的数据,依据融合结果,以信任度为基础隔离出不可信访问数据,采用信任评估算法综合评估可信设备终端访问请求的信任等级,根据综合评估结果对访问可信设备终端的用户实施身份认证和授权判定,根据判定结果实现可信设备终端访问智能控制。实验结果表明,应用所提出方法后,可信和不可信访问数据分布在不同区域,必须在同时满足用户身份认证成功且被授权时才能访问可信设备终端,访问智能控制效果较好,具有一定应用价值。
Abstract:To avoid privacy data leakage in network communication, an intelligent access control method based on zero trust for trusted device terminals is proposed. It collects the access data of trusted device terminals, fuses the collected data by the grey correlation method, isolates the untrusted access data based on the trust degree according to the fusion results, comprehensively evaluates the trust level of the access request of trusted device terminals by the trust evaluation algorithm, and implements identity authentication and authorization judgment for the users accessing trusted device terminals according to the comprehensive evaluation results. According to the decision results, the intelligent control of trusted device terminal access is realized. The experimental results show that the trusted and untrusted access data are distributed in different regions after the application of the proposed method, and the trusted device terminal can only be accessed when the users' identity authentication is successful and authorized at the same time. The access intelligent control effect is better, and it has certain application value.
[1] 刘敖迪,杜学绘,王娜,等.基于深度学习的ABAC访问控制策略自动化生成技术[J].通信学报,2020,41(12):8-20.
[2] 刘丽伟,孙践知,谭励,等.关于IMC/IMV的网络设备可信认证方法研究[J].计算机工程与应用,2019,55(9):79-86.
[3] 文一凭,刘建勋,窦万春,等.云工作流环境下隐私感知的多租户访问控制模型[J].计算机集成制造系统,2019,25(4):894-900.
[4] 翟峰,冯云,程凯,等.基于信息熵的多源电力物联终端设备信任度评价方法[J].中国电力,2022,55(5):158-165.
[5] 李莉,杨鸿飞,董秀则.基于身份多条件代理重加密的文件分级访问控制方案[J].计算机应用,2021,41(11):3251-3256.
[6] 杜瑞忠,刘妍,田俊峰.物联网中基于智能合约的访问控制方法[J].计算机研究与发展,2019,56(10):2287-2298.
[7] CHEN L D,CHENG K,ZHAO C L,et al.Research on Trusted Access of Ubiquitous Power Internet of Things Terminal Based on Hyperledger[J].Journal of Physics:Conference Series,2022,2173(1):012059.
[8] 葛丽娜,胡雨谷,张桂芬,等.云计算环境基于客体属性匹配的逆向混合访问控制方案[J].计算机应用,2021,41(6):1604-1610.
[9] 冯景瑜,于婷婷,王梓莹,等.电力物联场景下抗失陷终端威胁的边缘零信任模型[J].计算机研究与发展,2022,59(5):1120-1132.
[10] 张俊,王杨,李坤豪,等.基于流形学习的多源传感器体域网数据融合模型[J].计算机科学,2020,47(8):323-328.
[11] 莫明岗,孙兆伟,邹思远.基于最小二乘的全局信息融合方法在分布式POS中的应用[J].中国惯性技术学报,2020,28(1):35-40.
[12] SANTOSH KUMAR SHARMA,et al.A Framework of Big Data as Service Platform for Access Control & Privacy Protection Using Blockchain Network[J].Turkish Journal of Computer and Mathematics Education (TURCOMAT),2021,12(11):476-485.
基本信息:
中图分类号:TP309
引用信息:
[1]白海滨,庄莉,梁懿,等.基于零信任的可信设备终端访问智能控制方法[J].微型电脑应用,2025,41(12):70-74.
基金信息:
国网信通产业集团研发项目(536811210012)
2025-12-20
2025-12-20