Design And Implementation Of General Privacy Protection System For Structured Data

Data opening and sharing between different industries not only improves the value of data utilization,but also brings about some security problems such as leakage of sensitive data information,illegal access to data resources,theft and tampering.Therefore,considering the structural characteristics of the data and the application scenarios and other factors,it is very necessary to design a general privacy protection system in the algorithm and applicable scenarios.This paper focus on structured data,analyzing the related information between data attributes,and designs a general privacy protection scheme in multiple scenarios,which aims to solve the privacy protection and security management problems of data in shared use.First of all,mining and analyzing the association relationship between the structured data attributes,finding the suspect sensitive attributes that have strong correlation with the sensitive attributes,to a certain extent,identify the sensitive attributes to be protected.Secondly,according to the data characteristics and usage scenarios of the attributes design a desensitization strategy for sensitive fields,and combine the Attribute-based Encryption to achieve secure access control of data.The specific contributions of this thesis are as follows:(1)A structured data sensitive attribute recognition scheme based on association analysis is designed and implemented.According to the requirements of the association rule mining algorithm to preprocess the numeric and categorical data of the structured data.Based on the preliminary sensitive attributes determine,using the association rule mining and mutual information to analysis and quantify the correlation between preliminary sensitive attributes and the remaining attributes,thus,the suspected sensitive attributes with strong correlation are identified.(2)A general privacy protection scheme for structured data is designed.According to the data structure characteristics and application scenarios of the sensitive fields to be protected,designing a general data default desensitization strategy set and providing a rule for user-defined desensitization,the national secret SM4 and Ciphertext-policy Attribute-based Encryption are used to design the encrypted storage of the data set and fine-grained access control scheme.Solving the problem of desensitization and secure access to sensitive fields of data sets.(3)A general privacy protection system for structured data is implemented.Based on the above research program,combining with various algorithms and technologies,according to the system software development process,designed and implemented a general privacy protection system for structured data.At last,though tested and analyzed,the results show that the system can meet the design requirements and achieve universality in algorithms and application scenarios.