Vector Geospatial Data Access Control Method For Internal Network Environment

As important data support of national infrastructure construction and the core resource of geographic information application,vector geospatial data has the characteristics of accurate positioning,high precision and wide application.Its security involves national security and national defense security.The main production and application environment of vector geospatial data is the internal network environment.It is of great significance to protect vector geospatial data security to prevent illegal copying and leakage from the internal network environment.However,the existing data security protection focuses on reducing the external network environment's harm to vector geospatial data and does not fully consider the threat of internal network environment to data.Therefore,it is very important to research the security measures of vector geospatial data in the internal network environment.As a frontier technology of information security,access control technology limits the behavior of accessing resources and provides a way to ensure the security of vector geospatial data in the internal network environment.Based on the traditional access control research,we combined it with the characteristics of vector geographic data.We focused on the vector geographic data access control method under the circumstances of the Intranet network.The main contents include:(1)In this paper,we summarize the distinguishing feature of vector geospatial data and establish the circulation process of vector geospatial data in the internal network environment.We summarize the circulation process' s security risks.Next,we put forward the targeted access control requirements and establishes the vector geospatial data access control framework for the internal network environment.It lays the foundation for further research.(2)A hierarchical access control model for vector geospatial data(VGD-HAC)is proposed.In this paper,the shortcomings of the traditional vector geospatial data access control model are analyzed,and the expansion research is carried out.The model's elements are classified and defined by the hierarchy,and a fine-grained classification method is proposed.Besides,the access control rules and strategies in the Intranet environment are formulated.Finally,the process of vector geospatial data access control in Intranet is described.(3)On the basis of distinguishing features of vector geospatial data,we proposed a scrambling encryption algorithm for vector geospatial data.It is combined with one-dimensional hybrid mapping and two-dimensional logistic mapping.The quantization method of the chaotic realvalued sequence is determined.From the angles of coordinate scrambling,relation scrambling,and attribute scrambling,the corresponding relationship among vector geographic data features is destroyed.From the view of experimental results,the algorithm we design in this paper has high security and has sub-authority decryption characteristics.Besides,it can not infer the vector geospatial elements in the ciphertext state through the decrypted part,which is suitable for the access control process.(4)Based on the VGD-HAC model and the vector geographic data access control framework,a prototype system is implemented.The access policies and protection schemes in the model are implemented from the access environment aspect and from the access behavior and other aspects of control.It can protect the security of vector geospatial data in an Intranet environment.