Research of Data Security on Prevention and Control Strategy Based on Classification and Categorization

doi:10.11871/jfdc.issn.2096-742X.2023.01.012

Abstract

Abstract:

[Objective] Since data volume in the age of big data grows exponentially, to guarantee data security, effective and efficient data classification and categorization are necessary for data management. [Methods] In this paper, by classifying and categorizing data, combined with relevant laws and standards, two key elements of data security are presented, including the infringed object and degree. Then a security prevention and control model of big data is designed. [Results] Under this model, static authorization based on classification and categorization, dynamic control of data security level as well as dynamic authorization and data masking based on data security level are realized. [Conclusions] Data should be classified and categorized by laws and industry standards. Data safety and controllability can be guaranteed only by statistic classification and categorization as well as dynamic categorization and real-time control.

Key words: big data, data classification and categorization, data security, dynamic authorization

ZHOU Chengzu, WU Wen, CAI Xiaoqiang. Research of Data Security on Prevention and Control Strategy Based on Classification and Categorization[J]. Frontiers of Data and Computing, 2023, 5(1): 128-135, https://cstr.cn/32002.14.jfdc.CN10-1649/TP.2023.01.012.

Figures/Tables 3

Table 1

Table 2

Fig.1

References 12

[1]	RYM Li, HCY Li. Have Housing Prices Gone with the Smelly Wind? Big Data Analysis on Landfill in Hong Kong[J]. Sustainability, 2018, 10(2): 341. https://doi.org/10.3390/su10020341. doi: 10.3390/su10020341
[2]	高潮. 大数据时代用户消费型数据的分类分级隐私保护策略研究[J]. 通信技术, 2016, 36(9): 10-12+17. doi:10.3969/j.issn.1006-6403.2016.09.003. doi: 10.3969/j.issn.1006-6403.2016.09.003
[3]	DB 52/T 1123—2016政府数据:数据分类分级指南[S]. 北京: 中国标准出版社, 2016.
[4]	JR/T 0158-2018证券期货业数据分类分级指引[S]. 北京: 中国标准出版社, 2015.
[5]	工业数据分类分级指南(试行)[S]. 工业和信息化部办公厅, 2020.
[6]	GB/T 35273-2020个人信息安全规范[S]. 北京: 中国标准出版社, 2020.
[7]	K.A Taipale. Data Mining and Domestic Security: Conn-ecting the Dots To Make Sense of Data[J]. Columbia Science and Technology Law Review, 2003, 5(2):50-58.
[8]	GB/T 39725-2020信息安全技术健康医疗数据安全指南[S]. 中国标准出版社, 2020.
[9]	JRT 0197-2020金融数据安全: 数据安全分级指南[S]. 中国标准出版社, 2020.
[10]	薛朝晖, 珞狮南, 路向敏. 零信任安全模型下的数据中心安全防护研究[J]. 通信技术, 2017, 50(6):1290-1294.doi:10.3969/j.issn.1002-0802.2017.06.036. doi: 10.3969/j.issn.1002-0802.2017.06.036
[11]	Ferraiolo, D.F., Kuhn, D.R. Role Based Access Control[C]. 15th National Computer Security Conference, 1992: 554-563.
[12]	Sandhu, R., Coyne, E.J., Feinstein, H.L. C.E. RoleBased Access Control Models[J]. IEEE Computer, 1996, 29(2): 38-47.

数据安全级别	说明
第一级	当数据泄露后不会对国家安全、社会秩序、公共利益以及公民、法人和其他组织的合法权益造成损害
第二级	当数据受到滥用、泄露或者丢失后，会对相关公民、法人、和其他组织的合法权益造成一般损害，但不危害国家安全、社会秩序和公共利益
第三级	当数据受到滥用、泄露或者丢失后，会对相关公民、法人和其他组织的合法权益造成严重损害或者特别严重损害，或者对社会秩序和公共利益造成危害，但不危害国家安全
第四级	数据受到滥用、泄露或者丢失后，会对社会秩序和公共利益造成严重危害
第五级	数据受到滥用、泄露或者丢失后，会对社会秩序和公共利益造成严重危害，或者对国家安全造成危害
第六级	数据受到滥用、泄露或者丢失后，会对社会秩序和公共利益造成特别严重危害，或者对国家安全造成危害
第七级	数据受到滥用、泄露或者丢失后，会对社会秩序和公共利益造成特别严重危害，或者对国家安全造成严重危害
第八级	数据受到滥用、泄露或者丢失后，会对国家安全造成特别严重危害

数据安全级别	受侵害客体	受侵害程度
8	国家安全	特别严重
8	国家安全	严重
8	公民	特别严重
7	国家安全	一般
7	社会秩序、公共利益	特别严重
6	国家安全	轻微
6	社会秩序、公共利益	严重
5	法人和其他组织	特别严重
5	公民	严重
5	法人和其他组织	严重
4	社会秩序、公共利益	一般
3	法人和其他组织	一般
3	公民	一般
2	社会秩序、公共利益	轻微
2	法人和其他组织	轻微
2	公民	轻微
1	国家安全	无
1	社会秩序、公共利益	无
1	法人和其他组织	无
1	公民	无

[1]	XU Songyuan,LIU Feng. ESDRec: A Data Recommendation Model for Earth Big Data Platform [J]. Frontiers of Data and Computing, 2023, 5(1): 55-64.
[2]	JIN Tianjiao,LI Wei. An Intelligent Scheduling and Allocation Method of Big Data Computing Resources Based on Computing Power Network [J]. Frontiers of Data and Computing, 2022, 4(6): 29-37.
[3]	HU Qingbao,ZHENG Wei,WANG Jiarong,WANG Lu,YAN Tian. Intelligent Operation and Maintenance System for High Energy Physics Science Data Center [J]. Frontiers of Data and Computing, 2022, 4(1): 30-41.
[4]	CHEN Wenjie,HU Zhengyin,HU Jing,PANG Hongshen,HE Yujuan. Study on Multidimensional Data Driven Food Security Analysis and Intelligent Decision System [J]. Frontiers of Data and Computing, 2021, 3(6): 1-14.
[5]	LU Xudong,SONG Weifeng,GUO Wei,CUI Lizhen,LIN Yue,JIANG Tao. Big Data Driven Innovation Methodology and Innovation Service Platform [J]. Frontiers of Data and Computing, 2021, 3(5): 141-155.
[6]	CHEN Lei,LIU Wenmao. Frontiers and Applications of Data Security Technology from the Perspective of Compliance [J]. Frontiers of Data and Computing, 2021, 3(3): 19-31.
[7]	ZHANG Jie*,GUO Yin. Research on Privacy Security Based on Big Data Language Laboratory Platforms [J]. Frontiers of Data and Computing, 2020, 2(6): 90-102.
[8]	Chen Meili,Ma Yingke,Li Rujiao,Bao Yiming. Current Status and Prospects of Genomics Data Analysis Methods [J]. Frontiers of Data and Computing, 2020, 2(2): 1-19.
[9]	Wang Wensheng,Guo Leifeng. Big Data Technology Applications in Agriculture [J]. Frontiers of Data and Computing, 2020, 2(2): 101-110.
[10]	Chen Lei,Yuan Yuan. Image Recognition of Agricultural Diseases Based on Deep Transfer Learning [J]. Frontiers of Data and Computing, 2020, 2(2): 111-119.
[11]	Wang Juanle,Cheng Kai,Han Xuehua,Zhang Min. Big Data Driven Data Technology Analysis Frontier and Application in Resource Discipline [J]. Frontiers of Data and Computing, 2020, 2(2): 20-30.
[12]	Meng Zhen,Wang Xuezhi,Xie Zhimin,Hu Lianglin,Chen Zhiduan,Ma Juncai,Tong Jizhou,Zhang Yanling,Zhou Yuanchun. IA: An Interactive Analysis Service Management Engine in Scientific Data Cloud [J]. Frontiers of Data and Computing, 2020, 2(2): 31-39.
[13]	Li Zixin,Zhang Neng,Xiong Bin,Hu Yunfeng,Zhao Xinpeng,Huang Haiyou. Materials Science Database in Material Research and Development: Recent Applications and Prospects [J]. Frontiers of Data and Computing, 2020, 2(2): 78-90.
[14]	Zhang Yaonan,Ai Minghao,Kang Jianfang,Min Yufang. Research on Geoscience Big Data Processing Framework and Key Techniques [J]. Frontiers of Data and Computing, 2020, 2(2): 91-100.
[15]	Li kenli,Yang Wangdong,Chen Cen,Chen Jianguo,Ding Yan. Efficient Computing for Artificial Intelligence and Big Data [J]. Frontiers of Data and Computing, 2020, 2(1): 27-37.