Study on GML Documents Oriented Access Control Model for Spatial Data
|Course||Cartography and Geographic Information Systems|
|Keywords||Authorized by the multi-granularity Spatial relationships access control GML RBAC The GML integration index|
GML is an XML-based geographic information coding standard developed by the Open GIS Association . As the emerging , independent of any vendor, platform data format , GML received extensive attention and support . Sensitive information in the GML document requires a variety of mechanisms to ensure its security , access control technology is one of them . Access control can ensure that legitimate users from accessing the premise of reasonable resources to restrict unauthorized user access to system resources and legitimate users of the illegal use of system resources . Explore GML document access control model for improving the spatial data security, and to provide security for data sharing , has important theoretical and practical significance . The goal of this study is based on the spatial data of regional and multi-scale requirements , the establishment of an authorization flexible access control model , the model should be able to provide sophisticated , content-based access control , while taking into account the efficiency of the model authorization . For these objectives, the paper focuses on the following aspects were studied : (1) first discussed the characteristics of spatial data in GML specification the GML mode and modeling rules, and related technologies , while access control model theory conducted in-depth analysis, selection of role-based access control model as a foothold . (2 ) the characteristics of spatial data , a GML document - oriented access control model RORBAC . The model introduces a mode authorized instance authorization, and the concept of spatial relationships authorized to expand the role-based access control model , GML document granularity authorization . The model also describes in detail the rights transfer policy and authorization conflict resolution strategies . (3) to efficient authorized to carry out , using R-tree as the overall index , extends the Zhang - coded and designed as an index entry , integrated index for GML documents . (4) According to the theory and methods , adopt a unified strategy that conforms to the XML specification description language described access control policy information , design a prototype system to verify RORBAC . The tests show that the model design idea is reasonable and practicable , basic to achieve the desired objectives and requirements .