云计算演化环境中的隐私建模与检测方法研究

项目名称： 云计算演化环境中的隐私建模与检测方法研究

项目编号： No.61272083

项目类型： 面上项目

立项/批准年度： 2013

项目学科： 自动化技术、计算机技术

项目作者： 黄志球

作者单位： 南京航空航天大学

项目金额： 80万元

中文摘要： 隐私保护本质是隐私需求的满足，云计算体系结构具有跨层服务组合的动态演化特点，使得其中隐私需求的描述必须具备精确语义，隐私保护必须考虑服务间的行为交互。基于数据加密和访问控制的传统隐私保护方法不能适应上述云计算新特征下隐私保护的需要。本项目拟针对云计算演化环境下隐私的建模与检测方法开展研究。首先基于本体和自动机提出语义精确，附加隐私属性的行为模型。然后采用基于描述逻辑的推理方法对隐私需求语义的一致性和可满足性进行分析、采用基于时间与时序验证的模型检测方法对行为相关隐私需求的可满足性进行验证、采用基于控制器的运行时验证完成演化环境下的隐私保护，从而构成覆盖静态语义和动态行为的云计算隐私保护模型和隐私需求检测方法。最后实现隐私定义与保护的框架原型系统。本项目的研究将为具有动态演化特征的云计算环境下的隐私建模和性质验证提供理论基础，为构建可信、安全的云计算平台提供技术保障，促进云计算的推广和应用。

中文关键词： 云计算；隐私保护；模型检测；隐私建模；服务组合

英文摘要： The essence of privacy protection is to fulfill the privacy requirement. Cloud computing, the architecture which shares dynamic evolving characteristics in the cross-layer service composition, requests that the description of the privacy requirement must be accurate in semantics and the privacy protection must take into account the interaction between services. When the new features of cloud computing are considered, traditional privacy protection approaches which are based on data encryption and access control cannot guarantee the fulfillment of the new requirement. This project plans to make research on the privacy modeling and verification in cloud computing paradigm. Basically, drawing support from automata and ontology, the behavior model with privacy property which has accurate semantics is established. Then, the reasoning methods based on description-logic are used to analyze the consistency and satisfiability of the semantics in the privacy requirement. Meanwhile, model checking approaches are applied to check the satisfiability of the privacy requirement ranging from time to temporal properties. Moreover, to achieve the privacy protection in the evolving context, the controller based runtime verification methods are proposed. The research above constructs the comprehensive privacy protection framework w

英文关键词： cloud computing；privacy protection；model checking；privacy model；service composition