Search

CN-119939663-B - Data circulation control method and device, electronic equipment and storage medium

CN119939663BCN 119939663 BCN119939663 BCN 119939663BCN-119939663-B

Abstract

The invention provides a data circulation control method, a device, electronic equipment and a storage medium, wherein the method comprises the steps of determining information sensitivity degree, trust value of a data main body to a data audience and privacy attitude of the data audience to the data main body based on data to be circulated and a data circulation scene; the method comprises the steps of determining privacy security conditions based on a preset privacy protection policy set, information sensitivity level, privacy attitudes of data audiences on data main bodies and trust values of the data main bodies on the data audiences, determining privacy risks of each data audience based on the information sensitivity level in the privacy security conditions, the privacy attitudes of the data audiences on the data main bodies and risk preference values of the data main bodies, and determining target privacy decisions of each data audience based on the privacy risks and the privacy security conditions of each data audience so as to control data to be circulated to share according to the target privacy decisions. Therefore, the balance between the privacy protection of the data main body and the data sharing is realized based on the reinforcement learning method.

Inventors

  • YI YUZI
  • Huang Jiwai
  • LV ZHONGQI

Assignees

  • 中国石油大学(北京)

Dates

Publication Date
20260505
Application Date
20250116

Claims (5)

  1. 1. A method of data flow control, the method comprising: Obtaining data to be circulated and a data circulation scene corresponding to the data to be circulated, wherein the data to be circulated comprises a data main body and data content of the data main body; Determining information sensitivity degree based on the data content in the data to be circulated and the data circulation scene; determining the privacy attitude of the data audience to the data main body based on the data to be circulated; Setting an initial trust value of the data main body to a data audience; Calculating a trust impact function of the privacy threat based on the information sensitivity level and the number of data audiences; determining a trust value of the data body for a data audience based on the initial trust value and a trust impact function of the privacy threat; Determining privacy security conditions based on a preset privacy protection policy set, the information sensitivity degree, the privacy attitudes of the data audience to the data main body and the trust values of the data main body to the data audience; Determining the forwarding probability of the data audience to the data main body based on the privacy attitude; Calculating based on the information sensitivity degree and the probability that the data to be circulated are forwarded, and determining an initial privacy risk; Determining the privacy risk of each data audience based on the risk preference value of the data main body and the initial privacy risk, wherein the risk preference value refers to the risk preference value selected by each data audience in the data circulation scene; Selecting a privacy protection policy for each data audience from a preset privacy protection policy set of the privacy security conditions; Determining the income of the data main body under each privacy policy of the data main body based on the trust value of the data main body to the data main body in the privacy security condition; and processing the income of the data main body and the privacy risk of the data audience according to each privacy policy for each data audience, and determining a target privacy decision of the data audience so as to control the data to be circulated to share according to the target privacy decision.
  2. 2. The method as recited in claim 1, further comprising: For each data body, determining an accumulated privacy risk based on the historical privacy risk of the data body; determining corresponding historical benefits based on the historical sharing utility value of the data main body in each privacy policy and the historical privacy risk; determining privacy protection targets for circulation of the data elements by the accumulated privacy risk, the historical privacy protection strategy and the historical income; and determining a target privacy protection policy of the data main body based on the privacy protection target of the data element circulation so as to control the data to be circulated to be shared according to the target privacy decision.
  3. 3. A data flow control device, the device comprising: The determining unit is used for obtaining data to be circulated and a data circulation scene corresponding to the data to be circulated, wherein the data to be circulated comprises a data main body and data content; The privacy security condition generation unit is used for determining information sensitivity degree, trust value of the data main body to the data audience and privacy attitude of the data main body to the data main body based on the data to be circulated and the data circulation scene; The privacy risk prediction unit is used for determining the privacy risk of each data audience based on the information sensitivity degree in the privacy security condition, the privacy attitude of the data audience to the data main body and the risk preference value of the data main body; the processing unit is used for determining a target privacy decision of each data audience based on the privacy risk of each data audience and the privacy security condition so as to control the data to be circulated to share according to the target privacy decision; The privacy security condition generation unit is used for determining information sensitivity degree, trust value of the data main body to the data audience and privacy attitude of the data audience to the data main body based on the to-be-circulated data and the data circulation scene, and is specifically used for: Determining information sensitivity degree based on the data content in the data to be circulated and the data circulation scene; determining the privacy attitude of the data audience to the data main body based on the data to be circulated; Determining a trust value of a data main body to a data audience based on the privacy attitude and the data to be circulated; determining a trust value of the data main body to the data audience based on the privacy attitude and the data to be circulated comprises the following steps: Setting an initial trust value of the data main body to a data audience; Calculating a trust impact function of the privacy threat based on the information sensitivity level and the number of data audiences; determining a trust value of the data body for a data audience based on the initial trust value and a trust impact function of the privacy threat; the privacy risk prediction unit is specifically configured to: Determining the forwarding probability of the data audience to the data main body based on the privacy attitude; Calculating based on the information sensitivity degree and the probability that the data to be circulated are forwarded, and determining an initial privacy risk; Determining the privacy risk of each data audience based on the risk preference value of the data main body and the initial privacy risk, wherein the risk preference value refers to the risk preference value selected by each data audience in the data circulation scene; the processing unit is specifically configured to: selecting a privacy protection policy of the data audience aiming at the data audience from a preset privacy protection policy set of the privacy security conditions aiming at each data audience; Determining the income of the data main body under each privacy policy of the data main body based on the trust value of the data main body to the data main body in the privacy security condition; And processing the income of the data main body under each privacy policy and the privacy risk of the data audience aiming at each data audience to determine the target privacy decision of the data audience.
  4. 4. An electronic device comprising a processor and a memory for storing data-generated program code and data, the processor for invoking program instructions in the memory to perform the data flow control method of any of claims 1-2.
  5. 5. A storage medium comprising a storage program, wherein the storage medium is controlled to perform the data flow control method according to any one of claims 1-2 when the program is run.

Description

Data circulation control method and device, electronic equipment and storage medium Technical Field The present invention relates to the field of data processing technologies, and in particular, to a data flow control method, a data flow control device, an electronic device, and a storage medium. Background Existing data flow control techniques mostly rely on access control or employ static schemes. In the access control method, the distribution condition of the information is preset, and the information is controlled within a predetermined range, for example, only the information is allowed to circulate in a specified domain and only the visitor with a specific authority is allowed to access. The above mode needs to preset the access condition of data, is complicated to set, is difficult to meet different scene requirements, and cannot meet the balance between privacy protection and data sharing requirements of a data main body. Disclosure of Invention In view of the above, embodiments of the present invention provide a data flow control method, apparatus, electronic device, and storage medium, so as to solve the problem in the prior art that the privacy protection and data sharing of a data body cannot be balanced. In order to achieve the above object, the embodiment of the present invention provides the following technical solutions: A first aspect of an embodiment of the present invention shows a data flow control method, including: Obtaining data to be circulated and a data circulation scene corresponding to the data to be circulated, wherein the data to be circulated comprises a data main body and data content of the data main body; Determining information sensitivity degree, trust value of the data main body to a data audience and privacy attitude of the data audience to the data main body based on the data to be circulated and the data circulation scene; Determining privacy security conditions based on a preset privacy protection policy set, the information sensitivity degree, the privacy attitudes of the data audience to the data main body and the trust values of the data main body to the data audience; determining the privacy risk of each data audience based on the information sensitivity degree in the privacy security conditions, the privacy attitudes of the data audience to the data main body and the risk preference value of the data main body; And determining a target privacy decision of each data audience based on the privacy risk of each data audience and the privacy security condition so as to control the data to be circulated to share according to the target privacy decision. Optionally, determining the information sensitivity degree, the trust value of the data main body to the data audience and the privacy attitude of the data audience to the data main body based on the to-be-circulated data and the data circulation scene includes: Determining information sensitivity degree based on the data content in the data to be circulated and the data circulation scene; determining the privacy attitude of the data audience to the data main body based on the data to be circulated; And determining the trust value of the data main body to the data audience based on the privacy attitude and the data to be circulated. Optionally, determining the trust value of the data body to the data audience based on the privacy attitude and the data to be circulated includes: Setting an initial trust value of the data main body to a data audience; calculating a trust impact function of the privacy threat based on the information sensitivity level and the number of data audience; and determining the trust value of the data body for the data audience based on the initial trust value and the trust impact function of the privacy threat. Optionally, determining the privacy risk of each data audience based on the information sensitivity level in the privacy security condition, the privacy attitudes of the data audience to the data main body and the risk preference value of the data main body includes: Determining the forwarding probability of the data audience to the data main body based on the privacy attitude; Calculating based on the information sensitivity degree and the probability that the data to be circulated are forwarded, and determining an initial privacy risk; And determining the privacy risk of each data audience based on the risk preference value of the data main body and the initial privacy risk, wherein the risk preference value refers to the risk preference value selected by each data audience in the data circulation scene. Optionally, determining the target privacy decision for each data audience based on the privacy risk and the privacy security condition of each data audience includes: Selecting a privacy protection policy for each data audience from a preset privacy protection policy set of the privacy security conditions; Determining the income of the data main body under each privacy policy of the da