中文摘要：

大数据时代的到来,使得数据成为了重要的经济资产.为了更好地利用它们,有偿或无偿的共享数据将是一种趋势.作为确保大数据安全分享重要技术之一的访问控制技术也将在大数据时代发挥重要作用.该文首先对大数据及大数据应用的新特点进行分析,并提炼出这些新特点为访问控制领域带来的五个迫切需要解决的新问题：授权管理问题、细粒度访问控制问题、访问控制策略描述问题、个人隐私保护问题,以及访问控制在分布式架构中的实施问题.接着对相关访问控制关键技术的研究现状进行了梳理,包括角色访问控制、风险访问控制、半/非结构化数据的访问控制、针对隐私保护的访问控制、世系数据相关的访问控制、基于密码学的访问控制等.虽然这些现有技术不一定能直接应用于大数据场景,但是它们都可以被大数据访问控制的研究所借鉴,以解决大数据带来的上述访问控制的新问题.在此基础上,总结并提炼了若干大数据访问控制所呈现的新特点：判定依据多元化、判定结果模糊化、多种访问控制技术融合化.最后,对未来大数据访问控制的研究进行了展望,给出了一些有待研究的问题.该文认为大数据应用的发展将为访问控制技术的研究提出许多新的挑战,同时也将带来巨大的机遇,这必将引起访问控制技术的一次重大变革.

英文摘要：

With the arrival of the era of big data,data has become a kind of important assets.In order to get a better utilization of big data,paid or unpaid data sharing will be a trend.And as one of key techniques to maintain security of data sharing,access control will play an important role in the era of big data.In this paper,five new problems of access control which are brought by big data are summarized by analyzing characteristics of big data and its applications.They are respectively described as authorization problem,fine-grained access control problem,policy description problem,privacy protection problem,and the problem of implementing access control over distributed architecture.Then some key technologies which can be exploited to solve these problems are described,including role-based access control,risk-based access control,access control of semi-structured data and unstructured data,privacy-aware access control,provenanceaware access control,cryptography based access control,etc.Although some of these technologies cannot be directly used in big data applications,they can afford us lessons for solving the access control problems mentioned above.Then three expected characteristics of access control for big data are also discussed.The first one is the multivariate basis for access control deciding.The second one is that the access control decision comes fuzzier than before.The last one is the combinationof different access control models.Finally,several challenging research problems for access control of big data are given.And in our view,the development of big data will bring both challenges and opportunities for access control,and result in a revolution in this area.