中文摘要：

空间数据在数据类型、拓扑关系、操作模式等方面的诸多特性导致传统访问控制模型难以直接使用在以空间数据为核心的地理信息系统之中。近年来，将空间数据作为一种新的客体类型，对其实施有效的访问控制已成为信息安全和地理信息系统两个领域共同关注的热点问题。致力于从空间访问控制模型、空间访问控制授权方法、空间访问控制策略管理和空间访问控制的实现方法四个方面，对该领域的研究进展进行综述性研究。将空间访问控制模型分为基于DAC、MAC、RBAC模型的空间扩展模型及其他模型；将空间数据授权方法分为基于SAR、基于安全标签和基于角色的几种不同技术；将空间访问控制策略管理分为授权策略存储管理、授权查询和判定、授权策略的冲突检测与消解和授权策略管理模型等方面。同时分析对比了各种不同模型、授权方法、策略管理技术的使用场景、实现原理、技术优势、特点与局限性，总结其发展演化过程、研究现状及存在的问题，进而展望了今后可能的研究趋势。

英文摘要：

It is difficult to directly use any traditional access control model in GIS, because spatial data in GIS has its owns data type, topological relation and operating mode. Spatial data is a new object type, and then how to effectively implement its access control has become a hot issue in information security field and geographic information systems field in recent years. This paper focuses on survey of the research progress in this field, including four aspects ： spatial access control model, spatial access control authorization method, spatial access control policy management and spatial access control implementation. This is the first complete overview about the field. Spatial access control model is divided into different spatial extensions, respectively, based on DAC, MAC, RBAC and other models; authorization method is divided into several different technologies such as, SAR - based, security label - based and role - based ; ac- cess control policy management is divided into authorization policy store management, authorization determination, conflict elimination of authorization policies and authorization policies management model. The review analyses and compares the usage scene, implementa- tion principle, technological advantages, features and limitations for different models, authorization methods, and policy management technology. It also summarizes the course of its evolution, the current research status and existing problems. Finally, an outlook of fu- ture potential research trends is introduced.