{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,7]],"date-time":"2026-07-07T15:19:01Z","timestamp":1783437541990,"version":"3.54.6"},"reference-count":26,"publisher":"Wiley","license":[{"start":{"date-parts":[[2021,2,17]],"date-time":"2021-02-17T00:00:00Z","timestamp":1613520000000},"content-version":"unspecified","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"National Key Research and Development Program of China","award":["2018YFB0803603"],"award-info":[{"award-number":["2018YFB0803603"]}]},{"name":"National Key Research and Development Program of China","award":["2016YFB0501901"],"award-info":[{"award-number":["2016YFB0501901"]}]},{"name":"National Key Research and Development Program of China","award":["61802436"],"award-info":[{"award-number":["61802436"]}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["2018YFB0803603"],"award-info":[{"award-number":["2018YFB0803603"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["2016YFB0501901"],"award-info":[{"award-number":["2016YFB0501901"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["61802436"],"award-info":[{"award-number":["61802436"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Security and Communication Networks"],"published-print":{"date-parts":[[2021,2,17]]},"abstract":"<jats:p>Access control technology is critical to the safe and reliable operation of information systems. However, owing to the massive policy scale and number of access control entities in open distributed information systems, such as big data, the Internet of Things, and cloud computing, existing access control permission decision methods suffer from a performance bottleneck. Consequently, the large access control time overhead affects the normal operation of business services. To overcome the above-mentioned problem, this paper proposes an efficient permission decision engine scheme based on machine learning (EPDE-ML). The proposed scheme converts the attribute-based access control request into a permission decision vector, and the access control permission decision problem is transformed into a binary classification problem that allows or denies access. The random forest algorithm is used to construct a vector decision classifier in order to establish an efficient permission decision engine. Experimental results show that the proposed method can achieve a permission decision accuracy of around 92.6% on a test dataset, and its permission decision efficiency is significantly higher than that of the benchmark method. In addition, its performance improvement becomes more obvious as the scale of policy increases.<\/jats:p>","DOI":"10.1155\/2021\/3970485","type":"journal-article","created":{"date-parts":[[2021,2,18]],"date-time":"2021-02-18T02:16:59Z","timestamp":1613614619000},"page":"1-11","source":"Crossref","is-referenced-by-count":23,"title":["Efficient Access Control Permission Decision Engine Based on Machine Learning"],"prefix":"10.1155","volume":"2021","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-9644-3812","authenticated-orcid":true,"given":"Aodi","family":"Liu","sequence":"first","affiliation":[{"name":"Information Engineering University, Zhengzhou 450000, China"},{"name":"He\u2019nan Province Key Laboratory of Information Security, Zhengzhou 450000, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4763-4302","authenticated-orcid":true,"given":"Xuehui","family":"Du","sequence":"additional","affiliation":[{"name":"Information Engineering University, Zhengzhou 450000, China"},{"name":"He\u2019nan Province Key Laboratory of Information Security, Zhengzhou 450000, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2916-4087","authenticated-orcid":true,"given":"Na","family":"Wang","sequence":"additional","affiliation":[{"name":"Information Engineering University, Zhengzhou 450000, China"},{"name":"He\u2019nan Province Key Laboratory of Information Security, Zhengzhou 450000, China"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"311","reference":[{"issue":"1","key":"1","first-page":"72","article-title":"Research on access control of big data","volume":"40","author":"H. Li","year":"2017","journal-title":"Chinese Journal of Computers"},{"issue":"99","key":"2","first-page":"1594","article-title":"Smart contract-based access control for the Internet of things","volume":"6","author":"Y. Zhang","year":"2018","journal-title":"IEEE Internet of Things Journal"},{"issue":"4","key":"3","doi-asserted-by":"crossref","first-page":"617","DOI":"10.1109\/TCC.2015.2440247","article-title":"Attribute-based access control with constant-size ciphertext in cloud computing","volume":"5","author":"T. Wei","year":"2017","journal-title":"IEEE Transactions on Cloud Computing"},{"key":"4","doi-asserted-by":"publisher","DOI":"10.1145\/3007204"},{"key":"5","doi-asserted-by":"publisher","DOI":"10.1145\/3146025"},{"key":"6","doi-asserted-by":"publisher","DOI":"10.1109\/mc.2015.33"},{"issue":"07","key":"7","first-page":"1680","article-title":"A survey of Key technologies in attribute-based access control scheme","volume":"40","author":"L. Fang","year":"2017","journal-title":"Chinese Journal of Computers"},{"key":"8","first-page":"41","article-title":"A unified attribute-based access control model covering DAC, MAC and RBAC","author":"J. Xin"},{"key":"9","doi-asserted-by":"publisher","DOI":"10.3724\/sp.j.1001.2011.03707"},{"key":"10","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2016.12.001"},{"key":"11","doi-asserted-by":"publisher","DOI":"10.1155\/2014\/610278"},{"key":"12","doi-asserted-by":"publisher","DOI":"10.1109\/tc.2010.274"},{"key":"13","doi-asserted-by":"publisher","DOI":"10.1109\/tsc.2010.28"},{"key":"14","doi-asserted-by":"publisher","DOI":"10.1016\/j.eswa.2014.07.031"},{"issue":"4","key":"15","first-page":"1","article-title":"A distributed PDP model based on spectral clustering for improving evaluation performance","volume":"22","author":"F. Deng","year":"2018","journal-title":"World Wide Web-internet and Web Information Systems"},{"key":"16","first-page":"323","article-title":"Refactoring access control policies for performance improvement","author":"D. E. Kateb"},{"key":"17","first-page":"83","article-title":"Graph-based XACML evaluation","author":"S. P. Ros"},{"key":"18","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2014.11.003"},{"key":"19","first-page":"399","article-title":"Request evaluation for policy-based attribute access control in social network cloud","author":"K. Morovat"},{"key":"20","first-page":"101","article-title":"Fast distributed evaluation of stateful attribute-based access control policies","author":"T. Bui"},{"key":"21","first-page":"227","article-title":"Protecting privacy with a declarative policy framework","author":"K. Martiny"},{"key":"22","first-page":"17","article-title":"Towards privacy-preserving access control with hidden policies, hidden credentials and hidden decisions","author":"M. Harbach"},{"issue":"2","key":"23","doi-asserted-by":"crossref","first-page":"563","DOI":"10.1109\/JIOT.2016.2571718","article-title":"An efficient and fine-grained big data access control scheme with privacy-preserving policy","volume":"4","author":"Y. Kan","year":"2017","journal-title":"IEEE Internet of Things Journal"},{"key":"24"},{"key":"25","first-page":"1322","article-title":"ADASYN: adaptive synthetic sampling approach for imbalanced learning","author":"H. He"},{"key":"26","first-page":"1","article-title":"Dimensionality reduction for high dimensional data","author":"A. Kumar"}],"container-title":["Security and Communication Networks"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2021\/3970485.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2021\/3970485.xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2021\/3970485.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,2,18]],"date-time":"2021-02-18T02:17:09Z","timestamp":1613614629000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.hindawi.com\/journals\/scn\/2021\/3970485\/"}},"subtitle":[],"editor":[{"given":"Petros","family":"Nicopolitidis","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"editor"}]}],"short-title":[],"issued":{"date-parts":[[2021,2,17]]},"references-count":26,"alternative-id":["3970485","3970485"],"URL":"https:\/\/doi.org\/10.1155\/2021\/3970485","relation":{},"ISSN":["1939-0122","1939-0114"],"issn-type":[{"value":"1939-0122","type":"electronic"},{"value":"1939-0114","type":"print"}],"subject":[],"published":{"date-parts":[[2021,2,17]]}}}