摘要
针对移动数据库各方面的资源和能力均受到限制的问题,提出了基于秘密共享协议的移动数据存储方案。在移动客户端的应用程序上采用轻量级内存数据库仅存储少量数据,将大部分移动客户端所需数据存储在数据库服务器上。对存储在数据加密服务器上的敏感数据利用AES加密,对密钥利用秘密共享技术进行拆分后存储在不同的数据存储服务器上,使除了移动客户端的任何一方都不能同时拥有密钥和密文,减轻了移动客户端的存储压力,实现了数据控制权限的分离,保证了移动客户端对数据的访问具有最高权限,提高了数据的安全性。测试实验结果表明,该方案是可行的,具有较好的性能和应用前景。
Taking into account the limited resource and capability for mobile database, a mobile data storage solunon based on secret sharing protocol was proposed. Lightweight main memory database is used in application to store a small amount of data. Then, the most data of the mobile client are stored in the database server. Sensitive data are stored on the data encryption server by using AES encrypting, and secret key is split by secret sharing technology and stored in different data storage servers, which guarantees that only the mobile client can get both the secret key and the cipher text, reducing the storage pressure of mobile client. The solution achieves the separation of data control permissions, en- suring the mobile client access to data with the hightest authority, improving the security of the data. The experiment results show that the solution is feasible with good performance and has good application prospects.
出处
《计算机科学》
CSCD
北大核心
2016年第4期145-149,共5页
Computer Science
基金
国家自然科学基金资助项目(61472412)
河南省教育厅自然科学基金(14A520012)资助
关键词
移动计算
数据存储
数据安全
秘密共享协议
AES
Mobile computing, Data storage, Data security, Secret sharing protocol, AES
