摘要
防止数据泄密是云存储安全研究的重要方向之一。云环境下数据泄密的途径主要有两条:一是云端数据被云服务商恶意窃取;二是明文数据传输过程中被黑客截获。鉴于此,提出一种云环境下数据防泄密存储技术。采用全同态加密算法对数据事先加密,既增强了数据在云端存储和信道传输过程中的安全性,又实现了云端对密文数据的直接操作。同时,提出密钥生成算法和密文检索算法,解决了加密带来的密钥管理困难和密文检索效率低的难题。该技术增强了数据保密性且提高了密文检索效率。
Preventing data leakage is one of the important directions of cloud storage security research. There are two main ways of data leaking under the cloud environment: one is the malicious theft of cloud data by cloud services providers,the other is the interception by hackers during the process of plaintext data transmission. In view of this,this paper puts forward a data leak prevention storage technology under the cloud environment. The technology uses fully homomorphism encryption algorithm to encrypt data in advance,which not only enhances the security of data in cloud storage or channel transmission process,but also achieves the direct operation on encrypted data in cloud. In addition,this paper also puts forward key generation algorithm and cipher text retrieval algorithm,they solve the key management difficulty and cipher text retrieval problem caused by this technology. The technology enhances the data confidentiality and improves the cipher text retrieval efficiency.
出处
《计算机应用与软件》
CSCD
2016年第10期288-293,310,共7页
Computer Applications and Software
基金
国家自然科学基金项目(51475186)
关键词
数据防泄密
云存储安
全全同态加密
密钥管理
密文检索
Data leak prevention
Cloud storage security
Fully homomorphism encryption
Key management
Cipher text retrieval