Cloud data base encryption server system
Technical field
The invention belongs to technical field of data security, in particular, being to be related to cloud data base encryption server system.
Background technique
The confidentiality, integrity, and availability of cloud computing safety requirements guarantee data, it is ensured that service provider provide it is reliable,
Efficient data service.Currently, being directed to the safety problem of cloud computing, academia proposes some based on cryptography successively
New technology, new thought.The almost each aspect of cloud computing safety is related to cryptographic technique, needs to encrypt different user with password
Data, need to be ensured communication safety with password, need to be verified the identity of user with cryptographic algorithm.Therefore, cryptographic technique
It is the basis of cloud computing safety.Data safety how is protected to be allowed to the problems such as not being stolen, not being tampered or destroy simultaneously more next
More it is valued by people.The key solved these problems is exactly data encryption technology.In addition, user needs to store a large amount of people
Member's information, needs by database, therefore propose cloud data base encryption server system, but existing cloud data base encryption takes
Business device system all has that safety is not high, and the data of storage are easy to read data by public cloud, to cause loss of data or letter
The case where breath leaks.
Summary of the invention
The purpose of the present invention is to provide cloud data base encryption server systems, mainly solve to exist in the prior art existing
Cloud data base encryption server system all has that safety is not high, and the data of storage are easy to read data by public cloud, to make
The problem of at loss of data.
To achieve the goals above, The technical solution adopted by the invention is as follows:
Cloud data base encryption server system, including user terminal connect with user terminal and are determined according to user request information
The encrypting module of cipher mode, with encrypting module carry out information exchange encryption equipment link block, with encryption equipment link block into
Row information is interactive and for realizing the encryption equipment of encryption or decryption process, and carries out information exchange with encrypting module and be used to deposit
Store up the cloud database of encryption equipment upload information.
Further, the cipher mode includes symmetric cryptography, asymmetric encryption, homomorphic cryptography, saves encryption.
Preferably, the ciphering process is encryption equipment link block to encryption equipment transmission plaintext and encryption key, and is added
The Cipher Feedback that close machine is formed after encrypting plaintext gives encryption equipment link block.
Specifically, the decrypting process is encryption equipment link block to encryption equipment transmission ciphertext and decruption key, and is added
Close machine will use decruption key to release ciphertext, and by the plain text feedback formed after decryption to encryption equipment link block.
Compared with prior art, the invention has the following advantages:
The present invention issues the request for needing to encrypt or decrypt by user terminal, and then encrypting module will letter after receiving request
Breath feeds back to encryption equipment link block, the request and encryption equipment that encryption equipment link block is issued according to user terminal realize encrypt or
Decryption oprerations, encryption equipment feed back to processing result in encryption connection module, and are transmitted in cloud database and are stored, therefore
The present invention has very high safety, while using safe and efficient Encryption Algorithm, is able to carry out graded encryption function, Ke Yigen
Different function, various forms of encryptions are carried out according to demand for security.
Detailed description of the invention
Fig. 1 is system structure schematic block diagram of the invention.
Fig. 2 is encryption flow structural block diagram of the present invention.
Fig. 3 is present invention decryption flowage structure block diagram.
Specific embodiment
Present invention will be further explained below with reference to the attached drawings and examples, and embodiments of the present invention include but is not limited to
The following example.
Embodiment
As shown in Figure 1 to Figure 3, cloud data base encryption server system, including user terminal, connect with user terminal and according to
Family solicited message determines the encrypting module of cipher mode, and the encryption equipment link block of information exchange is carried out with encrypting module, and is added
Close machine link block carries out information exchange and the encryption equipment for realizing encryption or decryption process, and carries out letter with encrypting module
Breath interaction and the cloud database for storing encryption equipment upload information.Wherein, the cipher mode include symmetric cryptography, it is asymmetric
Encryption, homomorphic cryptography, preservation encryption, the ciphering process are that encryption equipment link block is close with encryption in plain text to encryption equipment transmission
Key, and encryption equipment gives the Cipher Feedback formed after plaintext encryption to encryption equipment link block, and the decrypting process is encryption equipment
Link block transmits ciphertext and decruption key to encryption equipment, and encryption equipment will use decruption key to release ciphertext, and will decryption
The plain text feedback formed afterwards is to encryption equipment link block.
The present invention proposes encryption or decoding request by user terminal, when user terminal proposes CIPHERING REQUEST, encrypting module choosing
Different cipher modes is selected, then encryption equipment link block will be sent to and add with encryption key in plain text according to the cipher mode of selection
Close machine is encrypted, at the same encryption equipment will encryption complete Cipher Feedback to encryption equipment link block, the data then encrypted
File is uploaded in cloud database and stores.When user terminal proposes decoding request, the different cipher mode of cryptographic module selection, so
Encryption equipment link block sends encryption equipment for ciphertext and decruption key according to the cipher mode of selection and is decrypted afterwards, adds simultaneously
The plain text feedback that close machine completes decryption is to encryption equipment link block, and then the data file decrypted is uploaded to cloud by encryption equipment
It is stored in database.
Key of the invention is stored in user terminal always, so that public cloud can not spy upon cleartext information, to improve number
It is believed that the safety of breath, at the same in the present invention signified " connection " and " information exchange " be use according to the actual situation wired connection or
The mode of wireless connection carries out data interaction.
Above-described embodiment is merely a preferred embodiment of the present invention, and it is not intended to limit the protection scope of the present invention, as long as using
Design principle of the invention, and the non-creative variation worked and made is carried out on this basis, it should belong to of the invention
Within protection scope.