CN107222509A - A kind of guard method of network Web service data and device based on cloud storage - Google Patents

A kind of guard method of network Web service data and device based on cloud storage Download PDF

Info

Publication number
CN107222509A
CN107222509A CN201710582032.0A CN201710582032A CN107222509A CN 107222509 A CN107222509 A CN 107222509A CN 201710582032 A CN201710582032 A CN 201710582032A CN 107222509 A CN107222509 A CN 107222509A
Authority
CN
China
Prior art keywords
sensitive data
data
cloud storage
web service
file
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710582032.0A
Other languages
Chinese (zh)
Inventor
王永超
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Zhengzhou Yunhai Information Technology Co Ltd
Original Assignee
Zhengzhou Yunhai Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zhengzhou Yunhai Information Technology Co Ltd filed Critical Zhengzhou Yunhai Information Technology Co Ltd
Priority to CN201710582032.0A priority Critical patent/CN107222509A/en
Publication of CN107222509A publication Critical patent/CN107222509A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F40/00Handling natural language data
    • G06F40/20Natural language analysis
    • G06F40/205Parsing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]

Landscapes

  • Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computational Linguistics (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Audiology, Speech & Language Pathology (AREA)
  • Artificial Intelligence (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • Storage Device Security (AREA)

Abstract

The embodiment of the invention discloses a kind of network Web service data guard method based on cloud storage, including:In cloud storage operation, the sensitive data in identification Web service;Communicated after being encrypted to the sensitive data identified using rivest, shamir, adelman.The embodiment of the invention also discloses a kind of Web service data protection device based on cloud storage.By the scheme of the embodiment of the present invention, Web service data storage safety is effectively increased, the threat that client-aware data are exposed to cloud service operator is solved, improves security of system.

Description

A kind of guard method of network Web service data and device based on cloud storage
Technical field
The present embodiments relate to computer cloud storage technical field, more particularly to a kind of network Web based on cloud storage Service data guard method and device.
Background technology
In cloud computing era, it is managed more than network Web service data using cloud storage, storage device is positioned in difference Region, seriously add service data protection difficulty, improve data exposure probability, cause data be in excessive risk state. In order to improve Web service data security, sensitive data in protection service, Yun Fu product vendors do for storage safety Substantial amounts of work.But it is mostly that third party cloud resource uses client for web services data, stores data in cloud service platform In, cloud storage is used as client, the data of oneself have been leaked cruelly and have given cloud service operator, data exposure is added.
The content of the invention
In order to solve the above problems, the embodiment of the present invention proposes a kind of network Web service data based on cloud storage and protected Maintaining method and device, can effectively improve Web service data storage safety, solve client-aware data and be exposed to cloud service operation The threat of business, improves security of system.
In order to achieve the above object, the embodiment of the present invention proposes a kind of network Web service data based on cloud storage and protected Maintaining method, this method includes:
In cloud storage operation, the sensitive data in identification Web service;
Communicated after being encrypted to the sensitive data identified using rivest, shamir, adelman.
Alternatively, the sensitive data in identification Web service includes:
Obtain the various data in Web service;
Data format and character set to the various data of acquisition are parsed, to obtain content of text;
The content of text of acquisition is analyzed using natural language processing and Data Classification Technology, and to content of text Form is matched, to realize the classification to various data;
The sensitive data in Web service is obtained according to classification results.
Alternatively, the sensitive data identified is included using progress communication bag after rivest, shamir, adelman encryption:
Client's Web service end is stored in cloud to the file comprising sensitive data after sensitive data is encrypted using public key Storage server;And to being stored in the file for including sensitive data of cloud storage service device, sensitive data is decrypted using private key After be read out.
Alternatively, client's Web service end is to the file comprising sensitive data, after sensitive data is encrypted using public key Deposit cloud storage service device includes:
Customer web server from certificate management authority application authentication certificate, wherein, in certification certificate comprising client Web take Business public key and private key;
Certification certificate is installed;
According to the sensitive data encryption rule pre-established, treated and deposited using the public key included in mounted certification certificate The sensitive data included in the file of storage carries out filtering enciphered;
File to be stored after encryption is stored in cloud storage service device.
Alternatively, to being stored in the file for including sensitive data of cloud storage service device, using private key to sensitive data solution Be read out after close including:
Client's Web service end is from cloud storage service device by the file of desired reading;
According to the sensitive data encryption rule pre-established, the file for wanting to read is filtered, obtains and wants to read File in the encrypted sensitive data;
Using private key password private key is read from mounted certification certificate;
Encrypted sensitive data is decrypted using private key;
Read the file for including the desired reading of decrypted sensitive data.
The embodiment of the present invention also proposed a kind of network Web service data protection device based on cloud storage, the device bag Include:Identification module and encrypting module;
Identification module, used in being operated in cloud storage, the sensitive data in identification Web service;
Encrypting module, is communicated after being encrypted for the sensitive data to identifying using rivest, shamir, adelman.
Alternatively, the sensitive data in identification module identification Web service includes:
Obtain the various data in Web service;
Data format and character set to the various data of acquisition are parsed, to obtain content of text;
The content of text of acquisition is analyzed using natural language processing and Data Classification Technology, and to content of text Form is matched, to realize the classification to various data;
The sensitive data in Web service is obtained according to classification results.
Alternatively, encrypting module carries out communication bag after being encrypted to the sensitive data identified using rivest, shamir, adelman Include:
To the file comprising sensitive data, cloud storage service device is stored in after sensitive data is encrypted using public key;And The file for including sensitive data to being stored in cloud storage service device, is read out after being decrypted using private key to sensitive data.
Alternatively, encrypting module is to including the file of the sensitive data, after sensitive data is encrypted using public key Deposit cloud storage service device includes:
From certificate management authority application authentication certificate, wherein, client's Web service public key and private key are included in certification certificate;
Certification certificate is installed;
According to the sensitive data encryption rule pre-established, treated and deposited using the public key included in mounted certification certificate The sensitive data included in the file of storage carries out filtering enciphered;
File to be stored after encryption is stored in cloud storage service device.
Alternatively, encrypting module is to being stored in the file for including sensitive data of cloud storage service device, using private key to quick Sense data deciphering after be read out including:
From cloud storage service device by the file of desired reading;
According to the sensitive data encryption rule pre-established, the file for wanting to read is filtered, obtains and wants to read File in encrypted sensitive data;
Using private key password private key is read from mounted certification certificate;
Encrypted sensitive data is decrypted using private key;
Read the file for including the desired reading of decrypted sensitive data.
The embodiment of the present invention includes:In cloud storage operation, the sensitive data in identification Web service;It is quick to what is identified Sense data are communicated after being encrypted using rivest, shamir, adelman.By the scheme of the embodiment of the present invention, Web clothes are effectively increased Business data storage security, solves the threat that client-aware data are exposed to cloud service operator, improves security of system.
Brief description of the drawings
The accompanying drawing in the embodiment of the present invention is illustrated below, the accompanying drawing in embodiment is used for the embodiment of the present invention Further understand, together with specification be used for explain the embodiment of the present invention, do not constitute to protection domain of the embodiment of the present invention Limitation.
Fig. 1 is the Web service data guard method flow chart based on cloud storage of the embodiment of the present invention;
Fig. 2 is the Web service data protection device composition frame chart based on cloud storage of the embodiment of the present invention.
Embodiment
For the ease of the understanding of those skilled in the art, the embodiment of the present invention is made further to retouch below in conjunction with the accompanying drawings State, can not be used for limiting the protection domain of the embodiment of the present invention.
In order to achieve the above object, the embodiment of the present invention proposes a kind of network Web service data based on cloud storage and protected Maintaining method, as shown in figure 1, this method can include S101-S102:
S101, cloud storage operation in, identification Web service in sensitive data.
In embodiments of the present invention, in order to avoid the threat that the sensitive data of client is exposed to cloud service operator, improve Security of system, the embodiment of the present invention proposes a kind of Web service protecting sensitive data method based on rivest, shamir, adelman, This method is the expanded application of SSL (Secure Sockets Layer SSLs) communication scheme, cloud service storage device As data transmission media, escape way writes reading service there is provided data in being designed as SSL traffic;Added using asymmetric Data are carried out encryption and decryption by key, i.e. public key, private key pair;Web service designs client and service end, visitor as SSL traffic Family end is stored in cloud storage equipment using public key encryption data, and service end is read cloud storage device data and is decrypted using private key. Cloud storage equipment provides a kind of safe data storage scheme as data transfer equipment.
In embodiments of the present invention, in order to improve Web service performance, only the sensitive data in service can be added It is close, therefore, it is necessary to which the sensitive data in Web service is first identified before the embodiment of the present invention is implemented.
Alternatively, the sensitive data in identification Web service can include S201-S204:
S201, the various data obtained in Web service.
S202, data format and character set to the various data of acquisition are parsed, to obtain content of text.
S203, using natural language processing and Data Classification Technology the content of text of acquisition is analyzed, and to text The form of content is matched, to realize the classification to various data.
S204, the sensitive data in classification results acquisition Web service.
In embodiments of the present invention, the sensitive data can refer to the data for including high price value information.The acquisition of sensitive data Method includes but is not limited to the above method, can be identified using any data identification method that there is currently in Web service Sensitive data.And after sensitive data is identified, sensitive data can be marked, so as to subsequently according to mark logarithm According to being encrypted.
S102, to the sensitive data that identifies using being communicated after rivest, shamir, adelman encryption.
In embodiments of the present invention, after identifying sensitive data by above-mentioned steps, just the sensitive data can be entered Row encryption.
Alternatively, the sensitive data identified can be included using progress communication after rivest, shamir, adelman encryption:
Client's Web service end is stored in cloud to the file comprising sensitive data after sensitive data is encrypted using public key Storage server;And to being stored in the file for including sensitive data of cloud storage service device, sensitive data is decrypted using private key After be read out.
In embodiments of the present invention, deposited again after sensitive data is encrypted using public key by way of asymmetric encryption Enter in cloud storage, Web server (client's Web service end) passes through respective private keys ciphertext data when reading data.Here, in order to Web service performance is improved, only the sensitive data in Web service is encrypted, for nonsensitive data without encryption.So The data deposited in cloud storage are the encrypted characters string after encryption, cloud service provider nothing in the case of no respective private keys Method is decrypted, and improves the security of Web service sensitive data, and do not produce large effect to Web service performance.It is right below The Detailed operating procedures of the embodiment of the present invention are described.
Alternatively, client's Web service end is to the file comprising sensitive data, after sensitive data is encrypted using public key Deposit cloud storage service device can include S301-S304:
S301, customer web server from certificate management authority application authentication certificate, wherein, in certification certificate include client Web service public key and private key.
In embodiments of the present invention, it is not limited for the specific form or form of the certification certificate.
S302, installation certification certificate.
The sensitive data encryption rule that S303, basis are pre-established, uses the public key included in mounted certification certificate The sensitive data included in file to be stored is carried out filtering enciphered.
In embodiments of the present invention, the sensitive data encryption rule pre-established can be a variety of encryptions that there is currently In rule any one or more or according to the customized encryption rule of application scenarios demand.Herein for specific Encryption rule be not limited.
S304, the file to be stored after encryption is stored in cloud storage service device.
Alternatively, to being stored in the file for including sensitive data of cloud storage service device, using private key to sensitive data solution S401-S404 can be included by being read out after close:
S401, client's Web service end are from cloud storage service device by the file of desired reading;
The sensitive data encryption rule that S402, basis are pre-established, is filtered to the file for wanting to read, and is obtained and is wanted The encrypted sensitive data in the file of reading;
S403, using private key password read private key from mounted certification certificate.
In embodiments of the present invention, the private key is corresponding with the public key in the above, passes through above-mentioned public key for decrypting Sensitive data after encryption.
S404, using private key encrypted sensitive data is decrypted.
In embodiments of the present invention, using private key to encrypted sensitive data is decrypted after, can be by sensitivity Data convert is initial data, you can with the original stored data directly read.
S405, reading include the file of the desired reading of decrypted sensitive data.
In embodiments of the present invention, the nonsensitive data instrument of the part initial data and unencryption is stored in Web clothes It is engaged in device, just can obtains the file for wanting reading.
In embodiments of the present invention, the embodiment of the present invention uses rivest, shamir, adelman to Web service protecting sensitive data, It is that a kind of accommodation of SSL traffic is used, security of the existing customer data in cloud system can be strengthened, so as to preferably protect Client-aware data.By introducing certification certificate, sensitive data encryption rule, unsymmetrical key encryption and decryption are formulated, it is ensured that Web takes The security of client's cloud storage data is improved while performance of being engaged in.With list compared with being taken safety measures in terms of cloud storage, this hair Bright use rivest, shamir, adelman can be used cooperatively to Web service protecting sensitive data with Saving Safe Strategy, improve data Security.
The embodiment of the present invention also proposed a kind of network Web service data protection device 1 based on cloud storage, such as Fig. 2 institutes Show that any embodiment in above-mentioned embodiment of the method is suitable for the device embodiment, herein no longer, it is necessary to illustrate Repeat one by one.The device can include:Identification module 11 and encrypting module 12;
Identification module 11, used in being operated in cloud storage, the sensitive data in identification Web service;
Encrypting module 12, is communicated after being encrypted for the sensitive data to identifying using rivest, shamir, adelman.
Alternatively, the sensitive data in the identification of identification module 11 Web service includes:
Obtain the various data in Web service;
Data format and character set to the various data of acquisition are parsed, to obtain content of text;
The content of text of acquisition is analyzed using natural language processing and Data Classification Technology, and to content of text Form is matched, to realize the classification to various data;
The sensitive data in Web service is obtained according to classification results.
Alternatively, the sensitive data that 12 pairs of encrypting module is identified carries out communication bag after being encrypted using rivest, shamir, adelman Include:
To the file comprising sensitive data, cloud storage service device is stored in after sensitive data is encrypted using public key;And The file for including sensitive data to being stored in cloud storage service device, is read out after being decrypted using private key to sensitive data.
Alternatively, 12 pairs of encrypting module includes the file of the sensitive data, and sensitive data is encrypted using public key Deposit cloud storage service device includes afterwards:
From certificate management authority application authentication certificate, wherein, client's Web service public key and private key are included in certification certificate;
Certification certificate is installed;
According to the sensitive data encryption rule pre-established, treated and deposited using the public key included in mounted certification certificate The sensitive data included in the file of storage carries out filtering enciphered;
File to be stored after encryption is stored in cloud storage service device.
Alternatively, 12 pairs of encrypting module is stored in the file for including sensitive data of cloud storage service device, uses private key pair Sensitive data decryption after be read out including:
From cloud storage service device by the file of desired reading;
According to the sensitive data encryption rule pre-established, the file for wanting to read is filtered, obtains and wants to read File in encrypted sensitive data;
Using private key password private key is read from mounted certification certificate;
Encrypted sensitive data is decrypted using private key;
Read the file for including the desired reading of decrypted sensitive data.
The embodiment of the present invention includes:In cloud storage operation, the sensitive data in identification Web service;It is quick to what is identified Sense data are communicated after being encrypted using rivest, shamir, adelman.By the scheme of the embodiment of the present invention, Web clothes are effectively increased Business data storage security, solves the threat that client-aware data are exposed to cloud service operator, improves security of system.
It should be noted that embodiment described above be for only for ease of it will be understood by those skilled in the art that, and It is not used in the protection domain of the limitation embodiment of the present invention, on the premise of the inventive concept of the embodiment of the present invention is not departed from, ability Any obvious replacement and improvement that field technique personnel are made to the embodiment of the present invention etc. is in the embodiment of the present invention Within protection domain.

Claims (10)

1. a kind of network Web service data guard method based on cloud storage, it is characterised in that methods described includes:
In cloud storage operation, the sensitive data in identification Web service;
Communicated after being encrypted to the sensitive data identified using rivest, shamir, adelman.
2. the network Web service data guard method as claimed in claim 1 based on cloud storage, it is characterised in that the knowledge Sensitive data in other Web service includes:
Obtain the various data in Web service;
Data format and character set to the various data of acquisition are parsed, to obtain content of text;
The content of text of acquisition is analyzed using natural language processing and Data Classification Technology, and in the text The form of appearance is matched, to realize the classification to the various data;
The sensitive data in Web service is obtained according to classification results.
3. the network Web service data guard method as claimed in claim 1 based on cloud storage, it is characterised in that described right The sensitive data identified is included using progress communication bag after rivest, shamir, adelman encryption:
Deposited to including the file of the sensitive data after the sensitive data is encrypted using public key at client's Web service end Enter cloud storage service device;And to being stored in the file for including the sensitive data of the cloud storage service device, use private key pair It is read out after the sensitive data decryption.
4. the network Web service data guard method as claimed in claim 3 based on cloud storage, it is characterised in that the visitor Family Web service end is stored in cloud to including the file of the sensitive data, after the sensitive data is encrypted using public key and deposited Storage server includes:
The customer web server from certificate management authority application authentication certificate, wherein, in the certification certificate include client Web service public key and private key;
The certification certificate is installed;
According to the sensitive data encryption rule pre-established, treated and deposited using the public key included in the mounted certification certificate The sensitive data included in the file of storage carries out filtering enciphered;
The file to be stored after encryption is stored in the cloud storage service device.
5. the network Web service data guard method as claimed in claim 4 based on cloud storage, it is characterised in that described right The file for including the sensitive data of the cloud storage service device is stored in, the sensitive data is decrypted using private key laggard Row reading includes:
Client's Web service end is from the cloud storage service device by the file of desired reading;
According to the sensitive data encryption rule pre-established, the file of the desired reading is filtered, obtains described Want the encrypted sensitive data in the file of reading;
Using private key password private key is read from the mounted certification certificate;
The encrypted sensitive data is decrypted using the private key;
Read the file for including the desired reading of decrypted sensitive data.
6. a kind of network Web service data protection device based on cloud storage, it is characterised in that described device includes:Recognize mould Block and encrypting module;
The identification module, used in being operated in cloud storage, the sensitive data in identification Web service;
The encrypting module, is communicated after being encrypted for the sensitive data to identifying using rivest, shamir, adelman.
7. the network Web service data protection device as claimed in claim 6 based on cloud storage, it is characterised in that the knowledge Sensitive data in other module identification Web service includes:
Obtain the various data in Web service;
Data format and character set to the various data of acquisition are parsed, to obtain content of text;
The content of text of acquisition is analyzed using natural language processing and Data Classification Technology, and in the text The form of appearance is matched, to realize the classification to the various data;
The sensitive data in Web service is obtained according to classification results.
8. the network Web service data protection device as claimed in claim 6 based on cloud storage, it is characterised in that described to add Close module is included to the sensitive data identified using progress communication bag after rivest, shamir, adelman encryption:
File to including the sensitive data, cloud storage service is stored in after the sensitive data is encrypted using public key Device;And to being stored in the file for including the sensitive data of the cloud storage service device, using private key to the sensitive data It is read out after decryption.
9. the network Web service data protection device as claimed in claim 8 based on cloud storage, it is characterised in that described to add Close module is stored in cloud storage service to including the file of the sensitive data after the sensitive data is encrypted using public key Device includes:
From certificate management authority application authentication certificate, wherein, client's Web service public key and private key are included in the certification certificate;
The certification certificate is installed;
According to the sensitive data encryption rule pre-established, treated and deposited using the public key included in the mounted certification certificate The sensitive data included in the file of storage carries out filtering enciphered;
The file to be stored after encryption is stored in the cloud storage service device.
10. the network Web service data protection device as claimed in claim 9 based on cloud storage, it is characterised in that described to add Close module is to being stored in the file for including the sensitive data of the cloud storage service device, using private key to the sensitive data Be read out after decryption including:
From the cloud storage service device by the file of desired reading;
According to the sensitive data encryption rule pre-established, the file of the desired reading is filtered, obtains described Want the encrypted sensitive data in the file of reading;
Using private key password private key is read from the mounted certification certificate;
The encrypted sensitive data is decrypted using the private key;
Read the file for including the desired reading of decrypted sensitive data.
CN201710582032.0A 2017-07-17 2017-07-17 A kind of guard method of network Web service data and device based on cloud storage Pending CN107222509A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710582032.0A CN107222509A (en) 2017-07-17 2017-07-17 A kind of guard method of network Web service data and device based on cloud storage

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710582032.0A CN107222509A (en) 2017-07-17 2017-07-17 A kind of guard method of network Web service data and device based on cloud storage

Publications (1)

Publication Number Publication Date
CN107222509A true CN107222509A (en) 2017-09-29

Family

ID=59952949

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710582032.0A Pending CN107222509A (en) 2017-07-17 2017-07-17 A kind of guard method of network Web service data and device based on cloud storage

Country Status (1)

Country Link
CN (1) CN107222509A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109842659A (en) * 2017-11-28 2019-06-04 上海驻云信息科技有限公司 TCP Opposite direction connection method in SaaS service
CN112039662A (en) * 2020-08-26 2020-12-04 山谷网安科技股份有限公司 Symmetric encryption transmission method for sensitive data in Web application webpage of secret-related unit

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103248479A (en) * 2012-02-06 2013-08-14 中兴通讯股份有限公司 Cloud storage safety system, data protection method and data sharing method
CN104468531A (en) * 2014-11-18 2015-03-25 邱彼特 Authorization method, device and system for sensitive data
CN105653981A (en) * 2015-12-31 2016-06-08 中国电子科技网络信息安全有限公司 Sensitive data protection system and method of data circulation and transaction of big data platform
CN105825138A (en) * 2015-01-04 2016-08-03 北京神州泰岳软件股份有限公司 Sensitive data identification method and device
CN106250769A (en) * 2016-07-30 2016-12-21 北京明朝万达科技股份有限公司 The source code data detection method of a kind of multistage filtering and device
CN106295367A (en) * 2016-08-15 2017-01-04 北京奇虎科技有限公司 Data ciphering method and device

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103248479A (en) * 2012-02-06 2013-08-14 中兴通讯股份有限公司 Cloud storage safety system, data protection method and data sharing method
CN104468531A (en) * 2014-11-18 2015-03-25 邱彼特 Authorization method, device and system for sensitive data
CN105825138A (en) * 2015-01-04 2016-08-03 北京神州泰岳软件股份有限公司 Sensitive data identification method and device
CN105653981A (en) * 2015-12-31 2016-06-08 中国电子科技网络信息安全有限公司 Sensitive data protection system and method of data circulation and transaction of big data platform
CN106250769A (en) * 2016-07-30 2016-12-21 北京明朝万达科技股份有限公司 The source code data detection method of a kind of multistage filtering and device
CN106295367A (en) * 2016-08-15 2017-01-04 北京奇虎科技有限公司 Data ciphering method and device

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109842659A (en) * 2017-11-28 2019-06-04 上海驻云信息科技有限公司 TCP Opposite direction connection method in SaaS service
CN112039662A (en) * 2020-08-26 2020-12-04 山谷网安科技股份有限公司 Symmetric encryption transmission method for sensitive data in Web application webpage of secret-related unit

Similar Documents

Publication Publication Date Title
Albugmi et al. Data security in cloud computing
Awan et al. Secure framework enhancing AES algorithm in cloud computing
CN108229188B (en) Method for signing file and verifying file by using identification key
CN111448779B (en) System, device and method for hybrid secret sharing
US10559049B2 (en) Digital passport country entry stamp
CN109583217B (en) Internet e-commerce platform user privacy data encryption and decryption method
CN1939028B (en) Accessing protected data on network storage from multiple devices
Gupta et al. Layer-based privacy and security architecture for cloud data sharing
CN101897211A (en) Migration of computer secrets
CN108134671A (en) A kind of transparent encryption system and its encipher-decipher method based on quantum true random number
CN102025744A (en) Import and export system of virtual machine image in cloud computing
KR101615137B1 (en) Data access method based on attributed
CN102024123A (en) Method and device for importing mirror image of virtual machine in cloud calculation
CN109800588A (en) Bar code dynamic encrypting method and device, bar code dynamic decryption method and device
CN112332975A (en) Internet of things equipment secure communication method and system
Aruna et al. Cloud to cloud data migration using self sovereign identity for 5G and beyond
KR20120091507A (en) Data access privilege managing method and apparatus
CN107222509A (en) A kind of guard method of network Web service data and device based on cloud storage
Yahiatene et al. Towards a distributed ABE based approach to protect privacy on online social networks
CN103379103A (en) Linear encryption and decryption hardware implementation method
Choubey et al. Study of data security and privacy preserving solutions in cloud computing
CN107689867B (en) Key protection method and system under open environment
CN102025743A (en) Method and device for exporting mirror image of virtual machine in cloud computing
CN109194663A (en) A kind of method and device of file storage and downloading based on cloud computing
Malik et al. Cloud computing security improvement using Diffie Hellman and AES

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20170929

RJ01 Rejection of invention patent application after publication