CN107579987A - A kind of encryption of server high in the clouds diagnostic system rule base two level, access method and system - Google Patents
A kind of encryption of server high in the clouds diagnostic system rule base two level, access method and system Download PDFInfo
- Publication number
- CN107579987A CN107579987A CN201710867982.8A CN201710867982A CN107579987A CN 107579987 A CN107579987 A CN 107579987A CN 201710867982 A CN201710867982 A CN 201710867982A CN 107579987 A CN107579987 A CN 107579987A
- Authority
- CN
- China
- Prior art keywords
- key
- clear text
- rule base
- ciphertext
- aes
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a kind of level encryption method of server high in the clouds diagnostic system rule base two, comprise the following steps:Clear text key in configuration file is read, ciphertext key is generated using AES;Clear text key AES is encapsulated into database access instrument.Secondary encryption generation ciphertext key is carried out using AES to clear text key, SQLCipher cipher key interfaces is called, inputs key, to database manipulation after decryption, be effectively protected rule base data safety.
Description
Technical field
The present invention relates to database encryption technology field, especially a kind of server high in the clouds diagnostic system rule base two level adds
Close, access method and system.
Background technology
Rule base have recorded the core knowledges such as fault diagnosis foundation, failure determination mode, failure rank, processing mode.Rule
Then storehouse uses sqlite3 database purchases, and system, which carries sqlite3 databases, does not have data base encryption function;But sqlite3
Provide data base encryption interface;Many is increased income encryption interface of the tissue based on sqlite3, have developed based on sqlite3's
Encrypting database;Open source software SQLCipher is exactly wherein to represent, and SQLCipher is based on OpenSSL and realized to sqlite3 numbers
Encrypted according to storehouse.SQLCipher databases provide C language interface and shell instruments.The shell tool operations that SQLCipher is provided
Input database key is needed before database, key is inputted with clear-text way;Shell instruments, which access, can cause database secret
Key leaks.
The content of the invention
It is an object of the invention to provide a kind of encryption of server high in the clouds diagnostic system rule base two level, access method and it is
System, effective safeguard rule storehouse data safety.
To achieve the above object, the present invention uses following technical proposals:
A kind of level encryption method of server high in the clouds diagnostic system rule base two, comprises the following steps:
Clear text key in configuration file is read, ciphertext key is generated using AES;
Clear text key AES is encapsulated into database access instrument.
Further, clear text key in the reading configuration file, ciphertext key is generated using AES, including:Read
The clear text key in configuration file is taken, logic and operation is carried out to clear text key and self-defining character string, generates ciphertext key.
A kind of server high in the clouds diagnostic system rule base two level encrypted access method, comprises the following steps:
Clear text key in configuration file is read, ciphertext key is generated using AES;
Clear text key AES is encapsulated into database access instrument;
Database access instrument input ciphertext key is called to realize to database access operation.
Further, clear text key in the reading configuration file, ciphertext key is generated using AES, including:Read
The clear text key in configuration file is taken, logic and operation is carried out to clear text key and self-defining character string, generates ciphertext key.
Further, the calling database access instrument input ciphertext key is realized to database access operation, including:
SQLCliper encryption interfaces are called, input ciphertext key, the access operation to rule base is realized in the case of key input is correct.
A kind of server high in the clouds diagnostic system rule base two level encryption system, including:Clear text key encrypting module, completion pair
Clear text key encryption generation ciphertext cipher key operation in configuration file;
AES package module, the encapsulation operation of clear text key AES is carried out to database access tool;
Key judge module, whether input ciphertext key is correctly judged.
Further, in addition to:Clear text key encrypts judge module, judges ciphertext key is encrypted as to clear text key whether
Success, return to judged result.
The effect provided in the content of the invention is only the effect of embodiment, rather than whole effects that invention is all, above-mentioned
A technical scheme in technical scheme has the following advantages that or beneficial effect:
The present invention provides a kind of server high in the clouds diagnostic system rule base two level encryption policy, to clear text key using encryption
Algorithm carries out secondary encryption generation ciphertext key, calls SQLCipher cipher key interfaces, key is inputted, to database after decryption
Operation, is effectively protected rule base data safety.
Brief description of the drawings
Fig. 1 is the level encryption method flow chart of server high in the clouds diagnostic system rule base two;
Fig. 2 is the server high in the clouds diagnostic system rule base two level encrypted access method flow diagram of the embodiment of the present invention one;
The secondary encryption flow figure of Fig. 3 present invention;
Fig. 4 is the server high in the clouds diagnostic system rule base two level encrypted access method flow diagram of the embodiment of the present invention two.
Embodiment
For the technical characterstic for illustrating this programme can be understood, below by embodiment, and its accompanying drawing is combined, to this hair
It is bright to be described in detail.Following disclosure provides many different embodiments or example is used for realizing the different knots of the present invention
Structure.In order to simplify disclosure of the invention, hereinafter the part and setting of specific examples are described.In addition, the present invention can be with
Repeat reference numerals and/or letter in different examples.This repetition is that for purposes of simplicity and clarity, itself is not indicated
Relation between various embodiments are discussed and/or set.It should be noted that part illustrated in the accompanying drawings is not necessarily to scale
Draw.Present invention omits the description to known assemblies and treatment technology and process to avoid being unnecessarily limiting the present invention.
As shown in figure 1, the level encryption method of server high in the clouds diagnostic system rule base two, reads in configuration file in plain text first
Key, the key of reading is encrypted;Ciphertext key adds as SQLCipher encryption keys to rule base after encryption
It is close.
As shown in Fig. 2 server high in the clouds diagnostic system rule base two level encrypted access method, data base tool are read first
Clear text key in configuration file, clear text key is encrypted, and generates ciphertext key;It is after the key success of generation ciphertext that ciphertext is close
Key after accessing successfully, returns to request results as rule base cipher key access rule base.
As shown in figure 3, reading the clear text key in configuration file, logical AND is carried out to clear text key and self-defining character string
Computing, ciphertext key is generated, successfully returns to 0, unsuccessfully return to -1.
As shown in figure 4, data base tool reads clear text key in configuration file first, clear text key is encrypted, it is raw
Into ciphertext key;Then SQLCipher cipher key interfaces are called, key are inputted, to database manipulation after decryption.
A kind of server high in the clouds diagnostic system rule base two level encryption system, including:Clear text key encrypting module, completion pair
Clear text key encryption generation ciphertext cipher key operation in configuration file;AES package module, database access tool is entered
The encapsulation operation of row clear text key AES;Key judge module, whether input ciphertext key is correctly judged.In plain text
Key encrypts judge module, judges to be encrypted as clear text key whether ciphertext key succeeds, and returns to judged result.
Although above-mentioned the embodiment of the present invention is described with reference to accompanying drawing, model not is protected to the present invention
The limitation enclosed, one of ordinary skill in the art should be understood that on the basis of technical scheme those skilled in the art are not
Need to pay various modifications or deformation that creative work can make still within protection scope of the present invention.
Claims (7)
1. a kind of level encryption method of server high in the clouds diagnostic system rule base two, it is characterized in that, comprise the following steps:
Clear text key in configuration file is read, ciphertext key is generated using AES;
Clear text key AES is encapsulated into database access instrument.
2. a kind of level encryption method of server high in the clouds diagnostic system rule base two as claimed in claim 1, it is characterized in that, it is described
Clear text key in configuration file is read, ciphertext key is generated using AES, including:
The clear text key in configuration file is read, logic and operation is carried out to clear text key and self-defining character string, generates ciphertext
Key.
3. a kind of server high in the clouds diagnostic system rule base two level encrypted access method, it is characterized in that, comprise the following steps:
Clear text key in configuration file is read, ciphertext key is generated using AES;
Clear text key AES is encapsulated into database access instrument;
Database access instrument input ciphertext key is called to realize to database access operation.
4. a kind of level encryption method of server high in the clouds diagnostic system rule base two as claimed in claim 3, it is characterized in that, it is described
Clear text key in configuration file is read, ciphertext key is generated using AES, including:The plaintext read in configuration file is close
Key, logic and operation is carried out to clear text key and self-defining character string, generates ciphertext key.
5. a kind of level encryption method of server high in the clouds diagnostic system rule base two as claimed in claim 3, it is characterized in that, it is described
Database access instrument input ciphertext key is called to realize to database access operation, including:SQLCliper encryptions are called to connect
Mouthful, ciphertext key is inputted, the access operation to rule base is realized in the case of key input is correct.
6. a kind of server high in the clouds diagnostic system rule base two level encryption system, using claim 1 to 5 methods described, it is special
Sign is, including:Clear text key encrypting module, complete to the clear text key encryption generation ciphertext cipher key operation in configuration file;
AES package module, the encapsulation operation of clear text key AES is carried out to database access tool;
Key judge module, whether input ciphertext key is correctly judged.
7. a kind of server high in the clouds diagnostic system rule base two level encryption system as claimed in claim 4, it is characterized in that, also wrap
Include:Clear text key encrypts judge module, judges to be encrypted as clear text key whether ciphertext key succeeds, and returns to judged result.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710867982.8A CN107579987A (en) | 2017-09-22 | 2017-09-22 | A kind of encryption of server high in the clouds diagnostic system rule base two level, access method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710867982.8A CN107579987A (en) | 2017-09-22 | 2017-09-22 | A kind of encryption of server high in the clouds diagnostic system rule base two level, access method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107579987A true CN107579987A (en) | 2018-01-12 |
Family
ID=61038769
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710867982.8A Pending CN107579987A (en) | 2017-09-22 | 2017-09-22 | A kind of encryption of server high in the clouds diagnostic system rule base two level, access method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107579987A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108985096A (en) * | 2018-07-13 | 2018-12-11 | 厦门市美亚柏科信息股份有限公司 | A kind of enhancing of Android SQLite database security, method for safely carrying out and device |
| CN112507357A (en) * | 2020-12-09 | 2021-03-16 | 华南理工大学 | Multi-level interface design method based on key generator |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101320409A (en) * | 2008-07-10 | 2008-12-10 | 浙江工业大学 | Database encryption method based on Chinese remainder theorem |
| CN102143159A (en) * | 2011-01-13 | 2011-08-03 | 北京邮电大学 | Database key management method in DAS (database-as-a-service) model |
| CN102855448A (en) * | 2012-08-10 | 2013-01-02 | 深圳市黎明网络系统有限公司 | Field-level database encryption device |
| WO2013145627A1 (en) * | 2012-03-29 | 2013-10-03 | 日本電気株式会社 | Encrypted database system, client terminal, database server, data linking method, and program |
| CN104732163A (en) * | 2015-04-03 | 2015-06-24 | 宁波工程学院 | Folder encryption method and encrypted file use method |
| CN105989270A (en) * | 2015-09-25 | 2016-10-05 | 武汉安天信息技术有限责任公司 | Cloud computing-based android database security protection method and system |
| CN106992851A (en) * | 2017-04-01 | 2017-07-28 | 北京元心科技有限公司 | TrustZone-based database file password encryption and decryption method and device and terminal equipment |
-
2017
- 2017-09-22 CN CN201710867982.8A patent/CN107579987A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101320409A (en) * | 2008-07-10 | 2008-12-10 | 浙江工业大学 | Database encryption method based on Chinese remainder theorem |
| CN102143159A (en) * | 2011-01-13 | 2011-08-03 | 北京邮电大学 | Database key management method in DAS (database-as-a-service) model |
| WO2013145627A1 (en) * | 2012-03-29 | 2013-10-03 | 日本電気株式会社 | Encrypted database system, client terminal, database server, data linking method, and program |
| CN102855448A (en) * | 2012-08-10 | 2013-01-02 | 深圳市黎明网络系统有限公司 | Field-level database encryption device |
| CN104732163A (en) * | 2015-04-03 | 2015-06-24 | 宁波工程学院 | Folder encryption method and encrypted file use method |
| CN105989270A (en) * | 2015-09-25 | 2016-10-05 | 武汉安天信息技术有限责任公司 | Cloud computing-based android database security protection method and system |
| CN106992851A (en) * | 2017-04-01 | 2017-07-28 | 北京元心科技有限公司 | TrustZone-based database file password encryption and decryption method and device and terminal equipment |
Non-Patent Citations (1)
| Title |
|---|
| YUNSHOUHU: "加密你的SQLite", 《HTTPS://BLOG.CSDN.NET/EARBAO/ARTICLE/DETAILS/76026570》 * |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108985096A (en) * | 2018-07-13 | 2018-12-11 | 厦门市美亚柏科信息股份有限公司 | A kind of enhancing of Android SQLite database security, method for safely carrying out and device |
| CN112507357A (en) * | 2020-12-09 | 2021-03-16 | 华南理工大学 | Multi-level interface design method based on key generator |
| CN112507357B (en) * | 2020-12-09 | 2024-03-29 | 华南理工大学 | Multi-stage interface design method based on key generator |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108595989B (en) | Mobile APP safety protection system and method under iOS | |
| CN102138300B (en) | Message authentication code pre-computation with applications to secure memory | |
| CN110008745B (en) | Encryption method, computer equipment and computer storage medium | |
| CN110100422B (en) | Data writing method and device based on block chain intelligent contract and storage medium | |
| CN105099652B (en) | Data encryption, decryption method and device | |
| CN107609418A (en) | Desensitization method, device, storage device and the computer equipment of text data | |
| CN103378971B (en) | A kind of data encryption system and method | |
| US20230254120A1 (en) | Secret material exchange and authentication cryptography operations | |
| CN104901810A (en) | Data encryption storage method based on domestic cryptographic algorithm | |
| US20240187217A1 (en) | Security encryption method for computer files, security decryption method for computer files, and readable storage medium | |
| US8891760B2 (en) | System for checking acceptance of string by automaton | |
| CN107784207A (en) | Display methods, device, equipment and the storage medium at financial APP interfaces | |
| CN106295403A (en) | A kind of data safety processing method based on hbase and system | |
| CN104038336A (en) | Data encryption method based on 3DES | |
| CN109766731A (en) | Encryption data processing method, device and computer equipment based on solid state hard disk | |
| CN107579987A (en) | A kind of encryption of server high in the clouds diagnostic system rule base two level, access method and system | |
| CN107911221A (en) | The key management method of solid-state disk data safety storage | |
| CN108537038A (en) | Custom rule cipher management method, device, terminal device and storage medium | |
| US8413906B2 (en) | Countermeasures to secure smart cards | |
| CN104636662A (en) | Data processing method and terminal device | |
| CN113645183B (en) | Data encryption transmission method, system, computer equipment and storage medium | |
| CN108376212A (en) | Execute code security guard method, device and electronic device | |
| CN111542050B (en) | TEE-based method for guaranteeing remote initialization safety of virtual SIM card | |
| CN114157473A (en) | Biometric technology sharing and verification method, system, device and medium | |
| CN113158203A (en) | SOC chip, circuit and external data reading and writing method of SOC chip |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180112 |