CN111274607A - Mobile application data privacy protection method based on virtual machine - Google Patents
Mobile application data privacy protection method based on virtual machine Download PDFInfo
- Publication number
- CN111274607A CN111274607A CN202010065428.XA CN202010065428A CN111274607A CN 111274607 A CN111274607 A CN 111274607A CN 202010065428 A CN202010065428 A CN 202010065428A CN 111274607 A CN111274607 A CN 111274607A
- Authority
- CN
- China
- Prior art keywords
- virtual machine
- mobile
- information
- module
- password
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 27
- 238000012795 verification Methods 0.000 claims abstract description 39
- 238000004891 communication Methods 0.000 claims abstract description 4
- 230000005540 biological transmission Effects 0.000 claims description 3
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000001419 dependent effect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
- G06F21/46—Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
Abstract
A mobile application data privacy protection method based on a virtual machine comprises the following specific steps: s1, constructing a storage space for installing the virtual machine A on the cloud server; creating a plurality of groups of storage modules in the virtual machine A and connecting the storage modules with the mobile equipment B in a communication manner; s2, logging in the virtual machine A by the user of each group of mobile equipment B through the login module; s3, each group of mobile equipment B sends each group of private data information C to be protected to the virtual machine A, and meanwhile, the protection verification module receives an information input password D; s4, the protection verification module identifies the correctness of the input password D through the consensus mechanism; s5, the user of the mobile device B needs to read the storage data in the corresponding storage module, and the protection verification module receives the information reading password E; and S6, the protection verification module identifies the correctness of the information reading password E through the consensus mechanism. The method and the device can effectively protect the private data in the mobile application and avoid data leakage.
Description
Technical Field
The invention relates to the technical field of computer networks, in particular to a mobile application data privacy protection method based on a virtual machine.
Background
With the rapid development of internet technology, the use of mobile terminal equipment such as computers is more and more extensive, people can not leave the network in daily life and work, but a large amount of personal privacy information can be generated on the mobile terminal equipment such as the computer when the mobile terminal equipment such as the computer is used, and particularly when the computer is used for working, confidential files of companies are stored in the computer and are easy to leak; in addition, people are more and more dependent on smart phones, and thus, a large amount of data related to the user personally is generated, such as: the mobile phone number, the address list, the short message, the chat record, the e-mail, the account password of the network software and the like, however, the protection of the privacy data does not give sufficient attention, and the personal privacy information stored in the mobile phone is extremely easy to be stolen by lawbreakers; therefore, the application provides a mobile application data privacy protection method based on a virtual machine.
Disclosure of Invention
Objects of the invention
In order to solve the technical problems in the background art, the invention provides a mobile application data privacy protection method based on a virtual machine, which can effectively protect privacy data in mobile application and avoid data leakage.
(II) technical scheme
In order to solve the above problems, the present invention provides a mobile application data privacy protection method based on a virtual machine, which includes the following specific steps:
s1, constructing a storage space for installing a virtual machine A on the cloud server, wherein the virtual machine A is in communication connection with a plurality of groups of mobile equipment B, and a plurality of groups of storage modules are created in the virtual machine A; the storage modules correspond to the mobile equipment B one by one;
s2, logging in the virtual machine A by the user of each group of mobile equipment B through the login module;
s3, each group of mobile equipment B sends each group of private data information C to be protected to the virtual machine A, and meanwhile, the protection verification module receives an information input password D;
s4, the protection verification module identifies the correctness of the input password D through the consensus mechanism;
if the verification is qualified, storing each group of privacy data information C in the corresponding storage module, and automatically deleting the privacy information C in the mobile equipment B;
if the verification is not qualified, the storage of each group of private data information C fails;
s5, the user of the mobile device B needs to read the storage data in the corresponding storage module, and the protection verification module receives the information reading password E;
s6, the protection verification module identifies the correctness of the information reading password E through a consensus mechanism;
if the verification is qualified, the user of the mobile equipment B reads the private data information C stored in the corresponding storage module;
and if the verification is not qualified, the user of the mobile equipment B is refused to read the private data information C stored in the corresponding storage module.
Preferably, the generation method of the information input password D and the information reading password E is one of an RSA public key system or an elliptic curve cryptography system.
Preferably, the consensus mechanism is verified by the protection verification module.
Preferably, during the transmission of the private data information C, the private data information C is encrypted by an AES encryption algorithm.
Preferably, the information input password D and the information reading password E are in one-to-one correspondence with the corresponding mobile devices B.
Preferably, the mobile device B includes a mobile terminal of a mobile phone and a mobile terminal of a computer.
Preferably, in S5, after the verification is not qualified, the alarm module sends alarm information to the mobile phone of the user of the corresponding mobile device B.
Preferably, the user of the mobile device B logs in through the login module in a password account.
Preferably, the mobile application data privacy protection system comprises
The virtual machine unit is arranged in a storage space of the cloud server to form a virtual machine A;
the storage module is used for storing the private data information C to be stored, which is sent by the mobile equipment B;
the login module is used for enabling the owner of the mobile equipment B to log in the virtual machine A;
the password generating module is used for generating an information input password D and an information reading password E;
and the protection verification module is used for verifying whether the information input password D and the information reading password E are qualified or not.
Preferably, the mobile application data privacy protection system further comprises
And the alarm module is used for sending alarm information to the mobile phone end of the user corresponding to the mobile equipment B.
The technical scheme of the invention has the following beneficial technical effects:
in the invention, the private data C in a section of equipment B is sent to the virtual machine A in the cloud server for storage, and after the private information C is successfully stored, the private information C in the mobile equipment B is automatically deleted, so that the private information C in the mobile equipment B can be effectively prevented from being leaked.
Drawings
Fig. 1 is a flowchart of a method for inputting and storing private data information in a mobile application data privacy protection method based on a virtual machine according to the present invention.
Fig. 2 is a flowchart of a method for reading privacy data information in a mobile application data privacy protection method based on a virtual machine according to the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention will be described in further detail with reference to the accompanying drawings in conjunction with the following detailed description. It should be understood that the description is intended to be exemplary only, and is not intended to limit the scope of the present invention. Moreover, in the following description, descriptions of well-known structures and techniques are omitted so as to not unnecessarily obscure the concepts of the present invention.
As shown in fig. 1-2, the method for protecting privacy of mobile application data based on a virtual machine according to the present invention includes the following specific steps:
s1, constructing a storage space for installing a virtual machine A on the cloud server, wherein the virtual machine A is in communication connection with a plurality of groups of mobile equipment B, and a plurality of groups of storage modules are created in the virtual machine A; the storage modules correspond to the mobile equipment B one by one;
s2, logging in the virtual machine A by the user of each group of mobile equipment B through the login module;
s3, each group of mobile equipment B sends each group of private data information C to be protected to the virtual machine A, and meanwhile, the protection verification module receives an information input password D;
s4, the protection verification module identifies the correctness of the input password D through the consensus mechanism;
if the verification is qualified, storing each group of private data information C in the corresponding storage module;
if the verification is not qualified, the storage of each group of private data information C fails;
when the verification is unqualified for multiple times, automatically locking the virtual machine A for a period of time; the time is set automatically;
further, after the privacy information C is successfully stored, the privacy information C in the mobile equipment B is automatically deleted;
s5, the user of the mobile device B needs to read the storage data in the corresponding storage module, and the protection verification module receives the information reading password E;
s6, the protection verification module identifies the correctness of the information reading password E through a consensus mechanism;
if the verification is qualified, the user of the mobile equipment B reads the private data information C stored in the corresponding storage module;
if the verification is not qualified, the user of the mobile equipment B is refused to read the private data information C stored in the corresponding storage module;
when the verification is unqualified for multiple times, automatically locking the virtual machine A for a period of time; the time is set by the user.
In the invention, the private data C in a section of equipment B is sent to the virtual machine A in the cloud server for storage, and after the private information C is successfully stored, the private information C in the mobile equipment B is automatically deleted, so that the private information C in the mobile equipment B can be effectively prevented from being leaked.
In an alternative embodiment, the generation method of the information input password D and the information reading password E adopts one of an RSA public key system or an elliptic curve cryptography system.
In an alternative embodiment, the consensus mechanism is checked by the guard verification module.
In an alternative embodiment, during the transmission of the private data information C, the private data information C is encrypted by the AES encryption algorithm.
In an optional embodiment, the information input password D and the information reading password E are in one-to-one correspondence with the corresponding mobile devices B; each group of mobile equipment B generates a unique information input password D and an information reading password E, data can be stored for a plurality of mobile equipment B in the same company through a large-capacity virtual machine A, and the plurality of groups of mobile equipment B under the same virtual machine A correspond to the unique information input password D and the unique information reading password E.
In an alternative embodiment, the mobile device B includes a mobile terminal of a mobile phone and a mobile terminal of a computer.
In an optional embodiment, in S5, when the verification is not qualified, the alarm module sends an alarm message to the mobile phone of the user of the corresponding mobile device B.
In an alternative embodiment, the user of the mobile device B logs in for the password account by logging in through the login module.
In an alternative embodiment, a mobile application data privacy protection system includes
The virtual machine unit is arranged in a storage space of the cloud server to form a virtual machine A;
the storage module is used for storing the private data information C to be stored, which is sent by the mobile equipment B;
the login module is used for enabling the owner of the mobile equipment B to log in the virtual machine A;
the password generating module is used for generating an information input password D and an information reading password E;
and the protection verification module is used for verifying whether the information input password D and the information reading password E are qualified or not.
In an optional embodiment, the mobile application data privacy protection system further comprises
And the alarm module is used for sending alarm information to the mobile phone end corresponding to the user of the mobile equipment B so as to enable the user to timely know and avoid the leakage of the privacy information C.
It is to be understood that the above-described embodiments of the present invention are merely illustrative of or explaining the principles of the invention and are not to be construed as limiting the invention. Therefore, any modification, equivalent replacement, improvement and the like made without departing from the spirit and scope of the present invention should be included in the protection scope of the present invention. Further, it is intended that the appended claims cover all such variations and modifications as fall within the scope and boundaries of the appended claims or the equivalents of such scope and boundaries.
Claims (10)
1. A mobile application data privacy protection method based on a virtual machine is characterized by comprising the following specific steps:
s1, constructing a storage space for installing a virtual machine A on the cloud server, wherein the virtual machine A is in communication connection with a plurality of groups of mobile equipment B, and a plurality of groups of storage modules are created in the virtual machine A; the storage modules correspond to the mobile equipment B one by one;
s2, logging in the virtual machine A by the user of each group of mobile equipment B through the login module;
s3, each group of mobile equipment B sends each group of private data information C to be protected to the virtual machine A, and meanwhile, the protection verification module receives an information input password D;
s4, the protection verification module identifies the correctness of the input password D through the consensus mechanism;
if the verification is qualified, storing each group of privacy data information C in the corresponding storage module, and automatically deleting the privacy information C in the mobile equipment B;
if the verification is not qualified, the storage of each group of private data information C fails;
s5, the user of the mobile device B needs to read the storage data in the corresponding storage module, and the protection verification module receives the information reading password E;
s6, the protection verification module identifies the correctness of the information reading password E through a consensus mechanism;
if the verification is qualified, the user of the mobile equipment B reads the private data information C stored in the corresponding storage module;
and if the verification is not qualified, the user of the mobile equipment B is refused to read the private data information C stored in the corresponding storage module.
2. The privacy protection method for mobile application data based on the virtual machine as claimed in claim 1, wherein the generation method of the information input password D and the information reading password E is one of RSA public key system or elliptic curve cryptography.
3. The method of claim 1, wherein the consensus mechanism is verified by a protection and verification module.
4. The method for protecting privacy of mobile application data based on virtual machine according to claim 1, wherein during the transmission of the private data information C, the private data information C is encrypted by AES encryption algorithm.
5. The method for protecting privacy of mobile application data based on the virtual machine as claimed in claim 1, wherein the information input password D and the information reading password E are both in one-to-one correspondence with the corresponding mobile devices B.
6. The method according to claim 1, wherein the mobile device B comprises a mobile terminal of a mobile phone and a mobile terminal of a computer.
7. The privacy protection method for mobile application data based on the virtual machine according to claim 1, wherein in S5, when the verification is not qualified, the alarm module sends alarm information to a mobile phone terminal of a user of the corresponding mobile device B.
8. The method for protecting privacy of mobile application data based on the virtual machine as claimed in claim 1, wherein the user of the mobile device B logs in for the password account by logging in module.
9. The method of claim 1, wherein the mobile application data privacy protection system comprises
The virtual machine unit is arranged in a storage space of the cloud server to form a virtual machine A;
the storage module is used for storing the private data information C to be stored, which is sent by the mobile equipment B;
the login module is used for enabling the owner of the mobile equipment B to log in the virtual machine A;
the password generating module is used for generating an information input password D and an information reading password E;
and the protection verification module is used for verifying whether the information input password D and the information reading password E are qualified or not.
10. The method of claim 9, wherein the system further comprises a mobile application data privacy protection system
And the alarm module is used for sending alarm information to the mobile phone end of the user corresponding to the mobile equipment B.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010065428.XA CN111274607A (en) | 2020-01-20 | 2020-01-20 | Mobile application data privacy protection method based on virtual machine |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010065428.XA CN111274607A (en) | 2020-01-20 | 2020-01-20 | Mobile application data privacy protection method based on virtual machine |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111274607A true CN111274607A (en) | 2020-06-12 |
Family
ID=70999021
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010065428.XA Pending CN111274607A (en) | 2020-01-20 | 2020-01-20 | Mobile application data privacy protection method based on virtual machine |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111274607A (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102065167A (en) * | 2010-10-09 | 2011-05-18 | 深圳市阿尔斯电信技术有限公司 | Phonebook storing and reading method, operation platform and network system |
| CN103795715A (en) * | 2014-01-20 | 2014-05-14 | 冯丽娟 | Privacy protection method, privacy recovery method and privacy protection system |
| US8826013B1 (en) * | 2009-09-23 | 2014-09-02 | Trend Micro Incorporated | Protection of customer data in cloud virtual machines using a central management server |
| CN104283879A (en) * | 2014-10-09 | 2015-01-14 | 广州杰赛科技股份有限公司 | Virtual machine remote connection method and system |
| WO2016037330A1 (en) * | 2014-09-10 | 2016-03-17 | 华为技术有限公司 | Information processing method and device |
| CN107154975A (en) * | 2017-05-09 | 2017-09-12 | 重庆文理学院 | One kind application method for down loading and device |
| CN109284203A (en) * | 2018-08-30 | 2019-01-29 | 北京珠穆朗玛移动通信有限公司 | Secure data backup method and secure data backup system |
-
2020
- 2020-01-20 CN CN202010065428.XA patent/CN111274607A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8826013B1 (en) * | 2009-09-23 | 2014-09-02 | Trend Micro Incorporated | Protection of customer data in cloud virtual machines using a central management server |
| CN102065167A (en) * | 2010-10-09 | 2011-05-18 | 深圳市阿尔斯电信技术有限公司 | Phonebook storing and reading method, operation platform and network system |
| CN103795715A (en) * | 2014-01-20 | 2014-05-14 | 冯丽娟 | Privacy protection method, privacy recovery method and privacy protection system |
| WO2016037330A1 (en) * | 2014-09-10 | 2016-03-17 | 华为技术有限公司 | Information processing method and device |
| CN104283879A (en) * | 2014-10-09 | 2015-01-14 | 广州杰赛科技股份有限公司 | Virtual machine remote connection method and system |
| CN107154975A (en) * | 2017-05-09 | 2017-09-12 | 重庆文理学院 | One kind application method for down loading and device |
| CN109284203A (en) * | 2018-08-30 | 2019-01-29 | 北京珠穆朗玛移动通信有限公司 | Secure data backup method and secure data backup system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108989346B (en) | Third-party valid identity escrow agile authentication access method based on account hiding | |
| CN102945355B (en) | Fast Data Encipherment strategy based on sector map is deferred to | |
| CN102855452B (en) | Fast Data Encipherment strategy based on encryption chunk is deferred to | |
| CN103095847B (en) | Cloud storage safety-ensuring method and system thereof | |
| CN101510888B (en) | Method, device and system for improving data security for SaaS application | |
| CN101815091A (en) | Cipher providing equipment, cipher authentication system and cipher authentication method | |
| CN104618096A (en) | Method and device for protecting secret key authorized data, and TPM (trusted platform module) secrete key management center | |
| CN109190401A (en) | A kind of date storage method, device and the associated component of Qemu virtual credible root | |
| CN113886862B (en) | Trusted computing system and resource processing method based on trusted computing system | |
| KR102329221B1 (en) | Blockchain-based user authentication model | |
| CN106302316A (en) | Cipher management method and device, system | |
| CN106789014A (en) | It is a kind of to generate and use the method and apparatus of user terminal key | |
| CN114942729A (en) | Data safety storage and reading method for computer system | |
| CN104935608A (en) | Identity authentication method in cloud computing network | |
| CN109726578B (en) | Dynamic two-dimensional code anti-counterfeiting solution | |
| CN110008727B (en) | Encryption sensitive parameter processing method and device, computer equipment and storage medium | |
| CN111274607A (en) | Mobile application data privacy protection method based on virtual machine | |
| CN104935606A (en) | Terminal login method in cloud computing network | |
| CN111464543B (en) | Teaching information safety protection system based on cloud platform | |
| CN114329559A (en) | External important data protection system and protection method thereof | |
| Nagendran et al. | Hyper Elliptic Curve Cryptography (HECC) to ensure data security in the cloud | |
| CN113901507A (en) | Multi-party resource processing method and privacy computing system | |
| CN102467625B (en) | Data protection method, device and system | |
| CN104935607A (en) | Login certification method in cloud computing network | |
| CN115580394B (en) | Privacy data desensitization transmission method and system in property digital system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20220908 Address after: 361000 units 1702 and 1703, No. 59, Chengyi North Street, phase III, software park, Xiamen, Fujian Applicant after: XIAMEN USEEAR INFORMATION TECHNOLOGY Co.,Ltd. Address before: Unit 1701, unit 1704, No. 59, Chengyi North Street, phase III, software park, Xiamen City, Fujian Province, 361000 Applicant before: FUJIAN QIDIAN SPACE-TIME DIGITAL TECHNOLOGY Co.,Ltd. |
|
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20200612 |