CN113449337A - Server hosting information processing method and system - Google Patents
Server hosting information processing method and system Download PDFInfo
- Publication number
- CN113449337A CN113449337A CN202110692968.5A CN202110692968A CN113449337A CN 113449337 A CN113449337 A CN 113449337A CN 202110692968 A CN202110692968 A CN 202110692968A CN 113449337 A CN113449337 A CN 113449337A
- Authority
- CN
- China
- Prior art keywords
- information
- module
- key
- server
- hosting information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 230000010365 information processing Effects 0.000 title claims abstract description 19
- 238000003672 processing method Methods 0.000 title claims abstract description 9
- 238000000034 method Methods 0.000 claims abstract description 8
- 238000004364 calculation method Methods 0.000 abstract description 5
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6272—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database by registering files or documents with a third party
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Health & Medical Sciences (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Bioethics (AREA)
- Databases & Information Systems (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a server escrow information processing method and a server escrow information processing system, wherein the method comprises the steps that a sending client encrypts escrow information, assigns values to the encrypted escrow information to obtain the assigned escrow information, sends the assigned escrow information to a server to be identified to obtain key escrow information and non-key escrow information, decrypts the key escrow information and the non-key escrow information, stores the key escrow information and the non-key escrow information in the server in a plaintext form, re-encrypts the decrypted key escrow information to obtain re-encrypted key escrow information, and sends the non-key escrow information and the re-encrypted key escrow information to a receiving client; the encrypted escrow information is assigned in an assignment mode, so that the key escrow information and the non-key escrow information can be effectively distinguished, the key escrow information and the non-key escrow information are identified by the server, the key escrow information is encrypted, the non-key escrow information is not encrypted, and the calculation efficiency of the server can be effectively improved.
Description
Technical Field
The invention relates to the technical field of servers, in particular to a server hosting information processing method and system.
Background
In the internet era, the security of data transmission is more and more important, based on the consideration of expanding storage capacity and reducing management cost, storing big data on the cloud is a very economic choice, but for the consideration of security and confidentiality, encryption operation is required when data is managed and stored on the cloud, so that the risk of leakage of managed data is effectively prevented, specifically, a client encrypts the managed data and sends the encrypted managed data to a server, the server decrypts the received managed data, so that the managed data is stored in a plaintext form, when the managed data needs to be forwarded to a receiving end client, the server re-encrypts the managed data and sends the re-encrypted managed data to a receiving end, so that the leakage of the managed data is effectively prevented, but the server encrypts and decrypts the received managed data, this will certainly increase the computational load of the server, thereby reducing the computational efficiency of the server.
Disclosure of Invention
In view of this, the present invention provides a method and a system for processing server hosting information, which can solve the defect of reducing the operation efficiency of the server in the existing server hosting information processing.
The technical scheme of the invention is realized as follows:
a server hosting information processing method specifically comprises the following steps:
step S1, the sending client encrypts the escrow information by adopting an encryption and decryption algorithm, and assigns the encrypted escrow information in an assignment mode to obtain the assigned escrow information;
step S2, sending the assigned hosting information to a server, and identifying the assigned hosting information by the server to obtain key hosting information and non-key hosting information;
step S3, decrypting the key escrow information and the non-key escrow information respectively through an encryption and decryption algorithm, and storing the key escrow information and the non-key escrow information in a server in a plaintext form;
step S4, re-encrypting the decrypted key escrow information through an encryption and decryption algorithm to obtain re-encrypted key escrow information;
step S5, sending the non-critical escrow information and the re-encrypted critical escrow information to the receiving client.
As a further alternative of the server hosting information processing method, in step S1, the encrypted hosting information is assigned in an assignment manner to obtain assigned hosting information, and the method specifically includes the following steps:
step S1, two different numerical values are used as identification codes;
and step S2, adding the identification code into the hosting information according to the criticality of the hosting information to obtain the assigned hosting information.
As a further alternative of the server hosting information processing method, the encryption and decryption algorithm adopts an AES encryption and decryption algorithm.
A server hosting information processing system comprises a sending client, a server and a receiving client, wherein the sending client and the receiving client are respectively connected with the server, the sending client comprises a first encryption module and an assignment module, the server comprises an identification module, a first decryption module, a storage module and a second encryption module, the receiving client comprises a second decryption module, the first encryption module is used for encrypting hosting information, the assignment module is used for assigning the encrypted hosting information to obtain the assigned hosting information, the identification module is used for identifying the assigned hosting information to obtain key hosting information and non-key hosting information, the first decryption module is used for decrypting the key hosting information and the non-key hosting information, and the storage module is used for storing the decrypted key hosting information and the non-key hosting information in a plaintext form, the second encryption module is used for carrying out re-encryption on the decrypted key escrow information to obtain re-encrypted key escrow information, and the second decryption module is used for decrypting the re-encrypted key escrow information.
As a further optional scheme of the server hosting information processing system, the assignment module includes an identification code input module and an identification code merging module, the identification code input module is configured to input an identification code, and the identification code merging module is configured to add the identification code to the hosting information according to the criticality of the hosting information to obtain the hosted information after assignment.
As a further optional scheme of the server hosting information processing system, the first encryption module, the first decryption module, the second encryption module, and the second decryption module all use an AES encryption and decryption algorithm to perform encryption operation or decryption operation.
The invention has the beneficial effects that: the encrypted hosting information is assigned in an assignment mode, so that the key hosting information and the non-key hosting information can be effectively distinguished, the key hosting information is identified through the server, the key hosting information is encrypted, the non-key hosting information is not encrypted, the operation load of the server can be effectively reduced, and the operation efficiency of the server is improved.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
FIG. 1 is a schematic flow chart illustrating a method for processing server hosting information according to the present invention;
fig. 2 is a block diagram of a server hosting information processing system according to the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Referring to fig. 1-2, a server hosting information processing method specifically includes the following steps:
step S1, the sending client encrypts the escrow information by adopting an encryption and decryption algorithm, and assigns the encrypted escrow information in an assignment mode to obtain the assigned escrow information;
step S2, sending the assigned hosting information to a server, and identifying the assigned hosting information by the server to obtain key hosting information and non-key hosting information;
step S3, decrypting the key escrow information and the non-key escrow information respectively through an encryption and decryption algorithm, and storing the key escrow information and the non-key escrow information in a server in a plaintext form;
step S4, re-encrypting the decrypted key escrow information through an encryption and decryption algorithm to obtain re-encrypted key escrow information;
step S5, sending the non-critical escrow information and the re-encrypted critical escrow information to the receiving client.
In this embodiment, the encrypted escrow information is assigned in an assignment manner, so that key escrow information and non-key escrow information can be effectively distinguished, the key escrow information is identified by the server, the key escrow information is encrypted, the non-key escrow information is not encrypted, the calculation load of the server can be effectively reduced, and the calculation efficiency of the server is improved.
It should be noted that, when the server stores, whether the key escrow information or the non-key escrow information is decrypted by the encryption and decryption algorithm, so that the escrow information is stored in the server in a plaintext form, which is convenient for the server to manage the escrow information.
Preferably, in the step S1, the encrypted escrow information is assigned in an assignment manner to obtain the assigned escrow information, and the method specifically includes the following steps:
step S1, two different numerical values are used as identification codes;
and step S2, adding the identification code into the hosting information according to the criticality of the hosting information to obtain the assigned hosting information.
In this embodiment, two different numerical values are used as the identification codes, so that whether the escrow information is critical or not can be simply and clearly distinguished, for example, whether the escrow information is critical or not can be distinguished by indicating the key escrow information as a number "1", indicating the non-critical escrow information as a number "2", and adding "1" or "2" to the escrow information.
Preferably, the encryption and decryption algorithm adopts an AES encryption and decryption algorithm.
A server hosting information processing system comprises a sending client, a server and a receiving client, wherein the sending client and the receiving client are respectively connected with the server, the sending client comprises a first encryption module and an assignment module, the server comprises an identification module, a first decryption module, a storage module and a second encryption module, the receiving client comprises a second decryption module, the first encryption module is used for encrypting hosting information, the assignment module is used for assigning the encrypted hosting information to obtain the assigned hosting information, the identification module is used for identifying the assigned hosting information to obtain key hosting information and non-key hosting information, the first decryption module is used for decrypting the key hosting information and the non-key hosting information, and the storage module is used for storing the decrypted key hosting information and the non-key hosting information in a plaintext form, the second encryption module is used for carrying out re-encryption on the decrypted key escrow information to obtain re-encrypted key escrow information, and the second decryption module is used for decrypting the re-encrypted key escrow information.
In this embodiment, the encrypted escrow information is assigned in an assignment manner, so that key escrow information and non-key escrow information can be effectively distinguished, the key escrow information is identified by the server, the key escrow information is encrypted, the non-key escrow information is not encrypted, the calculation load of the server can be effectively reduced, and the calculation efficiency of the server is improved.
It should be noted that, when the server stores, whether the key escrow information or the non-key escrow information is decrypted by the encryption and decryption algorithm, so that the escrow information is stored in the server in a plaintext form, which is convenient for the server to manage the escrow information.
Preferably, the assignment module includes an identification code input module and an identification code merging module, the identification code input module is used for inputting an identification code, and the identification code merging module is used for adding the identification code into the hosting information according to the criticality of the hosting information to obtain the hosted information after assignment.
In this embodiment, two different numerical values are used as the identification codes, so that whether the escrow information is critical or not can be simply and clearly distinguished, for example, whether the escrow information is critical or not can be distinguished by indicating the key escrow information as a number "1", indicating the non-critical escrow information as a number "2", and adding "1" or "2" to the escrow information.
Preferably, the first encryption module, the first decryption module, the second encryption module and the second decryption module all use an AES encryption and decryption algorithm to perform encryption operation or decryption operation.
The above description is only for the purpose of illustrating the preferred embodiments of the present invention and is not to be construed as limiting the invention, and any modifications, equivalents, improvements and the like that fall within the spirit and principle of the present invention are intended to be included therein.
Claims (6)
1. A server hosting information processing method is characterized by comprising the following steps:
step S1, the sending client encrypts the escrow information by adopting an encryption and decryption algorithm, and assigns the encrypted escrow information in an assignment mode to obtain the assigned escrow information;
step S2, sending the assigned hosting information to a server, and identifying the assigned hosting information by the server to obtain key hosting information and non-key hosting information;
step S3, decrypting the key escrow information and the non-key escrow information respectively through an encryption and decryption algorithm, and storing the key escrow information and the non-key escrow information in a server in a plaintext form;
step S4, re-encrypting the decrypted key escrow information through an encryption and decryption algorithm to obtain re-encrypted key escrow information;
step S5, sending the non-critical escrow information and the re-encrypted critical escrow information to the receiving client.
2. The method for processing the server hosting information according to claim 1, wherein in the step S1, the encrypted hosting information is assigned in an assignment manner to obtain the assigned hosting information, and specifically the method includes the following steps:
step S1, two different numerical values are used as identification codes;
and step S2, adding the identification code into the hosting information according to the criticality of the hosting information to obtain the assigned hosting information.
3. The method for processing the server hosting information according to claim 2, wherein the encryption and decryption algorithm adopts an AES encryption and decryption algorithm.
4. The server hosting information processing system is characterized in that the system comprises a sending client, a server and a receiving client, wherein the sending client and the receiving client are respectively connected with the server, the sending client comprises a first encryption module and an assignment module, the server comprises an identification module, a first decryption module, a storage module and a second encryption module, the receiving client comprises a second decryption module, the first encryption module is used for encrypting hosting information, the assignment module is used for assigning the encrypted hosting information to obtain the assigned hosting information, the identification module is used for identifying the assigned hosting information to obtain key hosting information and non-key hosting information, the first decryption module is used for decrypting the key hosting information and the non-key hosting information, and the storage module is used for decrypting the decrypted key hosting information and the non-key hosting information in a plaintext form And storing, wherein the second encryption module is used for re-encrypting the decrypted key escrow information to obtain re-encrypted key escrow information, and the second decryption module is used for decrypting the re-encrypted key escrow information.
5. The server hosting information processing system according to claim 4, wherein the assignment module includes an identification code input module and an identification code merging module, the identification code input module is configured to input an identification code, and the identification code merging module is configured to add the identification code to the hosting information according to criticality of the hosting information to obtain the assigned hosting information.
6. The server hosting information processing system of claim 5, wherein the first encryption module, the first decryption module, the second encryption module, and the second decryption module all employ an AES encryption/decryption algorithm for encryption or decryption.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110692968.5A CN113449337A (en) | 2021-06-22 | 2021-06-22 | Server hosting information processing method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110692968.5A CN113449337A (en) | 2021-06-22 | 2021-06-22 | Server hosting information processing method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113449337A true CN113449337A (en) | 2021-09-28 |
Family
ID=77812144
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110692968.5A Pending CN113449337A (en) | 2021-06-22 | 2021-06-22 | Server hosting information processing method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113449337A (en) |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105635096A (en) * | 2015-06-26 | 2016-06-01 | 宇龙计算机通信科技(深圳)有限公司 | Data module access method, system and terminal |
| CN105743888A (en) * | 2016-01-22 | 2016-07-06 | 河南理工大学 | Agent re-encryption scheme based on keyword research |
| CN106302453A (en) * | 2016-08-15 | 2017-01-04 | 北京奇虎科技有限公司 | The processing method of data, Apparatus and system |
| CN109547473A (en) * | 2018-12-25 | 2019-03-29 | 孝感天创信息科技有限公司 | Save the data ciphering method of the calculation resources of computer |
| CN110035061A (en) * | 2019-03-07 | 2019-07-19 | 北京华安普特网络科技有限公司 | Trust server information processing method and system |
| CN110138513A (en) * | 2019-03-26 | 2019-08-16 | 视联动力信息技术股份有限公司 | A kind of data transmission method and view networked system |
| CN111314385A (en) * | 2020-03-23 | 2020-06-19 | 郑州悉知信息科技股份有限公司 | Data access method and device |
| CN111428084A (en) * | 2020-04-15 | 2020-07-17 | 海信集团有限公司 | Information processing method, housekeeper server and cloud server |
-
2021
- 2021-06-22 CN CN202110692968.5A patent/CN113449337A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105635096A (en) * | 2015-06-26 | 2016-06-01 | 宇龙计算机通信科技(深圳)有限公司 | Data module access method, system and terminal |
| CN105743888A (en) * | 2016-01-22 | 2016-07-06 | 河南理工大学 | Agent re-encryption scheme based on keyword research |
| CN106302453A (en) * | 2016-08-15 | 2017-01-04 | 北京奇虎科技有限公司 | The processing method of data, Apparatus and system |
| CN109547473A (en) * | 2018-12-25 | 2019-03-29 | 孝感天创信息科技有限公司 | Save the data ciphering method of the calculation resources of computer |
| CN110035061A (en) * | 2019-03-07 | 2019-07-19 | 北京华安普特网络科技有限公司 | Trust server information processing method and system |
| CN110138513A (en) * | 2019-03-26 | 2019-08-16 | 视联动力信息技术股份有限公司 | A kind of data transmission method and view networked system |
| CN111314385A (en) * | 2020-03-23 | 2020-06-19 | 郑州悉知信息科技股份有限公司 | Data access method and device |
| CN111428084A (en) * | 2020-04-15 | 2020-07-17 | 海信集团有限公司 | Information processing method, housekeeper server and cloud server |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110768787B (en) | Data encryption and decryption method and device | |
| US7454021B2 (en) | Off-loading data re-encryption in encrypted data management systems | |
| US9537918B2 (en) | File sharing with client side encryption | |
| US20140281520A1 (en) | Secure cloud data sharing | |
| CN110100422B (en) | Data writing method and device based on block chain intelligent contract and storage medium | |
| CN106888183A (en) | Data encryption, decryption, the method and apparatus and system of key request treatment | |
| US10116442B2 (en) | Data storage apparatus, data updating system, data processing method, and computer readable medium | |
| CN105227566A (en) | Cipher key processing method, key handling device and key handling system | |
| US10063655B2 (en) | Information processing method, trusted server, and cloud server | |
| CN111131282B (en) | Request encryption method and device, electronic equipment and storage medium | |
| US11075753B2 (en) | System and method for cryptographic key fragments management | |
| CN110113162A (en) | A kind of sensitive information processing system, method and its equipment | |
| TW201630378A (en) | Key splitting | |
| CN110635908B (en) | Management method for supporting billions of keys for electronic contract | |
| CN103973698A (en) | User access right revoking method in cloud storage environment | |
| CN109711178B (en) | Key value pair storage method, device, equipment and storage medium | |
| US7031469B2 (en) | Optimized enveloping via key reuse | |
| Boomija et al. | Secure data sharing through additive similarity based ElGamal like encryption | |
| KR101812311B1 (en) | User terminal and data sharing method of user terminal based on attributed re-encryption | |
| CN114095152A (en) | Method, system, medium and apparatus for updating key and encrypting and decrypting data | |
| JP6919484B2 (en) | Cryptographic communication method, cryptographic communication system, key issuing device, program | |
| CN113824713B (en) | Key generation method, system and storage medium | |
| CN115567263A (en) | Data transmission management method, data processing method and device | |
| CN113449337A (en) | Server hosting information processing method and system | |
| CN112913184B (en) | Computing key rotation periods for block cipher based encryption scheme systems and methods |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210928 |
|
| RJ01 | Rejection of invention patent application after publication |