CN114466355A - 云服务数据取证方法及装置 - Google Patents
云服务数据取证方法及装置 Download PDFInfo
- Publication number
- CN114466355A CN114466355A CN202111574829.9A CN202111574829A CN114466355A CN 114466355 A CN114466355 A CN 114466355A CN 202111574829 A CN202111574829 A CN 202111574829A CN 114466355 A CN114466355 A CN 114466355A
- Authority
- CN
- China
- Prior art keywords
- cloud service
- token
- sub
- root
- cloud
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 70
- 238000004590 computer program Methods 0.000 claims description 17
- 238000010586 diagram Methods 0.000 description 9
- 238000000605 extraction Methods 0.000 description 8
- 238000013075 data extraction Methods 0.000 description 3
- 230000000694 effects Effects 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 239000000284 extract Substances 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000001737 promoting effect Effects 0.000 description 1
- 239000000126 substance Substances 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/068—Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0807—Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/321—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
- H04L9/3213—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority using tickets or tokens, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/30—Security of mobile devices; Security of mobile applications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Telephonic Communication Services (AREA)
Abstract
Description
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202111574829.9A CN114466355B (zh) | 2021-12-21 | 云服务数据取证方法及装置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202111574829.9A CN114466355B (zh) | 2021-12-21 | 云服务数据取证方法及装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN114466355A true CN114466355A (zh) | 2022-05-10 |
CN114466355B CN114466355B (zh) | 2024-06-04 |
Family
ID=
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20160219033A1 (en) * | 2015-01-28 | 2016-07-28 | International Business Machines Corporation | Providing data security with a token device |
US20160315930A1 (en) * | 2015-04-24 | 2016-10-27 | Somansa Co., Ltd. | Cloud data discovery method and system for private information protection and data loss prevention in enterprise cloud service environment |
US20170118196A1 (en) * | 2015-10-23 | 2017-04-27 | Oracle International Corporation | Enforcing server authentication based on a hardware token |
CN108243188A (zh) * | 2017-12-29 | 2018-07-03 | 中链科技有限公司 | 一种接口访问、接口调用和接口验证处理方法及装置 |
CN108804906A (zh) * | 2011-12-29 | 2018-11-13 | 贝宝公司 | 一种用于应用登陆的系统和方法 |
CN112153061A (zh) * | 2020-09-27 | 2020-12-29 | 苏州浪潮智能科技有限公司 | 一种数据访问方法、装置、设备及计算机可读存储介质 |
CN112769801A (zh) * | 2020-12-31 | 2021-05-07 | 深圳软牛科技有限公司 | 从云服务器提取备份的方法、装置、设备及存储介质 |
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108804906A (zh) * | 2011-12-29 | 2018-11-13 | 贝宝公司 | 一种用于应用登陆的系统和方法 |
US20160219033A1 (en) * | 2015-01-28 | 2016-07-28 | International Business Machines Corporation | Providing data security with a token device |
US20160315930A1 (en) * | 2015-04-24 | 2016-10-27 | Somansa Co., Ltd. | Cloud data discovery method and system for private information protection and data loss prevention in enterprise cloud service environment |
US20170118196A1 (en) * | 2015-10-23 | 2017-04-27 | Oracle International Corporation | Enforcing server authentication based on a hardware token |
CN108243188A (zh) * | 2017-12-29 | 2018-07-03 | 中链科技有限公司 | 一种接口访问、接口调用和接口验证处理方法及装置 |
CN112153061A (zh) * | 2020-09-27 | 2020-12-29 | 苏州浪潮智能科技有限公司 | 一种数据访问方法、装置、设备及计算机可读存储介质 |
CN112769801A (zh) * | 2020-12-31 | 2021-05-07 | 深圳软牛科技有限公司 | 从云服务器提取备份的方法、装置、设备及存储介质 |
Non-Patent Citations (5)
Title |
---|
DSR/ESI-0019510: "SPECIAL REPORT Electronic Signatures and Infrastructures (ESI); Scoping study and framework for standardization of long-term data preservation services, including preservation of/with digital signatures", ETSI SR 019 510, no. 1, 31 May 2017 (2017-05-31) * |
DTS/CYBER-0020: "TECHNICAL SPECIFICATION CYBER; Application of Attribute Based Encryption (ABE) for PII and personal data protection on IoT devices, WLAN, cloud and mobile services - High level requirements", ETSI TS 103 458, no. 1, 30 June 2018 (2018-06-30) * |
张婧;陈克非;吕林;郭捷;: "云存储中的用户数据安全", 计算机科学与探索, no. 12 * |
李维奉;羌卫中;李伟明;邹德清;: "云环境隐私侵犯取证研究", 网络与信息安全学报, no. 01 * |
皮浩;: "万物互联时代的电子数据取证", 中国信息安全, no. 05 * |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
Do et al. | Is the data on your wearable device secure? An Android Wear smartwatch case study | |
CN109743315B (zh) | 针对网站的行为识别方法、装置、设备及可读存储介质 | |
EP3029593B1 (en) | System and method of limiting the operation of trusted applications in the presence of suspicious programs | |
US8769305B2 (en) | Secure execution of unsecured apps on a device | |
US20170346843A1 (en) | Behavior processing method and device based on application program | |
US9405520B2 (en) | Method for the dynamic creation of an execution environment for an application to secure the application, associated computer program product and computing apparatus | |
CN111143869B (zh) | 应用程序包处理方法、装置、电子设备及存储介质 | |
WO2015096695A1 (zh) | 一种应用程序的安装控制方法、系统及装置 | |
US20150012748A1 (en) | Method And System For Protecting Data | |
Zdziarski | Hacking and securing iOS applications: stealing data, hijacking software, and how to prevent it | |
CN103109510A (zh) | 一种资源安全访问方法及装置 | |
Chell et al. | The mobile application hacker's handbook | |
US9245118B2 (en) | Methods for identifying key logging activities with a portable device and devices thereof | |
US9059990B2 (en) | System and methods for ensuring confidentiality of information used during authentication and authorization operations | |
EP2570960A2 (en) | Method of controlling information processing system, program for controlling apparatus | |
CN110968872A (zh) | 文件漏洞的检测处理方法、装置、电子设备及存储介质 | |
CN110990798B (zh) | 应用程序权限配置方法、装置、电子设备及存储介质 | |
CN111090616B (zh) | 一种文件管理方法、对应装置、设备及存储介质 | |
CN111030816A (zh) | 一种取证设备接入平台的认证方法、装置及存储介质 | |
CN111212418A (zh) | 移动端应用安全下载装置和方法 | |
CN114466355B (zh) | 云服务数据取证方法及装置 | |
CN114466355A (zh) | 云服务数据取证方法及装置 | |
Aron et al. | Overview of security on mobile devices | |
CN114662090A (zh) | 文件处理方法、装置、存储介质及系统 | |
KR20210083780A (ko) | Dex 파일 분할 및 난독화를 통한 안드로이드 앱 보안성 향상 방법 및 시스템 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information | ||
CB02 | Change of applicant information |
Address after: 201100 floor 3, building 3, No. 2555, Hechuan Road, Minhang District, Shanghai Applicant after: Qi'an Pangu (Shanghai) Information Technology Co.,Ltd. Applicant after: Qianxin Technology Group Co.,Ltd. Applicant after: Qianxin Wangshen information technology (Beijing) Co.,Ltd. Address before: 201100 floor 3, building 3, No. 2555, Hechuan Road, Minhang District, Shanghai Applicant before: Qi'an Pangu (Shanghai) Information Technology Co.,Ltd. Applicant before: Qianxin Technology Group Co.,Ltd. Applicant before: LEGENDSEC INFORMATION TECHNOLOGY (BEIJING) Inc. |
|
GR01 | Patent grant |