CN117235796A - Electronic commerce data processing method - Google Patents
Electronic commerce data processing method Download PDFInfo
- Publication number
- CN117235796A CN117235796A CN202311261982.5A CN202311261982A CN117235796A CN 117235796 A CN117235796 A CN 117235796A CN 202311261982 A CN202311261982 A CN 202311261982A CN 117235796 A CN117235796 A CN 117235796A
- Authority
- CN
- China
- Prior art keywords
- data
- encryption
- training set
- samples
- threshold
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000003672 processing method Methods 0.000 title abstract description 6
- 238000004422 calculation algorithm Methods 0.000 claims abstract description 96
- 239000013598 vector Substances 0.000 claims abstract description 27
- 238000010801 machine learning Methods 0.000 claims abstract description 22
- 238000013507 mapping Methods 0.000 claims abstract description 9
- 238000012549 training Methods 0.000 claims description 142
- 238000000034 method Methods 0.000 claims description 99
- 238000005070 sampling Methods 0.000 claims description 53
- 150000003839 salts Chemical class 0.000 claims description 46
- 238000012545 processing Methods 0.000 claims description 32
- 238000005516 engineering process Methods 0.000 claims description 22
- 230000008569 process Effects 0.000 claims description 21
- 230000035945 sensitivity Effects 0.000 claims description 21
- 238000009826 distribution Methods 0.000 claims description 20
- 238000003066 decision tree Methods 0.000 claims description 16
- 239000012634 fragment Substances 0.000 claims description 16
- 230000007246 mechanism Effects 0.000 claims description 16
- 230000003044 adaptive effect Effects 0.000 claims description 15
- 238000007726 management method Methods 0.000 claims description 15
- 238000012795 verification Methods 0.000 claims description 15
- 230000006870 function Effects 0.000 claims description 13
- 238000012550 audit Methods 0.000 claims description 11
- 238000010200 validation analysis Methods 0.000 claims description 10
- 238000013140 knowledge distillation Methods 0.000 claims description 9
- 238000002372 labelling Methods 0.000 claims description 9
- 238000013475 authorization Methods 0.000 claims description 7
- 230000004044 response Effects 0.000 claims description 5
- 230000002194 synthesizing effect Effects 0.000 claims description 5
- 230000003362 replicative effect Effects 0.000 claims description 4
- 238000006467 substitution reaction Methods 0.000 claims description 3
- 230000000875 corresponding effect Effects 0.000 description 21
- 230000002829 reductive effect Effects 0.000 description 9
- 238000009795 derivation Methods 0.000 description 6
- 238000004364 calculation method Methods 0.000 description 5
- 238000003058 natural language processing Methods 0.000 description 5
- 230000000694 effects Effects 0.000 description 4
- 230000001965 increasing effect Effects 0.000 description 4
- 230000010354 integration Effects 0.000 description 4
- 230000006399 behavior Effects 0.000 description 3
- 230000001276 controlling effect Effects 0.000 description 3
- 230000006872 improvement Effects 0.000 description 3
- 238000005457 optimization Methods 0.000 description 3
- 238000004458 analytical method Methods 0.000 description 2
- 238000007635 classification algorithm Methods 0.000 description 2
- 238000011217 control strategy Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 238000012544 monitoring process Methods 0.000 description 2
- 238000012935 Averaging Methods 0.000 description 1
- 101100295776 Drosophila melanogaster onecut gene Proteins 0.000 description 1
- 206010033307 Overweight Diseases 0.000 description 1
- 230000009471 action Effects 0.000 description 1
- 230000004931 aggregating effect Effects 0.000 description 1
- 230000002776 aggregation Effects 0.000 description 1
- 238000004220 aggregation Methods 0.000 description 1
- 230000033228 biological regulation Effects 0.000 description 1
- 238000004140 cleaning Methods 0.000 description 1
- 230000001010 compromised effect Effects 0.000 description 1
- 238000007405 data analysis Methods 0.000 description 1
- 238000013480 data collection Methods 0.000 description 1
- 230000007423 decrease Effects 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 239000006185 dispersion Substances 0.000 description 1
- 230000002708 enhancing effect Effects 0.000 description 1
- 238000011156 evaluation Methods 0.000 description 1
- 238000002474 experimental method Methods 0.000 description 1
- 238000001914 filtration Methods 0.000 description 1
- 238000011478 gradient descent method Methods 0.000 description 1
- 230000000670 limiting effect Effects 0.000 description 1
- 239000011159 matrix material Substances 0.000 description 1
- 238000007670 refining Methods 0.000 description 1
- 230000000717 retained effect Effects 0.000 description 1
- 230000002441 reversible effect Effects 0.000 description 1
- 238000012216 screening Methods 0.000 description 1
- 238000007619 statistical method Methods 0.000 description 1
- 238000003860 storage Methods 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
- 238000005303 weighing Methods 0.000 description 1
Classifications
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D10/00—Energy efficient computing, e.g. low power processors, power management or thermal management
Abstract
The application discloses a processing method of electronic commerce data, which relates to the technical field of data security and comprises the following steps: acquiring electronic commerce data, extracting feature information by utilizing feature engineering, and constructing feature vectors; using a machine learning algorithm to train a prediction model based on the feature vector to predict first data to be encrypted; calculating semantic relativity among the predicted encrypted data as an encryption sequence; encrypting the first data by utilizing a differential encryption algorithm according to the characteristic information and the encryption sequence of the data to generate second data; establishing a mapping relation between first data and second data in a database, and constructing an index; an access control policy based on data attributes and user roles is employed. Aiming at the problem of low safety of electronic commerce data in the prior art, the application improves the safety of the electronic commerce data through differential encryption, index establishment, access control and the like.
Description
Technical Field
The application relates to the technical field of data security, in particular to a processing method of electronic commerce data.
Background
With the vigorous development of electronic commerce, efficient utilization and security protection of massive electronic commerce data become an important subject. Electronic commerce data typically contains user information, transaction information, merchandise information, etc., while some sensitive data may be present.
The traditional encryption method generally adopts a 'one-cut' mode to encrypt all data, and does not distinguish the sensitivity degree of the data, so that the utilization efficiency of the data is reduced. With the advent of technologies such as differential privacy, protection of user privacy can be achieved by adding elaborate noise to the query results. But applying differential privacy directly to database queries can compromise the usability of the data by being too noisy.
In the related art, for example, in chinese patent document CN111310207B, an electronic commerce data processing method, apparatus, electronic commerce system and server are provided, by recording an order encryption component corresponding to an electronic commerce order, acquiring service coverage information of the electronic commerce order in a generating process, and establishing an order encryption node sequence corresponding to the service coverage information, and associating each order item information included in the electronic commerce order into the order encryption node sequence according to a preset association sequence, so that based on the order encryption component corresponding to the electronic commerce order, at least part of target order encryption nodes are determined in the order encryption node sequence, and data encryption is performed on corresponding order item information included in the electronic commerce order according to the target order encryption nodes; but this scheme exists at least: the preset order encryption component and encryption node are relied on, and the difference and dynamic adjustment of order data are not considered, so that the safety of electronic commerce data is reduced.
Disclosure of Invention
1. Technical problem to be solved
Aiming at the problem of low electronic commerce data security in the prior art, the invention provides a processing method of electronic commerce data, which improves the data security through differential encryption, index establishment, access control and the like.
2. Technical proposal
The aim of the invention is achieved by the following technical scheme.
The embodiment of the specification provides a method for processing electronic commerce data, which comprises the following steps: acquiring electronic commerce data, extracting feature information by utilizing feature engineering, and constructing feature vectors; using a machine learning algorithm to train a prediction model based on the feature vector to predict first data to be encrypted; calculating semantic relativity among the predicted encrypted data as an encryption sequence; encrypting the first data by utilizing a differential encryption algorithm according to the characteristic information and the encryption sequence of the data to generate second data; establishing a mapping relation between first data and second data in a database, and constructing an index; an access control policy based on data attributes and user roles is employed.
Further, using a machine learning algorithm, training a predictive model based on the feature vector, the step of predicting the first data to be encrypted comprising: labeling the constructed feature vectors to generate a first training set and a verification set; detecting whether the sample quantity distribution of each category in the first training set is balanced or not; if the first training set has unbalanced category, the first training set is processed by utilizing an oversampling or undersampling technology, and a second training set is generated; utilizing the second training set and the verification set to train the gradient lifting decision tree model to obtain an encryption prediction model; and predicting the data needing to be encrypted in the electronic commerce data by using the encryption prediction model to obtain first data.
Further, if there is a class imbalance in the first training set, the step of processing the first training set using an over-sampling or under-sampling technique to generate a second training set includes: acquiring the total sample amount N of the first training set; dynamically setting a first threshold ratio P of the number of samples according to the total number of samples 1 And (d)Two threshold ratio P 2 ,P 1 Less than P 2 The method comprises the steps of carrying out a first treatment on the surface of the According to the total sample N and the first threshold ratio P 1 Calculate a first threshold N 1 The method comprises the steps of carrying out a first treatment on the surface of the According to the total sample N and the second threshold ratio P 2 Calculate a second threshold N 2 The method comprises the steps of carrying out a first treatment on the surface of the Judging the number N of samples of each category i Whether or not it is greater than a first threshold value N 1 Or less than a second threshold N 2 The method comprises the steps of carrying out a first treatment on the surface of the When the number of samples N i Greater than a first threshold N 1 When the sampling is carried out, undersampling treatment is carried out on the corresponding samples; when the number of samples N i Less than a second threshold N 2 When the sampling device is used, the corresponding sample is subjected to oversampling; repeating threshold judgment and sampling processing on the training set subjected to undersampling processing or oversampling processing to obtain a second training set; dynamically setting a threshold ratio to be set by an adaptive algorithm based on a machine learning algorithm; the undersampling process is one of downsampling, random sampling or weighted sampling; the over-sampling process is one of up-sampling, synthesizing, or replicating the sample.
Further, training the gradient lifting decision tree model by using the second training set, and obtaining the encryption prediction model includes: according to the Bagging algorithm, a plurality of bootstrap samples are obtained from the second training set through sampling with substitution, and the number of the samples is A of the total number of the samples 1 To A 2 The method comprises the steps of carrying out a first treatment on the surface of the Training a GBDT regression model for each bootstrap sample, wherein the maximum iteration number of the model is B 1 To B 2 A wheel; during GBDT regression model training, adding Laplace noise at leaf nodes, wherein the value of the Laplace noise is a dynamically preset privacy budget epsilon; evaluating the trained GBDT model using a validation set, removing the model with RMSE exceeding a threshold value, the threshold value being C of the RMSE values evaluated on the validation set 1 To C 2 The method comprises the steps of carrying out a first treatment on the surface of the For the reserved GBDT model, the knowledge distillation technology is used for reducing the node number and the node depth of the model, and the target depth and the node number are respectively D of the node number and the node depth of the GBDT model before knowledge distillation is not carried out 1 To D 2 The method comprises the steps of carrying out a first treatment on the surface of the By iteratively integrating a plurality of GBDT models, the iteration number is E 1 To E to 2 And secondly, the encryption prediction model is used.
Further, according to the Bagging algorithm, from the secondThe step of obtaining a plurality of bootstrap samples in the training set through the put-back sampling comprises the following steps: when the number of samples N i Less than or equal to a preset first threshold N 1 Training a single GBDT model by using the second training set; when the number of samples N i Greater than a first threshold N 1 And is smaller than a preset second threshold value N 2 At the time, the number of the extracted samples from the second training set is randomly replaced by the sample size A of the second training set 1 To A 2 Training a plurality of GBDT models by using the extracted boottrap samples; when the number of samples N i Greater than or equal to the second threshold N 2 And randomly replacing bootstrap samples with the same sample number as the second training set from the second training set, and training a plurality of GBDT models by using the extracted bootstrap samples.
Further, the step of dynamically presetting the privacy budget epsilon comprises the following steps: setting an initialization privacy budget ε 0 Is F 1 To F 2 The method comprises the steps of carrying out a first treatment on the surface of the Circularly receiving ith round of inquiry request Q i Acquiring an ith round of query request Q i Corresponding query type x i And data size y i The method comprises the steps of carrying out a first treatment on the surface of the According to the ith round of inquiry request Q i Query type x i And data size y i Calculate the ith round of query Q i Consumed privacy budget ε qi ,ε qi Calculated by the following formula:
ε qi =k 1 *log(x i )*(y i α )
wherein k is 1 Is a privacy consumption coefficient; alpha is a data scale adjustment coefficient;
from an initially preset privacy budget ε 0 Subtracting the accumulated consumed privacy budget to obtain residual privacy budget epsilon t+1 The method comprises the steps of carrying out a first treatment on the surface of the Judging the residual privacy budget epsilon t+1 Whether or not it is below a preset threshold epsilon min The method comprises the steps of carrying out a first treatment on the surface of the When epsilon t+1 Less than or equal to epsilon min When the query type is determined, calculating a preset sensitivity weight corresponding to the query type; according to the sensitivity weight omega i And ith round of query consumption ε qi Calculate the ith round of query request Q i Corresponding Laplace noise parameter b i The method comprises the steps of carrying out a first treatment on the surface of the For the ith round of query request Q i Adding inCalculated noise b i And then, returning a query response.
Further, the Laplace noise parameter b is calculated i The method comprises the following steps: calculating privacy noise distribution center b i0 ,b i0 Calculated by the following formula:
b i0 =ω i *ε qi
wherein omega i For query type x i Sensitivity weights of (2); epsilon qi For query type x i Privacy budgets consumed by the querying of (a);
setting an adaptive variance function f (y i ),f(y i ) Calculated by the following formula:
f(y i )=log(k 2 *(y i +1))
wherein k is 2 A constant that is an adaptive variance function;
build b i0 Is centered, variance is f (y i ) Laplacian or Gaussian distribution F i The method comprises the steps of carrying out a first treatment on the surface of the From distribution F using a distribution-based sampling algorithm i The privacy noise value b is obtained by sampling i 。
Further, the step of differentially encrypting includes: classifying the electronic commerce data, and extracting key business data, authority control data and text data to be searched; carrying out layered authority control on key business data, wherein the transaction amount of payment information data is larger than a preset threshold value, by adopting a chained encryption mechanism based on homomorphic encryption; controlling access rights by adopting an attribute-based encryption technology for rights control data comprising preset user rights level and client type; the text data to be searched comprises preset customer feedback and order remark text, and the search is carried out in an encrypted domain by adopting an encryption technology supporting the search.
Further, the step of employing an access control policy based on the data attributes and the user roles includes: generating a random salt value for each first data to be indexed using the XTS mode of the AES-256 algorithm; deriving an encryption key and a decryption key of the index database by using an HKDF algorithm based on the master key; encrypting the first data and the random salt value by using an encryption key to generate second data; creating an index table in an index database, the index table containing a data ID, an encrypted salt value, and second data; when the index is read, searching the matched encrypted salt value and the second data through the data ID, and decrypting by using a decryption key to obtain the first data; establishing an RBAC-based access control mechanism in an index database, wherein the access control mechanism comprises identity verification, authorization management and access audit logs; and carrying out security control on the index database by adopting authority classification and access audit.
Further, the step of encrypting the first data and the random salt value using the encryption key, the step of generating the second data includes: generating a length G using TRNG 1 To G 2 Is a random master key of (a); for the first data, generating a length G by using a secure random number generation algorithm 1 To G 2 Random salt values of bits; deriving the length G from the master key using the HMAC-SHA256 algorithm 3 To G 4 Generating an encryption key corresponding to the first data; AES-256 encrypting the first data by using the encryption key, outputting the encrypted first data S 1 The method comprises the steps of carrying out a first treatment on the surface of the AES-256 encryption is carried out on the random salt value of the first data, and the encrypted salt value S is output 2 The method comprises the steps of carrying out a first treatment on the surface of the Hashing S1 and S2 respectively by SHA-256 algorithm to obtain hash value U 1 And U 2 The method comprises the steps of carrying out a first treatment on the surface of the U is determined by using a Shamir secret sharing algorithm 1 Splitting into K 1 Fragments, U 2 Splitting into K 2 Fragments; adopting a multi-path splicing mode, and according to a preset rule, obtaining a U-shaped signal from the U 1 And U 2 Selecting M fragments at different positions for exclusive-or (XOR) splicing to generate second data.
3. Advantageous effects
Compared with the prior art, the invention has the advantages that:
(1) The data that needs to be encrypted is predicted by a machine learning model, which may include personal identification information of the customer, credit card data, and the like. The differentiated encryption algorithm is used, so that the privacy of data is effectively protected. The differential encryption is a method for considering the characteristics of data in the data encryption process, so that the same sensitive data can generate different results after encryption, and the security of the data is improved;
(2) An index database of the encrypted data is established, and the security of the index is ensured by adopting an advanced encryption standard (AES-256) and a key derivation algorithm (HKDF). AES-256 is a highly secure symmetric encryption algorithm that provides powerful data protection. A key derivation algorithm (HKDF) is used to generate more keys from the keys, ensuring the security and randomness of the keys. This means that even if index data are compromised, an attacker cannot easily decrypt them, thereby improving the security of the data;
(3) An access control strategy based on data attributes and user roles and dynamic privacy budget management are adopted, so that only authorized users can access data and privacy budgets can be dynamically managed; ensuring that data is only accessed by authorized users if needed, dynamic privacy budget management is an intelligent method for ensuring that the use of the data does not exceed predetermined privacy limits, meaning that even if the data has been accessed by many users, appropriate restrictions can be made according to privacy policies and regulations to protect the privacy of the users and improve the security of the data.
Drawings
The present specification will be further described by way of exemplary embodiments, which will be described in detail by way of the accompanying drawings. The embodiments are not limiting, in which like numerals represent like structures, wherein:
FIG. 1 is an exemplary flow chart of a method of processing electronic commerce data according to some embodiments of the present description;
FIG. 2 is an exemplary flow chart of predicting first data that needs to be encrypted according to some embodiments of the present description;
FIG. 3 is an exemplary flow chart for generating a second training set according to some embodiments of the present description;
FIG. 4 is an exemplary flow diagram of obtaining an encryption predictive model, shown in accordance with some embodiments of the present disclosure;
FIG. 5 is an exemplary flow diagram for acquiring a dynamic privacy budget in accordance with some embodiments of the present description;
fig. 6 is an exemplary flow chart for setting access control policies according to some embodiments of the specification.
Detailed Description
In order to more clearly illustrate the technical solutions of the embodiments of the present specification, the drawings that are required to be used in the description of the embodiments will be briefly described below. It is apparent that the drawings in the following description are only some examples or embodiments of the present specification, and it is possible for those of ordinary skill in the art to apply the present specification to other similar situations according to the drawings without inventive effort. Unless otherwise apparent from the context of the language or otherwise specified, like reference numerals in the figures refer to like structures or operations.
A flowchart is used in this specification to describe the operations performed by the system according to embodiments of the present specification. It should be appreciated that the preceding or following operations are not necessarily performed in order precisely. Rather, the steps may be processed in reverse order or simultaneously. Also, other operations may be added to or removed from these processes.
The method and system provided in the embodiments of the present specification are described in detail below with reference to the accompanying drawings.
FIG. 1 is an exemplary flow chart of a method of processing electronic commerce data according to some embodiments of the present description; as shown in fig. 1, a method for processing electronic commerce data includes: s110, acquiring electronic commerce data, extracting feature information by utilizing feature engineering, and constructing feature vectors; feature engineering is used to extract key feature information from raw data, which may include user behavior frequency, purchase history, merchandise attributes, and the like. S120, using a machine learning algorithm, training a prediction model based on the feature vector, and predicting first data to be encrypted; the predictive model is trained using a machine learning algorithm using the feature vectors. The task of the predictive model is to predict which data needs to be encrypted based on the feature vector. This may be decided based on factors such as sensitivity, privacy, etc. The output of the model is a prediction indicating which data needs to be encrypted. S130, calculating semantic relativity among data as encryption sequence for the predicted encrypted data; the semantic relevance of the data can help the system determine which data should be put together for encryption to maintain the relevance of the data. S140, encrypting the first data by utilizing a differential encryption algorithm according to the characteristic information and the encryption sequence of the data to generate second data; the system determines the order and manner of encryption based on the output of the predictive model and the semantic relevance of the data. And encrypting the first data to be encrypted by using a differential encryption algorithm to generate second data. The differential encryption algorithm can select different encryption modes according to the characteristics and the sensitivity of the data. S150, establishing a mapping relation between the first data and the second data in a database, and constructing an index; the system creates a mapping relationship in the database, associating the first data with the generated second data. This index can be used to quickly retrieve and access both the original data and the encrypted data, ensuring the integrity and consistency of the data. S160 employs an access control policy based on data attributes and user roles, and employs an access control policy based on data attributes (e.g., sensitivity level) and user roles (e.g., user permissions) to ensure that only authorized users can access data. The access control policy may control access rights in a fine-grained manner according to characteristics of different data and roles of users.
Specifically, obtaining raw data from an electronic commerce platform, including transaction records, user information, order text, and the like; performing data cleaning, denoising and formatting processing on different data types; extracting important characteristic information such as user behavior, transaction amount, time stamp and the like by utilizing a characteristic engineering technology; and constructing a feature vector, converting the feature information into a numerical form, and training a machine learning model. Selecting an appropriate machine learning algorithm, such as a gradient boosting decision tree (Gradient Boosting Decision Trees); constructing a first training set and a verification set, marking training samples, and marking which data need to be encrypted; detecting whether the sample quantity distribution of each category in the first training set is balanced or not; if the category imbalance exists, the first training set is processed by adopting an oversampling (such as SMOTE) or undersampling technology, and a second training set is generated; and training the gradient lifting decision tree model by using the second training set and the verification set to obtain the encryption prediction model. Predicting data to be encrypted to obtain first data; calculating semantic relativity between data, and using Natural Language Processing (NLP) technology or text embedding method; and selecting a differential encryption algorithm according to the characteristic information and the encryption sequence of the data so as to ensure proper protection of different data types. For highly sensitive data such as transaction amount, hierarchical authority control is carried out by adopting homomorphic encryption algorithm; for authority control data (such as user authority level and client type), adopting an attribute-based encryption technology to realize fine access control; text data to be searched is searched within the encrypted domain using encryption techniques that support searching, such as searchable encryption (Searchable Encryption) or homomorphic search techniques. Establishing a mapping relation between first data and second data in a database, and constructing an index table; the index table contains a data ID, an encrypted salt value and second data; generating a random salt value for each first data to be indexed using the XTS mode of the AES-256 algorithm; deriving an encryption key and a decryption key of the index database by using an HKDF algorithm based on the master key; the first data and the random salt value are encrypted using an encryption key to generate second data. Establishing a role-based access control mechanism in an index database, wherein the role-based access control mechanism comprises authentication, authorization management and access audit logs; controlling the access right of the data by adopting a strategy based on the data attribute and the user role; formulating authority grading and access audit strategies to realize fine-granularity authority control; each user or character is assigned a unique access key for decrypting the data.
Example 1: and collecting data such as e-commerce user registration information, browsing records, transaction records and the like, wherein the total number of the data is 1000 ten thousand. Feature vectors containing 10 features of age, occupation, consumption level and the like are constructed through statistical analysis and the like. Based on the feature vector, the GBDT model is adopted to predict that the financial transaction information needs to be encrypted. And setting a dynamic threshold ratio, and processing sample imbalance. And calculating commodity similarity among orders as encryption sequence for the predicted transaction information. Similar goods are sequentially encrypted. For the payment information with the order amount larger than 5000 yuan, a chained encryption method based on homomorphic encryption is adopted; attribute-based encryption is employed for the customer identity information. In the database, the order ID and encrypted order content in the Mapping trade order table. And establishing a role-based access control model. The operator can only query the encrypted order information.
Example 2: unstructured data such as customer feedback text, order notes, etc., generated by a user is collected. And constructing text feature vectors comprising word frequencies, parts of speech, keywords and the like. Based on the feature vector, the GBDT model is adopted to predict that the text containing the user privacy information needs to be encrypted. For predictive text, a text semantic similarity matrix is calculated as the encryption order. For text data, a deterministic encryption algorithm supporting searching is employed. Keyword searches may be performed within the encryption domain. And establishing an index corresponding relation between the feedback text and the encrypted text. The operators and the manager have different document access rights. And (5) adopting an RBAC model to carry out identity authentication and authorization control.
In summary, the data collection of S110 provides an original data source for subsequent feature engineering and model training. And S120, model training, namely, predicting the original data by using the feature vector constructed in the S110, and outputting the data needing to be encrypted. Wherein, the dynamic threshold setting improves the accuracy of the model. S130, calculating the semantic association degree of the data, combining the model output of S120, providing an encryption sequence, and ordering and encrypting according to the data association degree, thereby improving the security. And S140, a differential encryption algorithm suitable for different data types is selected, and the pertinence and the security strength of encryption are further enhanced by matching with the encryption sequence of S130. S150 establishes a mapping relation between the original data and the encrypted data generated by S140, and supports index searching and access control requirements. S160 further builds an access control model based on the attribute and the role, and comprehensively guarantees the data access safety by combining the mapping index of S150. Through the organic connection and the cooperation of the technical scheme, the full-flow safety protection from data acquisition to access control is realized, so that the original electronic commerce data is efficiently and reliably protected, and the safety of the whole scheme is effectively improved.
FIG. 2 is an exemplary flow chart of predicting first data that needs to be encrypted, as shown in FIG. 2, according to some embodiments of the present disclosure, using a machine learning algorithm to train a prediction model based on feature vectors, the step of predicting the first data that needs to be encrypted comprising: s121, labeling the constructed feature vectors to generate a first training set and a verification set; and labeling the constructed feature vectors, wherein the labeling aims to divide the data into a training set and a verification set. The training set is used for training the model, and the verification set is used for evaluating and optimizing the performance of the model. S122, detecting whether the sample number distribution of each category in the first training set is balanced; class imbalance may affect the performance of the model and the accuracy of the predicted results. S123, if the first training set has class imbalance, processing the first training set by utilizing an oversampling or undersampling technology to generate a second training set; oversampling increases the number of minority class samples, while undersampling decreases the number of majority class samples to obtain balanced training data. S124, utilizing the second training set and the verification set training gradient to lift the decision tree model to obtain an encryption prediction model; a gradient boost decision tree (Gradient Boosting Decision Tree) model is trained using the balanced second training set and the validation set. The gradient-lifting decision tree is a powerful machine learning algorithm that can be used for classification tasks and performs well in predicting the first data that needs to be encrypted. S125, predicting the data needing to be encrypted in the electronic commerce data by using the encryption prediction model to obtain first data. The e-commerce data is predicted using the trained encryption prediction model to determine which data needs to be encrypted.
Specifically, a method of predicting first data that needs to be encrypted using a machine learning algorithm. The method comprises the steps of feature vector labeling, sample balance detection, over-sampling/under-sampling processing, machine learning model training, data prediction and the like, and aims to provide an effective prediction basis for data encryption. Suitable features are selected from the e-commerce data, such as user behavior, transaction amounts, time stamps, etc. And labeling the feature vector, namely labeling the data needing to be encrypted as 1, and labeling the data not needing to be encrypted as 0. The number of samples with labels 1 and 0 is counted and checked for unbalance. If imbalance exists, an over-sampling or under-sampling technique is employed as needed to generate a second training set. The training gradient boost decision tree model or other suitable machine learning algorithm is trained using the second training set and the validation set. The model parameters are tuned to improve performance. And predicting the electronic commerce data by using the trained encryption prediction model to obtain first data. The prediction result can be used for the subsequent data encryption operation, so that only the data needing to be encrypted is ensured to be encrypted and protected.
In this embodiment, 100 tens of thousands of user registration information including the user's age, occupation, etc. is collected; constructing a user feature vector containing 10-dimensional features of age, occupation and the like; the feature vector is marked, and registration data containing personal privacy information such as real names, identity card numbers and the like is marked. Generating a user registration training set and a verification set; detecting sample distribution proportion of non-private data and private data in a training set, wherein class distribution is unbalanced due to fewer private data; oversampling is carried out on the privacy data category, and a new training set with balanced sample size is generated; training the GBDT model to predict the privacy of the user registration data by using the new training set and the verification set; predicting all registration data according to the GBDT model, and outputting user privacy registration information to be encrypted; checking the prediction result to ensure that all real privacy data are covered; and obtaining the first data needing encryption protection, and finishing privacy prediction of the user registration data.
FIG. 3 is an exemplary flow chart for generating a second training set according to some embodiments of the present description, as shown in FIG. 3, if there is a class imbalance in the first training set, the first training set is processed using an over-sampling or under-sampling technique, the step of generating the second training set comprising: S123A obtains the total sample amount N of the first training set; S123B dynamically sets a first threshold ratio P1 and a second threshold ratio P2 of the number of samples according to an adaptive strategy of the machine learning algorithm. These ratios are used to determine whether to undersample or oversample the sample. S123C calculates a first threshold N according to the dynamically set threshold ratio 1 And a second threshold value N 2 These thresholds will be used to determine whether to sampleThe method comprises the steps of carrying out a first treatment on the surface of the S123D judging the number N of samples of each category i Whether or not it is greater than a first threshold value N 1 Or less than a second threshold N 2 The method comprises the steps of carrying out a first treatment on the surface of the S123E when the number of samples N i Greater than a first threshold N 1 When the sampling is carried out, undersampling treatment is carried out on the corresponding samples; when the number of samples N i Less than a second threshold N 2 When the sampling device is used, the corresponding sample is subjected to oversampling; S123F, repeating threshold judgment and sampling processing on the training set subjected to undersampling processing or oversampling processing to obtain a second training set; the threshold judgment and sampling process are repeatedly performed until the number of samples of all categories is within a first threshold N 1 And a second threshold value N 2 And thereby generating a balanced second training set. Dynamically setting a threshold ratio to be set by an adaptive algorithm based on a machine learning algorithm; and a self-adaptive strategy based on a machine learning algorithm is adopted, and the sampling threshold proportion is dynamically set so as to adapt to different data distribution conditions. The undersampling process is one of downsampling, random sampling or weighted sampling; the over-sampling process is one of up-sampling, synthesizing, or replicating the sample.
The method comprises the steps of dynamically setting a threshold ratio, and adopting undersampling and oversampling technologies to ensure that the class distribution of a training set is more balanced so as to improve the performance of a machine learning model, thereby enhancing the safety of electronic commerce data. The method comprises the steps of obtaining the total sample amount N of a first training set, and defining two threshold ratios according to the total sample amount N in a dynamic setting mode: first threshold ratio P 1 And a second threshold ratio P 2 。P 1 Less than P 2 . These ratios will be used to determine when to undersample and oversample. Based on the total number of samples N and the first threshold ratio P 1 Calculate a first threshold N 1 The method comprises the steps of carrying out a first treatment on the surface of the Based on the total sample size N and the second threshold ratio P 2 Calculate a second threshold N 2 . Number of samples N for each class i Judging whether it is greater than the first threshold value N 1 Or less than a second threshold N 2 . When the number of samples N i Greater than a first threshold N 1 When the undersampling process is performed, the number of samples is reduced. When the number of samples N i Less than a second threshold N 2 When the over-sampling process is performed to increaseThe number of samples is added. For the training set subjected to undersampling or oversampling, the above threshold judgment and sampling processing steps may be repeated as needed until the condition of balanced sample distribution is satisfied. The method further comprises the step of dynamically setting the threshold ratio, which may be set based on an adaptive algorithm of a machine learning algorithm. This ensures the rationality and adaptability of the threshold ratio. The undersampling process may employ one of downsampling, random sampling, or weighted sampling. The oversampling process may employ one of upsampling, synthesizing, or replicating samples.
Specifically, two threshold ratios are defined in a dynamically set manner: first threshold ratio P 1 And a second threshold ratio P2.P (P) 1 Less than P 2 In the present embodiment, P is initialized 1 And P 2 Is set for the recommended value range of (1): according to experience, P 1 Setting 0.05-0.2; p (P) 2 Setting 0.2-0.5; collecting the total amount N of training data set samples; selecting a plurality of candidate sets, such as { (0.05,0.3), (0.1,0.4), (0.15, 0.5) }; for each candidate group, multiple rounds of experiments were performed: p of the group 1 And P 2 The method is applied to sample processing and model training, and the result is recorded; model evaluation metrics such as AUC, F1 score, etc. for different candidate sets are compared. Selecting the group with the highest score as the final P 1 And P 2 Is a value of (2); an error function can also be established, and P is continuously optimized by a gradient descent method 1 And P 2 Is a value of (2); the P can also be automatically found out by utilizing Bayesian optimization, random search and other parameter adjustment algorithms 1 And P 2 Is the optimum value of (2); when acquiring the new data set, the process is repeated to update P 1 And P 2 Dynamic optimization is realized.
Specifically, the threshold ratio P is initialized 1 And P 2 Wherein 0 is<P 1 <P 2 <1, a step of; calculating the total amount N of training set samples; according to the proportion P 1 And P 2 And the sample size N, calculating a dynamic threshold N 1 And N 2 :N 1 =P 1 *N,=P 2 * N; traversing each class i of the training set, and counting the number N of samples of the class i The method comprises the steps of carrying out a first treatment on the surface of the Judging N i And N 1 And N 2 Is a size relationship of (a): if N i <=N 1 The class i sample size is small and over-sampling is required; if N i >N 1 And N is i <N 2 The sample size of the category i is moderate, and undersampling can be considered; if N i >=N 2 The class i sample size is large and undersampling is required. And selecting different sampling strategies for different categories according to the judging result. Repeating the above process until the sample size distribution is balanced.
In this embodiment, a registered data set including characteristics of the age, occupation, and the like of the user is collected, and the total sample size is 50 ten thousand; counting the sample sizes under different categories, and finding that the sample size containing personal privacy data is only 5 ten thousand, and is unbalanced compared with other categories; setting a dynamic threshold ratio P 1 =0.1,P 2 =0.3, i.e. the threshold dynamically varies depending on the total sample size; calculating that the sample size of the privacy data class is lower than the second threshold N 2 =15 tens of thousands; oversampling the privacy data category, synthesizing a new sample by using an SMOTE algorithm, and increasing the privacy data sample to 15 ten thousand; judging whether the sample size is balanced again, wherein the privacy sample is still higher than the first threshold N 1 =5ten thousand; therefore, undersampling needs to be continued, and samples of other types are reduced to 15 ten thousand by using a downsampling mode; repeatedly judging and sampling until the sample size of each category is close to 15 ten thousand, and generating a second training set with balanced sample sizes; and a Bayesian optimization algorithm is adopted to dynamically optimize the threshold proportion so as to adapt to more scenes.
FIG. 4 is an exemplary flowchart of obtaining an encryption prediction model according to some embodiments of the present disclosure, as shown in FIG. 4, training a gradient boost decision tree model using a second training set, the steps of obtaining the encryption prediction model including: S124A uses a Bagging algorithm to randomly draw a plurality of bootstrap samples from the second training set in a put-back way, and the number of the samples is dynamically set between A1 and A2; S124B, training an independent GBDT regression model for each bootstrap sample, wherein the maximum iteration number of the model is dynamically set between B1 and B2; S124C in the training process of the GBDT regression model, in order to enhance privacy protection, laplacian noise is added to the prediction result at the leaf node, and the intensity of the noise is according to the motion The privacy budget epsilon of the state preset is adjusted; S124D filters out those Root Mean Square Errors (RMSE) on the validation set that exceed the threshold C by evaluating each trained GBDT model using the validation set 1 To C 2 To ensure predictive performance of the model; S124E applies knowledge distillation techniques to the retained GBDT model to reduce the number of nodes and depth of the model to reduce the complexity of the model while maintaining its performance. The target depth and the node number are D 1 To D 2 The dynamic setting is carried out between the two; S124F, integrating a plurality of GBDT models through iteration, wherein the iteration times are E 1 To E to 2 Dynamically set in between to generate a final encryption predictive model. Integrating multiple models helps to improve the robustness and performance of the models.
The sample sampling method based on the Bagging algorithm is used for acquiring a plurality of bootstrap samples and is used for training a gradient lifting decision tree (Gradient Boosting Decision Tree, GBDT) model. The method can adopt different strategies according to different sample numbers so as to ensure the diversity and performance of the model. The Bagging algorithm generates a plurality of bootstrap samples through substitution sampling so as to increase the diversity and robustness of the model, and different Bagging strategies are adopted according to the different sample numbers so as to adapt to the training requirements of different data scales.
When the number of samples N i Less than or equal to a preset first threshold N 1 When the number of samples is small, bagging sampling is not needed, and the second training set is directly used for training a single GBDT model.
Sample number N i Greater than N 1 And is less than N 2 At the time, the number of the extracted samples from the second training set is randomly replaced with A 1 To A 2 Training multiple GBDT models using the extracted boottrap samples: when the number of samples is within the middle range, according to the preset range A 1 To A 2 Randomly retrieving a number of bootstrap samples from the second training set, and then training a plurality of independent GBDT models using the retrieved samples;
sample ofNumber N i N is greater than or equal to 2 And randomly substituting the boottrap samples with the same number of samples as the second training set from the second training set, training a plurality of GBDT models by using the sampled boottrap samples, and randomly substituting the boottrap samples with the same number of samples as the second training set from the second training set in order to maintain diversity when the number of samples is larger, and training a plurality of GBDT models by using the boottrap samples.
The encryption prediction model is created through a Bagging algorithm, a gradient lifting decision tree (GBDT), differential privacy, a knowledge distillation technology and the like to protect sensitive data. And the GBDT model is used for data analysis and prediction, and meanwhile differential privacy protection measures are introduced to ensure the privacy and safety of user data. An appropriate second training set is selected, which is used to train the GBDT model. Sampling a plurality of bootstrap samples from the second training set by adopting a Bagging algorithm in a put-back way, wherein the number of the samples is in a range from A 1 To A 2 And (5) determining. In the present application, A 1 =(0.8~0.9)*N;A 2 =(0.2~0.1)*N。
Respectively training a GBDT regression model for each bootstrap sample, wherein the maximum iteration frequency range of the model is represented by B 1 To B 2 And (5) determining. During the training process of the GBDT regression model, laplacian noise is added at leaf nodes, and the value of the noise is determined by a dynamically preset privacy budget epsilon. In the application, GBDT initial maximum iteration number B is set 1 For 10 times, each training a bootstrap sample, recording an error drop curve, and recording the current iteration number as B when the error drop of continuous 5 times of iteration is smaller than a preset threshold tau 2 Then the GBDT maximum iteration number of this bootstrap sample is in the range of [ B ] 1 ,B 2 ]. Repeating the above process for all bootstrap samples to obtain respective maximum iteration frequency ranges.
Evaluating the trained GBDT model using the validation set, removing the model for which the RMSE exceeds a threshold value, the threshold value ranging from C, based on the RMSE values evaluated on the validation set 1 To C 2 And (5) determining. In the present application, C 1 = (0.8-0.9) ×rmse, set C 1 A smaller value will ensure that some poorly performing models are removed; c (C) 2 = (0.2-0.1) ×rmse, set C 2 A slightly higher value will ensure that most better performing models are preserved.
For the reserved GBDT model, adopting a knowledge distillation technology to reduce the node number and the node depth of the model, wherein the target depth and the node number are respectively represented by D 1 To D 2 And (5) determining. Knowledge distillation aims at generating a smaller model and reserving the prediction capability of a large model, determining the complexity and scale of the model by node number and tree depth for the GBDT model, wherein the node number of the original GBDT model is M, the tree depth is H, the target model is not too small, otherwise, too much information is lost, and D is set 1 =0.5M,D 2 =0.8m, the target model tree depth should not be too shallow, set D 1 =0.8H,D 2 The number of nodes of the target model is 50% -80% of that of the original model, the tree depth is 80% -100% of that of the original model, and the model scale can be effectively reduced by shrinking the number of nodes and the tree depth within a certain range, and meanwhile, the main model expression capability is reserved.
By iteratively integrating a plurality of GBDT models, the iteration frequency range is defined by E 1 To E to 2 And determining to finally obtain the encryption prediction model. In the present application, the minimum number of iterations E is initialized 1 10 times; when GBDT models are added in each iteration, testing the overall effect of the newly added models on a verification set; if the new model results in no obvious improvement of the prediction effect (less than the preset improvement threshold alpha), the current iteration number is marked as E 2 The method comprises the steps of carrying out a first treatment on the surface of the Then the iterative integration is performed a number of times in the range of [ E ] 1 ,E 2 ]。
By adding Laplacian noise in the model training process, differential privacy protection is realized, and the user sensitive data is ensured not to be leaked. The knowledge distillation technology is used, the scale of the model is reduced, the calculation and storage cost is reduced, and the prediction performance of the model is maintained. And the robustness of the model is improved by using a Bagging algorithm, the risk of overfitting is reduced, and the generalization capability of the model is improved.
Specifically, a Bagging algorithm is used to obtain a plurality of bootstras from the second training set through the put-back samplingAnd p samples are used for training a plurality of GBDT models, so that privacy protection and safety improvement of user data are realized. The technical characteristics of differential privacy and model integration are combined, and the purpose is to ensure the privacy of data and the robustness of the model. The Bagging algorithm is an abbreviation for Bootstrap Aggregating, which generates subsets of training data by the replaced samples, and then uses these subsets to train multiple models. An appropriate second training set is selected, which is used to train the GBDT model. According to the actual data condition, calculating the sample number N in the second training set i 。
When the number of samples N i Less than or equal to a preset first threshold N 1 When, instead of using the Bagging algorithm, a single GBDT model is trained using a second training set. This is because the number of samples is small, and model integration is not required to improve training efficiency.
When the number of samples N i Greater than a first threshold N 1 And is smaller than a preset second threshold value N 2 When the method is carried out, the following steps are carried out: randomly and repeatedly extracting samples from the second training set to obtain a second training set sample size A 1 To A 2 Boottrap samples of (c). Multiple GBDT models are trained using the extracted bootstrap samples. The purpose of this is to increase the diversity of the model and to increase the generalization ability and robustness of the model.
When the number of samples N i Greater than or equal to a preset second threshold N 2 When the method is carried out, the following steps are carried out: bootstrap samples having the same number of samples as the second training set are randomly and repeatedly extracted from the second training set. Multiple GBDT models are trained by using the extracted bootstrap samples, similar to step three, in order to increase the diversity and robustness of the models. The resulting multiple GBDT models can be integrated by voting or averaging to generate more robust and accurate predictions. The diversity of the data can be increased through the Bagging algorithm and random put-back sampling, so that the privacy of the user data is protected. A plurality of models are generated by using a Bagging algorithm, and the robustness and accuracy of the models can be improved by integrating the models.
In this embodiment, the second training setSample number range [ A 1 ,A 2 ]: training the total number of samples n=10000; a is that 1 =0.8*N=8000;A 2 =0.2n=2000; the second training set sample size range is set to [8000, 2000 ]]. GBDT maximum iteration count range [ B ] 1 ,B 2 ]:B 1 =10 iterations; the error drop threshold τ is set to 0.005; when the iteration number is 15, the error drop is less than 0.005, B 2 =15; the maximum iteration number is in the range of [10, 15]The method comprises the steps of carrying out a first treatment on the surface of the GBDT model screening RMSE threshold range [ C 1 ,C 2 ]: model RMES was 0.1; c (C) 1 =0.8*0.1=0.08;C 2 =0.2x0.1=0.02; the RMSE threshold range is [0.08,0.02 ]]. Knowledge distilled model node number range [ D 1 ,D 2 ]: the number of original model nodes m=500; the range of the number of the target model nodes is [0.5 x 500,0.8 x 500 ]]=[250,400]The method comprises the steps of carrying out a first treatment on the surface of the Iterative integration frequency Range [ E ] 1 ,E 2 ]:E 1 =10; the boost threshold α is set to 0.01; when the iteration is 12 times, the lifting is smaller than 0.01, E 2 =12; the iteration number is in the range of [10, 12]。
The privacy budget is dynamically calculated according to the query type and the data size, and a differential privacy technology is adopted when a preset threshold value is reached, so that the privacy of user data is protected. Initializing privacy budget ε 0 The budget is in the range of F 1 To F 2 In the present application. This initial budget is used for subsequent privacy management. Circularly receiving ith round of inquiry request Q i Each query request includes a query type x i And data size y i . According to the ith round of inquiry request Q i Query type x i And data size y i Calculating privacy budget ε for the query consumption qi . The calculation formula is as follows: epsilon qi =k 1 *log(x i )*(y i α ) The method comprises the steps of carrying out a first treatment on the surface of the In the present application, the initial privacy budget ε is referenced to industry standards 0 Setting the standard default value of (2) to be 1.0, and setting an adjustable budget adjustment coefficient k according to different application scenes, wherein the default value is 1.0; when the application scene has higher requirements on privacy protection, k can be set between 0.5 and 0.8; when the application scene is about to function and output qualityWhen higher, k can be set between 1.5 and 2.0. The initial privacy budget calculation formula is: epsilon 0 =k; thus, the initial privacy budget ε 0 Reasonable value range F of (2) 1 To F 2 The method comprises the following steps: [0.5,2.0]The method comprises the steps of carrying out a first treatment on the surface of the Multiple levels of budget ranges may also be set, for example: grade 1, [0.5,1.0]The method comprises the steps of carrying out a first treatment on the surface of the Grade 2, [1.0,1.5]The method comprises the steps of carrying out a first treatment on the surface of the Grade 3, [1.5,2.0]The method comprises the steps of carrying out a first treatment on the surface of the Privacy consumption coefficient k1 is in the value range of [0.5,2 ]]The consumption rate is controlled. The value range of the data scale adjustment coefficient alpha is [0.8,1 ]]Slightly higher than the linear relationship. Query type complexity x i The query semantics can be classified into 1-10 levels, with higher levels representing higher query complexity and sensitivity. Weight omega i Can be hooked with query level, and the range is 0.1,1]The higher the level, the greater the weight. Noise parameter b i According to the current residual budget and weight calculation, the high-weight query has better privacy protection effect when the low budget is ensured. Residual budget threshold ε min May be set to 10% -30% of the initial budget, triggering the protection mechanism to be enabled.
Specifically, the privacy noise distribution center b of each query request is calculated by calculating the sensitivity weight and the adaptive variance function, and constructing a corresponding random noise distribution i0 It reflects the privacy sensitivity of the corresponding query request. b i0 Is calculated as follows: b i0 =ω i *ε qi ;ω i For query type x i Is calculated, the query type (x 1 ,x 2 ,......,x m ) Corresponding preset sensitivity weights (x 1 ,x 2 ,......,x m ) Different sensitivity weights are given by weighing the importance of different query types. Epsilon qi For query type x i The privacy budget consumed by the query of (c) is calculated in the previous step. Introducing an adaptive variance function f (y i ) This function is used to control the variance of the noise, thereby dynamically adjusting the noise level according to the data size. Adaptive variance function f (y i ) Is calculated as follows: f (y) i )=log(k 2 *(y i +1)); in the present application, the variance k is adapted 2 The value range is [1,1.5 ] ]The variance size is controlled.By assigning different sensitivity weights ω to different types of queries i The privacy protection level may be personalized according to the importance and privacy sensitivity of the query. This allows for a more intensive privacy protection of important data, while for less sensitive data the overhead of privacy protection can be reduced, improving the usability of the data. Introducing random noise distribution by calculating privacy noise distribution center b i0 The query result is randomly disturbed, so that the information of the original data is confused, and the sensitive data is not easily restored by a malicious user or attacker. This randomization technique improves the level of data privacy protection. Adaptive variance function f (y i ) Allowing the variance of the noise to be dynamically adjusted according to the data size of the query. The variance is relatively large when large-scale data is processed, allowing more randomness, while the variance is smaller when small-scale data is processed to reduce excessive disturbance. Therefore, the privacy can be protected, the accuracy of the data can be kept as much as possible, and the usability of the data is improved. Parameter k in an adaptive variance function 2 The value range of (2) is [1,1.5 ]]Allowing the size of the noise to be controlled according to specific requirements. Greater k 2 The value will result in a smaller variance, providing more stringent privacy protection, and a smaller k 2 The value provides a greater variance, allowing more data leakage, but improving the usability of the data. This flexibility enables the method to be tuned in different application scenarios.
In this embodiment, the initial privacy budget ε 0 Set to 1.5, i.e. select budget level 2; receiving a query request Q1, querying a user purchase record, wherein the type belongs to level 4 sensitive query, and the data size y 1 =5000; according to the formula epsilon qi =k 1 *log(x i )*(y i α )=1*log4*(5000 0.9 ) =5.2, calculate Q 1 Privacy budget consumption of (a); q (Q) 1 Sensitivity weight omega of (2) 1 =0.9; calculating a noise distribution center: b i0 =ω i *ε qi =0.9×5.2=4.68; setting an adaptive variance parameter k 2 =1.3, according to data size y 1 =5000, calculator f (y i )=log(k 2 *(y i +1))=log (1.3 x (5000+1))=8.8; build center b i0 Variance is f (y i ) Is a laplace noise distribution of (a); obtaining privacy noise b from the noise distribution samples i And adding the query response to the query response and then sending the query response to the user.
FIG. 5 is an exemplary flow chart of differential encryption, shown in FIG. 5, according to some embodiments of the present disclosure, for separating data into critical business data, entitlement control data, and text data to be searched, and employing different encryption techniques and entitlement control policies to protect the privacy and security of the data, the steps of differential encryption comprising: the S141 initial step involves classifying the e-commerce data into three categories: key business data: including payment information data for which the transaction amount is greater than a preset threshold, etc. Rights control data: including preset user permission levels, client types, etc. Text data to be searched: including customer feedback and order remark text, etc. S142, for payment information data with transaction amount larger than a preset threshold value in the key service data, hierarchical authority control is carried out by adopting a chained encryption mechanism based on homomorphic encryption. Homomorphic encryption allows computation to be performed in the encrypted state, thereby enabling rights control without exposing plaintext data. The chained encryption allows a plurality of key levels, and only proper keys can decrypt data of corresponding layers, so that the security of the data is enhanced; the homomorphic encryption and chained encryption mechanisms are used for realizing multi-level authority control on key service data, and ensuring that only authorized users can access sensitive data. By classifying the data and applying different encryption strategies, the data is differentially protected according to the sensitivity and the purpose of the data, and the data security is improved. S143 applies attribute-based encryption technology to the rights control data, such as the user rights level and the client type, for controlling the access rights. The attribute encryption allows the data to be encrypted and decrypted according to the attributes of the user, so that only the user with specific attributes can access the corresponding data; attribute-based encryption techniques are used to control rights, ensuring that only users with the corresponding attributes are able to decrypt and access rights control data. S144, for text data to be searched, such as customer feedback and order remark text, an encryption technology supporting searching is adopted, so that searching in an encryption domain is allowed. The encryption technique supporting search allows search operations to be performed in an encrypted state without exposing plaintext data, protecting the privacy of the data.
Wherein, for the classification of the key business data, filtering and classification can be performed based on the attribute of the data. And identifying the data with the transaction amount larger than the preset threshold value as key business data. The data is classified according to transaction type (e.g., payment, refund, purchase, etc.). For records classified as critical business data, their categories are labeled for subsequent processing. The rights control data typically includes information about the user rights level, the client type, etc. Classifying according to authority levels of different users. Classification is based on the type of customer (e.g., general user, VIP user, administrator, etc.). The text data to be searched typically includes text information such as customer feedback, order notes, etc. These data may be classified according to the content and purpose of the data. Natural Language Processing (NLP) techniques, such as text classification algorithms, are used to identify keywords or topics in text data to determine their categories.
The critical business data is classified, typically according to transaction amount criteria. Then, for the payment information data with the transaction amount larger than the preset threshold value, a chained encryption mechanism based on homomorphic encryption is adopted. Allowing specific calculations to be made, such as aggregation or statistics of the payment amount, with the data remaining encrypted, without decrypting the data. This greatly improves the security of the payment data, preventing unauthorized access and leakage. The rights control data includes information such as user rights level and client type, which is used to control data access rights. This means that only users with corresponding properties or rights can decrypt and access the relevant data. The protection of sensitive rights information is enhanced. Only authorized users can decrypt and view the data, thereby ensuring confidentiality and integrity of the rights data and reducing the risk of misuse of the data. The text data to be searched may contain information such as customer feedback and order notes. Such data typically requires searching but maintains encryption to maintain privacy. While protecting the privacy of the data, necessary search operations such as keyword search or data retrieval may be performed. This increases the privacy and security of the text data while allowing limited analysis and querying of the data.
In the embodiment, a transaction description text is extracted from electronic commerce transaction data by using an NLP technology; identifying keywords such as 'purchase', 'payment' and the like by using a text classification algorithm, and marking the text record as key business data; and encrypting the payment data with transaction amount larger than 5000 yuan by using a homomorphic encryption algorithm Paillier, so as to realize statistic analysis under an encryption domain. Marking records of user role grades of 'manager' or 'operator' as authority control data from a user database; the entitlement control data is encrypted using a CP-ABE attribute-based encryption algorithm. The access control policy binds user department attributes. Extracting customer feedback content from the order comment text by using a regular expression, and encrypting the extracted feedback text by adopting an encryption algorithm SSE supporting keyword search; under the encryption domain, the feedback text is searched by using keywords such as 'good score', 'bad score', and the like.
FIG. 6 is an exemplary flow chart for setting access control policies according to some embodiments of the disclosure, as shown in FIG. 6, the steps of employing access control policies based on data attributes and user roles including: S143A generates random salt values using the XTS mode of the AES-256 algorithm for each first data that needs to be indexed. The random salt value increases the randomness of the data, improves the safety and prevents the rainbow table attack on the same data. The use of random salt values increases the security of the data and reduces the risk of attacks on the data. The AES-256XTS mode is adopted for encryption, so that the privacy of data is protected, and only authorized users can decrypt the data. S143B derives an encryption key and a decryption key of the index database using the HKDF algorithm based on the master key. The HKDF algorithm ensures that the key derived from the master key is properly strong and suitable for data encryption and decryption; and the HKDF algorithm is used for key derivation, so that the generated key is proper in strength and is not easy to crack. S143C, encrypting the first data and the random salt value by using an encryption key to generate second data; and encrypting the first data and the random salt value by using the generated encryption key to generate second data. The data encryption protects the privacy of the first data, and only the user with the decryption key can restore the original data; S143D creates an index table in the index database containing the following information: data ID: for uniquely identifying each data item. Encryption of salt: a random salt value associated with each data item. Second data: encrypted data. S143E, when the index is read, searching the matched encrypted salt value and the second data through the data ID, and decrypting by using the decryption key to obtain the first data. The decryption operation can only be carried out by an authorized user, so that the security of the data is ensured; S143F establishes a role-based access control mechanism in an index database, comprising the following steps: and (3) identity authentication: the user needs to provide valid authentication credentials, including a user name and password. And (3) authorization management: based on the role and attributes of the user, it is determined whether it has permission to access specific data. Accessing an audit log: all access to the database is recorded for auditing and monitoring. Rights grading: different authority levels are assigned to different user roles and attributes to refine data access control. Role-based access control allows different rights to be assigned to different users, refining data access control.
By adopting a strong encryption algorithm and a flexible access control mechanism, only authorized users can access sensitive data, and access of the data is recorded and monitored, so that the data security is improved. For each first data to be indexed, the present application uses the XTS mode of the AES-256 algorithm to generate a random salt value. This random salt value will be used with the first data for the subsequent encryption process. Using the master key based HKDF (HMAC-based Key Derivation Function) algorithm, the present application derives the encryption and decryption keys of the index database. This ensures secure generation and management of keys. The first data and the random salt value are encrypted by adopting the generated encryption key, and the second data are generated. The second data will be stored in the index database. In the index database, the application creates an index table containing the data ID, the encrypted salt value, and the second data. This table will be used to retrieve and decrypt the first data. The present application establishes role-based access control (RBAC) mechanisms in the index database, including authentication, authorization management, and access audit logs. And (3) identity authentication: the user needs to provide valid credentials for authentication to access the data. This ensures that only authenticated users can access the system. And (3) authorization management: by user roles and attributes, the present application can control, in fine granularity, who can access which data. Only authorized users are able to decrypt and obtain the first data. Accessing an audit log: the application records all data access events, including user identity, time stamp and access operation. This helps to monitor the use of data and track potential security issues. The application adopts authority grading to ensure that data of different levels can only be accessed by authorized users. This means that high sensitivity data can only be accessed by high-level users, while low sensitivity data can be accessed by a wider population of users. Access auditing is an important component that allows the present application to periodically audit data access, identify potential risks, and take appropriate action to enhance data security. The XTS mode of AES-256 algorithm and HKDF algorithm are adopted to ensure strong encryption of data and secure management of keys. The RBAC-based access control mechanism provides flexible rights management, allowing fine-grained control of data based on user roles and attributes. Access to audit log records and the use of monitoring data facilitates timely discovery and management of potential security issues.
Example 3, XTS mode using AES-256 algorithm generates random salt values of length 256 bits; deriving a database index encryption key and a decryption key with 256bit length through HKDF-SHA256 based on the master key; performing AES-256 encryption on the client information data and the random salt value by using an encryption key, and outputting encrypted data; creating a data table in a MySQL database, comprising the fields: data ID, salt value, encrypted data. Inserting the encrypted data; when a user logs in, the identity is verified through a user name and a password, the system inquires the role of the user, and an access token is generated according to the role authority; when the user accesses the index data, the access token is presented, and the system verifies and records the access log.
Example 4, a database full-text index encryption key of 512 bits in length is generated by HKDF-SHA256 based on the master key; performing AES-512 encryption on the commodity comment text by using the encryption key, and outputting an encrypted text; creating an index comprising the fields: document ID, encrypted text. Inserting an encrypted text; defining access control strategies, wherein different user roles have different data access rights; and when the user logs in the system, the two-factor identity authentication is performed. The user rights are verified and journaled when accessing the text index.
Wherein the application ensures the security of the first data and the salt value by generating a random master key and a random salt value using TRNG and performing key derivation and AES-256 encryption using HMAC-SHA256 algorithm. By combining the Shamir secret sharing algorithm and the multi-path splicing mode, the application generates the second data and provides powerful support for data security. Generating a length G by using a True Random Number Generator (TRNG) 1 To G 2 To ensure a high degree of randomness and security of the master key. Generating a length G by using a secure random number generation algorithm 1 To G 2 The random salt value of the bits is used to increase the complexity of data encryption. Deriving by HMAC-SHA256 algorithm according to the generated random master key to generate a length G 3 To G 4 And the encryption key corresponding to the first data of the bit ensures the safe generation and management of the key. Performing AES-256 encryption on the first data by using the generated encryption key to obtain encrypted first data S 1 . AES-256 encryption is carried out on the random salt value of the first data to obtain an encrypted salt value S 2 . For S 1 And S is 2 Hash by SHA-256 algorithm to obtain hash value U 1 And U 2 To ensure data integrity and security. U is determined by using a Shamir secret sharing algorithm 1 Splitting into K 1 Fragments, U 2 Splitting into K 2 To increase the dispersion and security of data. Adopting a multi-path splicing mode, and according to a preset rule, obtaining a U-shaped signal from the U 1 And U 2 Selecting M different fragments from the fragments of (C)And performing exclusive or (XOR) splicing on the fragments at the positions to generate second data. This ensures the complexity and security of the second data and is not susceptible to a single fragment. And generating a random master key by using TRNG, and ensuring the high randomness and the safety of the master key. Generating random salt values increases the complexity of data encryption. The HMAC-SHA256 algorithm is used for key derivation, so that the safe generation and management of the key are ensured. And encrypting the first data and the random salt value by adopting an AES-256 algorithm, so that the encryption safety of the data is ensured. The SHA-256 algorithm is used for hashing and slicing, so that data integrity and security are ensured. For splitting the hash value into a plurality of fragments, increasing the dispersibility and security of the data. And splicing the plurality of fragments through exclusive or (XOR) to generate second data, so that the complexity and the safety of the second data are ensured. In the present application, the master key length G 1 To G 2 256-512bit, ensuring the safety strength; random salt length G 1 To G 2 For 128-256 bits, increasing entropy and unpredictability; derived key length G 3 To G 4 256 bits, matching with AES-256 algorithm; SHA-256 output hash value length 256 bits; shamir algorithm fragment number K 1 、K 2 5-8 pieces, realizing fault tolerance threshold; the number M of the multi-path splicing selection fragments is 3-5, so that the difficulty in back-pushing is ensured; the XOR splicing positions are uniformly distributed according to the principle of interval; the second index data length is the sum of the lengths of the spliced segments; different security levels can be set, and the high-level parameters take larger values and the low-level parameters take smaller values.
In this embodiment, a random master key of 512 bits in length is generated, using hardware TRNG generation; generating a random salt value with 256-bit length, and generating by using a system RNG algorithm; deriving a 256-bit encryption key using HMAC-SHA 256; AES-256 encrypting the first data by using the encryption key, outputting the encrypted data S 1 The method comprises the steps of carrying out a first treatment on the surface of the AES-256 encryption is carried out on random salt value by using different encryption keys, and an encrypted salt value S is output 2 The method comprises the steps of carrying out a first treatment on the surface of the For S 1 And S is 2 SHA-256 hashes are performed respectively to obtain 256-bit hash value U 1 And U 2 The method comprises the steps of carrying out a first treatment on the surface of the U using Shamir secret sharing algorithm 1 Splitting into 5 fragments; u (U) 2 Split into 6 fragmentsThe method comprises the steps of carrying out a first treatment on the surface of the From U 1 And U 2 Selecting 4 fragments at different positions for exclusive-or splicing to generate second index data; the second index data length is 1024 bits of the sum of 4 fragments; finally, the first data ID, the random salt value and the second index data are stored in a database index table.
Claims (10)
1. A method of processing electronic commerce data, comprising:
acquiring electronic commerce data, extracting feature information by utilizing feature engineering, and constructing feature vectors;
using a machine learning algorithm to train a prediction model based on the feature vector to predict first data to be encrypted;
calculating semantic relativity among the predicted encrypted data as an encryption sequence;
encrypting the first data by utilizing a differential encryption algorithm according to the characteristic information and the encryption sequence of the data to generate second data;
establishing a mapping relation between first data and second data in a database, and constructing an index;
an access control policy based on data attributes and user roles is employed.
2. The method for processing electronic commerce data according to claim 1, wherein:
using a machine learning algorithm, training a predictive model based on the feature vector, the step of predicting the first data to be encrypted comprising:
labeling the constructed feature vectors to generate a first training set and a verification set;
detecting whether the sample quantity distribution of each category in the first training set is balanced or not;
if the first training set has unbalanced category, the first training set is processed by utilizing an oversampling or undersampling technology, and a second training set is generated;
Utilizing the second training set and the verification set to train the gradient lifting decision tree model to obtain an encryption prediction model;
and predicting the data needing to be encrypted in the electronic commerce data by using the encryption prediction model to obtain first data.
3. The method for processing electronic commerce data according to claim 2, wherein:
if there is a class imbalance in the first training set, processing the first training set using an over-sampling or under-sampling technique, the step of generating a second training set comprising:
acquiring the total sample amount N of the first training set;
dynamically setting a first threshold ratio P of the number of samples according to the total number of samples 1 And a second threshold ratio P 2 ,P 1 Less than P 2 ;
According to the total sample N and the first threshold ratio P 1 Calculate a first threshold N 1 ;
According to the total sample N and the second threshold ratio P 2 Calculate a second threshold N 2 ;
Judging the number N of samples of each category i Whether or not it is greater than a first threshold value N 1 Or less than a second threshold N 2 ;
When the number of samples N i Greater than a first threshold N 1 When the sampling is carried out, undersampling treatment is carried out on the corresponding samples;
when the number of samples N i Less than a second threshold N 2 When the sampling device is used, the corresponding sample is subjected to oversampling;
repeating threshold judgment and sampling processing on the training set subjected to undersampling processing or oversampling processing to obtain a second training set;
Dynamically setting a threshold ratio to be set by an adaptive algorithm based on a machine learning algorithm;
the undersampling process is one of downsampling, random sampling or weighted sampling;
the over-sampling process is one of up-sampling, synthesizing, or replicating the sample.
4. The method for processing electronic commerce data according to claim 3, wherein:
training the gradient lifting decision tree model by using the second training set, and obtaining the encryption prediction model comprises the following steps:
according to the Bagging algorithm, a plurality of bootstrap samples are obtained from the second training set through sampling with substitution, and the number of the samples is A of the total number of the samples 1 To A 2 ;
Training a GBDT regression model for each bootstrap sample, wherein the maximum iteration number of the model is B 1 To B 2 A wheel;
during GBDT regression model training, adding Laplace noise at leaf nodes, wherein the value of the Laplace noise is a dynamically preset privacy budget epsilon;
evaluating the trained GBDT model using a validation set, removing the model with RMSE exceeding a threshold value, the threshold value being C of the RMSE values evaluated on the validation set 1 To C 2 ;
For the reserved GBDT model, the knowledge distillation technology is used for reducing the node number and the node depth of the model, and the target depth and the node number are respectively D of the node number and the node depth of the GBDT model before knowledge distillation is not carried out 1 To D 2 ;
By iteratively integrating a plurality of GBDT models, the iteration number is E 1 To E to 2 And secondly, the encryption prediction model is used.
5. The method for processing electronic commerce data according to claim 4, wherein:
according to the Bagging algorithm, the step of obtaining a plurality of bootstrap samples from the second training set through the put-back sampling includes:
when the number of samples N i Less than or equal to a preset first threshold N 1 Training a single GBDT model by using the second training set;
when the number of samples N i Greater than a first threshold N 1 And is smaller than a preset second threshold value N 2 At the time, the number of the extracted samples from the second training set is randomly replaced by the sample size A of the second training set 1 To A 2 Training a plurality of GBDT models by using the extracted boottrap samples;
when the number of samplesN i Greater than or equal to the second threshold N 2 And randomly replacing bootstrap samples with the same sample number as the second training set from the second training set, and training a plurality of GBDT models by using the extracted bootstrap samples.
6. The method for processing electronic commerce data according to claim 4, wherein:
the step of dynamically presetting the privacy budget epsilon comprises the following steps:
setting an initialization privacy budget ε 0 Is F 1 To F 2 ;
Circularly receiving ith round of inquiry request Q i Acquiring an ith round of query request Q i Corresponding query type x i And data size y i ;
According to the ith round of inquiry request Q i Query type x i And data size y i Calculate the ith round of query Q i Consumed privacy budget ε qi ,ε qi Calculated by the following formula:
ε qi =k 1 *log(x i )*(y i α )
wherein k is 1 Is a privacy consumption coefficient; alpha is a data scale adjustment coefficient;
from an initially preset privacy budget ε 0 Subtracting the accumulated consumed privacy budget to obtain residual privacy budget epsilon t+1 ;
Judging the residual privacy budget epsilon t+1 Whether or not it is below a preset threshold epsilon min ;
When epsilon t+1 Less than or equal to epsilon min When the query type is determined, calculating a preset sensitivity weight corresponding to the query type;
according to the sensitivity weight omega i And ith round of query consumption ε qi Calculate the ith round of query request Q i Corresponding Laplace noise parameter b i ;
For the ith round of query request Q i Adding the calculated noise b i And then, returning a query response.
7. The method for processing electronic commerce data according to claim 6, wherein:
calculating Laplace noise parameter b i The method comprises the following steps:
calculating privacy noise distribution center b i0 ,b i0 Calculated by the following formula:
b i0 =ω i *ε qi
wherein omega i For query type x i Sensitivity weights of (2); epsilon qi For query type x i Privacy budgets consumed by the querying of (a);
setting an adaptive variance function f (y i ),f(y i ) Calculated by the following formula:
f(y i )=log(k 2 *(y i +1))
wherein k is 2 A constant that is an adaptive variance function;
build b i0 Is centered, variance is f (y i ) Laplacian or Gaussian distribution F i ;
From distribution F using a distribution-based sampling algorithm i The privacy noise value b is obtained by sampling i 。
8. The method for processing electronic commerce data according to claim 1, wherein:
the step of differential encryption includes:
classifying the electronic commerce data, and extracting key business data, authority control data and text data to be searched;
carrying out layered authority control on key business data, wherein the transaction amount of payment information data is larger than a preset threshold value, by adopting a chained encryption mechanism based on homomorphic encryption;
controlling access rights by adopting an attribute-based encryption technology for rights control data comprising preset user rights level and client type;
the text data to be searched comprises preset customer feedback and order remark text, and the search is carried out in an encrypted domain by adopting an encryption technology supporting the search.
9. The method for processing electronic commerce data according to claim 1, wherein:
the step of employing an access control policy based on data attributes and user roles includes:
Generating a random salt value for each first data to be indexed using the XTS mode of the AES-256 algorithm;
deriving an encryption key and a decryption key of the index database by using an HKDF algorithm based on the master key;
encrypting the first data and the random salt value by using an encryption key to generate second data;
creating an index table in an index database, the index table containing a data ID, an encrypted salt value, and second data;
when the index is read, searching the matched encrypted salt value and the second data through the data ID, and decrypting by using a decryption key to obtain the first data;
establishing an RBAC-based access control mechanism in an index database, wherein the access control mechanism comprises identity verification, authorization management and access audit logs;
and carrying out security control on the index database by adopting authority classification and access audit.
10. The method for processing electronic commerce data according to claim 9, wherein:
the step of encrypting the first data and the random salt value using an encryption key, the step of generating second data comprising:
generating a length G using TRNG 1 To G 2 Is a random master key of (a);
for the first data, generating a length G by using a secure random number generation algorithm 1 To G 2 Random salt values of bits;
Deriving the length G from the master key using the HMAC-SHA256 algorithm 3 To G 4 Generating an encryption key corresponding to the first data;
using encryption key pairsOne data is subjected to AES-256 encryption and the encrypted first data S is output 1 ;
AES-256 encryption is carried out on the random salt value of the first data, and the encrypted salt value S is output 2 ;
Hashing S1 and S2 respectively by SHA-256 algorithm to obtain hash value U 1 And U 2 ;
U is determined by using a Shamir secret sharing algorithm 1 Splitting into K 1 Fragments, U 2 Splitting into K 2 Fragments;
adopting a multi-path splicing mode, and according to a preset rule, obtaining a U-shaped signal from the U 1 And U 2 Selecting M fragments at different positions for exclusive-or (XOR) splicing to generate second data.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311261982.5A CN117235796A (en) | 2023-09-27 | 2023-09-27 | Electronic commerce data processing method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311261982.5A CN117235796A (en) | 2023-09-27 | 2023-09-27 | Electronic commerce data processing method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117235796A true CN117235796A (en) | 2023-12-15 |
Family
ID=89090902
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202311261982.5A Pending CN117235796A (en) | 2023-09-27 | 2023-09-27 | Electronic commerce data processing method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117235796A (en) |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106657059A (en) * | 2016-12-21 | 2017-05-10 | 哈尔滨工业大学深圳研究生院 | Database query method and system having access control function |
| CN109033854A (en) * | 2018-07-17 | 2018-12-18 | 阿里巴巴集团控股有限公司 | Prediction technique and device based on model |
| CN112989375A (en) * | 2021-03-05 | 2021-06-18 | 武汉大学 | Hierarchical optimization encryption lossless privacy protection method |
| US20210344485A1 (en) * | 2020-05-01 | 2021-11-04 | Microsoft Technology Licensing, Llc | Label-based double key encryption |
| CN113705727A (en) * | 2021-09-16 | 2021-11-26 | 四川新网银行股份有限公司 | Decision tree modeling method, prediction method, device and medium based on difference privacy |
| CN115081540A (en) * | 2022-07-20 | 2022-09-20 | 国网江苏省电力有限公司营销服务中心 | Data privacy protectable classification method and system based on integrated decision learning |
| CN115296845A (en) * | 2022-07-01 | 2022-11-04 | 中国科学院计算技术研究所 | Medical data hierarchical access control method and system based on attribute encryption |
| US20220358243A1 (en) * | 2011-05-10 | 2022-11-10 | Nagravision S.A. | Method for handling privacy data |
| CN116070267A (en) * | 2023-01-03 | 2023-05-05 | 新华三信息安全技术有限公司 | Data security protection method, device, equipment and machine-readable storage medium |
-
2023
- 2023-09-27 CN CN202311261982.5A patent/CN117235796A/en active Pending
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20220358243A1 (en) * | 2011-05-10 | 2022-11-10 | Nagravision S.A. | Method for handling privacy data |
| CN106657059A (en) * | 2016-12-21 | 2017-05-10 | 哈尔滨工业大学深圳研究生院 | Database query method and system having access control function |
| CN109033854A (en) * | 2018-07-17 | 2018-12-18 | 阿里巴巴集团控股有限公司 | Prediction technique and device based on model |
| US20210344485A1 (en) * | 2020-05-01 | 2021-11-04 | Microsoft Technology Licensing, Llc | Label-based double key encryption |
| CN112989375A (en) * | 2021-03-05 | 2021-06-18 | 武汉大学 | Hierarchical optimization encryption lossless privacy protection method |
| CN113705727A (en) * | 2021-09-16 | 2021-11-26 | 四川新网银行股份有限公司 | Decision tree modeling method, prediction method, device and medium based on difference privacy |
| CN115296845A (en) * | 2022-07-01 | 2022-11-04 | 中国科学院计算技术研究所 | Medical data hierarchical access control method and system based on attribute encryption |
| CN115081540A (en) * | 2022-07-20 | 2022-09-20 | 国网江苏省电力有限公司营销服务中心 | Data privacy protectable classification method and system based on integrated decision learning |
| CN116070267A (en) * | 2023-01-03 | 2023-05-05 | 新华三信息安全技术有限公司 | Data security protection method, device, equipment and machine-readable storage medium |
Non-Patent Citations (2)
| Title |
|---|
| ZHIYONG LIAO等: "Homomorphic CNN for Privacy Preserving Learning On Encrypted Sensor Data", 2019 CHINESE AUTOMATION CONGRESS, 13 February 2020 (2020-02-13) * |
| 李川;王智;: "大数据环境下用户隐私数据多级加密仿真研究", 计算机仿真, no. 11, 30 November 2019 (2019-11-30) * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11652608B2 (en) | System and method to protect sensitive information via distributed trust | |
| Jung et al. | Accounttrade: Accountable protocols for big data trading against dishonest consumers | |
| US9881164B1 (en) | Securing data | |
| JP2017091515A (en) | Computer-implemented system and method for automatically identifying attributes for anonymization | |
| US8601553B1 (en) | Techniques of imposing access control policies | |
| JP2008262601A (en) | Distributed risk assessment system and method for assessing financial fraud risk | |
| CN113742764B (en) | Trusted data secure storage method, retrieval method and equipment based on block chain | |
| CN109416625A (en) | Text is carried out in the feeding of database table, text file and data to add salt | |
| CN116776386B (en) | Cloud service data information security management method and system | |
| CA3189628A1 (en) | Systems and methods for tracking propagation of sensitive data | |
| WO2021226301A1 (en) | Machine learning-based method and system for detecting plaintext passwords | |
| Gadde et al. | Secure Data Sharing in Cloud Computing: A Comprehensive Survey of Two-Factor Authentication and Cryptographic Solutions. | |
| AL-Maliki et al. | Comparison study for NLP using machine learning techniques to detecting SQL injection vulnerabilities | |
| Song et al. | Robust membership encoding: Inference attacks and copyright protection for deep learning | |
| CN117235796A (en) | Electronic commerce data processing method | |
| Kozik et al. | Cyber security of the application layer of mission critical industrial systems | |
| Saxena et al. | Integration of back-propagation neural network to classify of cybercriminal entities in blockchain | |
| Chen | Security precautionary technology for enterprise information resource database based on genetic algorithm in age of big data | |
| Swami et al. | A new secure data retrieval system based on ECDH and hierarchical clustering with Pearson correlation | |
| Malhotra et al. | A secure neural network‐based ranking approach for document searching in cloud data center | |
| Nugent | Privacy-Preserving Credit Card Fraud Detection using Homomorphic Encryption | |
| CN117272353B (en) | Data encryption storage protection system and method | |
| Babu et al. | Multi-keyword text search with Merkle hash tree for privacy preservation over the encrypted data | |
| Shrihari et al. | Development of Fragmentation to Create a Big Data Security Framework using Blockchain Innovation | |
| Deepa et al. | A Meta-Analysis of Efficient Countermeasures for Data Security |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20240415 Address after: 425000 in Shilipu Industrial Park, Ningyuan County, Yongzhou City, Hunan Province Applicant after: Ningyuan County Damai E-commerce Co.,Ltd. Country or region after: China Address before: Room 1507, Building A, Guohui Financial Center, No. 485 Changjiang Middle Road, Huangdao District, Qingdao City, Shandong Province, 266555 Applicant before: Qingdao Zhongqiyingcai Group Culture Media Co.,Ltd. Country or region before: China |