WO2022156588A1

WO2022156588A1 - Data management method, device, and system

Info

Publication number: WO2022156588A1
Application number: PCT/CN2022/071757
Authority: WO
Inventors: 刘佳阳; 郭亮; 朱金伟
Original assignee: 华为技术有限公司
Priority date: 2021-01-25
Filing date: 2022-01-13
Publication date: 2022-07-28
Also published as: CN114792009A

Abstract

Disclosed is a data management method. The method comprises: a client can determine a ciphertext index value according to information on plaintext data, and send the ciphertext index value to a cloud device; the cloud device can establish, in an index structure (such as a B-tree), a correspondence between the ciphertext index value and information on a storage location of ciphertext data corresponding to the plaintext data, or search an index structure for a storage location of ciphertext data according to the ciphertext index value, so as to implement an operation on the ciphertext data. In the present application, a ciphertext index value is used to replace a field in a data column to serve as a key value in a conventional ordered index, so as to implement searching of ciphertext data, and order-based query can be performed on ciphertext data stored in a table without adding any data table field, thereby reducing space occupied by a full table used for storing the ciphertext data and improving the expandability for stored data in a cloud device.

Description

Method, device and system for data management

This application claims the priority of the Chinese patent application filed on January 25, 2021 with the application number 202110098939.6 and the invention title "A method, device and system for data management", the entire contents of which are incorporated by reference in in this application.

technical field

The present application relates to the technical field of databases, and in particular, to a method, device and system for data management.

Background technique

Traditional databases can use permissions to ensure the security of the database, but relying on permissions to manage the database may have the problem of internal managers tampering with data. In addition, due to the open environment and the fuzzification of network boundaries, user data is more fully exposed to attackers throughout the business process. Whether it is in the process of transmission, storage, operation and maintenance, or operation, it may suffer from attackers. attack.

For cloud database scenarios, in terms of ensuring user data security, a solution for fully encrypted database is proposed. The solution of fully encrypted database means that user data is encrypted by the user key on the client side, and then the encrypted ciphertext data is stored in the database. Because only the client side has the user key, it can be guaranteed to be stored in the database. Security of ciphertext data in Chinese.

At present, the encryption scheme of user data usually adopts symmetric encryption. Symmetric encryption cannot guarantee the sequential operation based on sequentially encrypted data. When the client needs to store the data with order preservation requirements in the database, the database will provide the data with order preservation requirements. A new data column is added to store the data with the order-preserving requirement, which will lead to the expansion of the data column used for storing the data with the order-preserving requirement, which reduces the scalability of the database.

SUMMARY OF THE INVENTION

Embodiments of the present application provide a data management method, device, and system, which are used to reduce the space occupied by the expansion of a table for storing ciphertext data, and improve the scalability of stored data in a cloud device. Embodiments of the present application also provide corresponding apparatuses, systems, computer-readable storage media, computer program products, and the like.

A first aspect of the present application provides a data management method, including: acquiring a first statement, where the first statement includes plaintext data; determining a ciphertext index value according to information of the plaintext data; sending a second statement, the second statement to a cloud device Including the ciphertext index value, the ciphertext index value is used by the cloud device to establish the correspondence between the ciphertext index value and the information of the storage location of the ciphertext data in the index structure, or to query the ciphertext data from the index structure. The information of the storage location, the ciphertext data is the encrypted data of the plaintext data, and the information of the storage location indicates the storage location of the ciphertext data corresponding to the plaintext data.

In a possible implementation manner, the first statement is a first statement based on sequential operations.

The solution provided in the first aspect above can be applied to a database end-to-cloud scenario, and can also be applied to a non-database end-to-cloud scenario. The client side can be a client, and the client can be hardware (such as a terminal device) or software (such as an application (APP)), and the cloud side can be a cloud device, and the cloud device can be a physical machine or a physical machine. It can be a virtual machine (VM) or a container (container). The plaintext data on the terminal side can be encrypted by the user key to obtain the ciphertext data, and then the ciphertext data is sent to the cloud side for storage. Operations such as insert (insert), update (update), query (select/query), and delete (delete) can be performed between devices and clouds for ciphertext data. Many of the plaintext data on the terminal side are based on sequential records, such as employee information lists, student information lists, and other data, which are all recorded based on sequential records. These sequential recorded data also need to be sorted in order after being encrypted by the user key. These data can also be called data with sequential requirements. The encryption method for these order-required data can be order-preserving encryption (OPE), order-revealing encryption (ORE), or other order-based encryption methods. In the present application, statements for operations on these sequence-related data may be referred to as statements based on sequence operations. Input conditions based on sequential operations can include comparison operators, range queries, ordering (ORDER BY), minimum (minimum, MIN), maximum (maximum, MAX), and sorting (SORT), etc.

In the above first aspect, both the first statement and the second statement may be structured query language (structured query language, SQL) statements. The first statement is typically a statement generated based on user input. For example: a statement generated by a query condition input by a user, or a statement generated by an insert instruction, an update instruction, or a delete instruction input by the user. The operation indicated by the second statement is the same as the operation indicated by the first statement.

In this application, plaintext data may also be described as "plaintext of data", and ciphertext data may also be described as "ciphertext of data". The ciphertext index value refers to an index value that has a pointing relationship with the ciphertext data. The index structure is a structure established by the cloud device to store the correspondence between the ciphertext index value and the information of the storage location of the ciphertext data, and the index structure may be a tree structure or other types of structures. The information on the storage location of the ciphertext data may include an address of the storage location or an identification of the ciphertext data in the stored list. If the operation indicated by the second statement is an insert operation, the cloud device will establish a correspondence between the ciphertext index value and the information of the storage location of the ciphertext data in the index structure. For a query operation, an update operation or a deletion operation, the cloud device will query the information of the storage location of the ciphertext data from the index structure, and then can query the ciphertext data according to the information of the storage location.

In the first aspect, the client can generate a ciphertext index value for plaintext data based on sequential operations, and then the cloud device can store the ciphertext index value in an index structure to establish a storage location for the ciphertext index value and the ciphertext data When the ciphertext data corresponding to the ciphertext index value needs to be queried, the corresponding ciphertext data can be queried according to the corresponding relationship in the index structure, and then the corresponding operations on the ciphertext data can be performed. It can be seen that in this application, the ciphertext index value is used instead of the field in the data column as the key value in the conventional ordered index to realize the search for ciphertext data, and the ciphertext stored in the table can be searched without adding data table fields. The data is queried based on the order, thereby reducing the space occupied by the expansion of the table used to store the ciphertext data, and improving the scalability of the stored data in the cloud device. That is to say, the solution of the present application has the advantages of not changing the interaction mode, not increasing the number of extra interactions, maintaining the efficiency of conventional queries, not adding data table fields, not changing the conventional index function, and not adding additional SQL statements to change the query mode. The function based on sequential operation is implemented.

In a possible implementation manner of the first aspect, the information of the plaintext data includes the value of the plaintext data, the type of the plaintext data, and the value range of the plaintext data.

In this possible implementation manner, the types of plaintext data may include integer (int), floating point (float), string (string), and character (char), and the integer type can also be subdivided into int1 , int2, int4 and int8, etc., floating-point types can also be subdivided into floating-point types with different granularities, string types can also be subdivided into long strings and short strings, and character types can also be subdivided into readable characters and full characters, etc. The value range of the plaintext data is related to the type of the plaintext data. For example, if the type of the plaintext data is int4, the value range of the plaintext data can be [-2 ³¹ , 2 ³¹ ]. In this possible implementation manner, the ciphertext index value determined by the value of the plaintext data, the type of the plaintext data and the value range of the plaintext data not only ensures the security of the ciphertext, but also improves the obtaining efficiency of the ciphertext index value.

In a possible implementation manner of the first aspect, the above step: determining the ciphertext index value according to the information of the plaintext data, including: normalizing the value of the plaintext data, the type of the plaintext data and the value range of the plaintext data process to obtain the plaintext value, plaintext space and ciphertext space; determine the ciphertext index value according to the plaintext value, plaintext space and ciphertext space.

In this possible implementation manner, the normalization process may be to determine the normalization parameter of the plaintext data according to the type of the plaintext data and the value range of the plaintext data; according to the normalization parameter, the value of the plaintext data is normalized processing to obtain the plaintext value, plaintext space and ciphertext space. The plaintext value is the normalized plaintext value, and the plaintext space is also the normalized plaintext space. The normalization process can be performed using different processing methods for different types, such as translation or shift for integer types. Normalization processing methods such as truncation and compression are used for string types, and normalization processing methods such as truncation and translation are used for floating point types. In this application, the ciphertext space is obtained by enlarging the plaintext space according to the expansion coefficient. In this application, normalization parameters are added for different types of plaintext data and different normalization processing methods are adopted, so that the ciphertext index value generation algorithm of this application can be adapted to all data types without input range limitation.

In a possible implementation manner of the first aspect, the above steps: determining the ciphertext index value according to the plaintext value, the plaintext space and the ciphertext space, including: sampling in the sampling interval of the ciphertext space to obtain sampling points, The sampling interval corresponds to the midpoint of the plaintext space; according to the midpoint and the plaintext value, the plaintext space and the ciphertext space are reduced to obtain a reduced plaintext space and a reduced ciphertext space. The reduced plaintext space is bounded by the midpoint and contains The plaintext value, the reduced ciphertext space is bounded by the sampling point; the above steps of sampling and reducing the plaintext space and the ciphertext space are repeated until the upper boundary and the lower boundary of the reduced plaintext space coincide, and the upper boundary coincides with the lower boundary. The corresponding sampling point of the reduced ciphertext space is the ciphertext index value.

In this possible implementation, the plaintext space is a numerical range, including upper and lower boundaries. For example, the plaintext space is expressed as [a1, a2], and the ciphertext space is obtained by enlarging the plaintext space according to the expansion coefficient. The ratio can be 1.3 times, 1.5 times or other multiples. Of course, the ciphertext space can also be as large as the plaintext space. For example: the ciphertext space can be expressed as [b1,b2]. The plaintext space corresponds to the ciphertext space. The midpoint of the plaintext space refers to the midpoint (mid) determined by the upper and lower boundaries of the plaintext space, that is, half of the sum of the upper and lower boundaries of the plaintext space is The midpoint of this plaintext space. For example: the midpoint of [a1, a2] is (a1+a2)/2. Because the ciphertext space is larger than the plaintext space, the midpoint of the plaintext space corresponds to an interval of the ciphertext space, and the client can perform deterministic sampling in this sampling interval, or it can be understood as pseudo-random sampling, that is, according to the user The key is sampled, and the sampling point (y) is obtained in the sampling interval. According to the size relationship between the midpoint (mid) and the plaintext value (m), determining the reduced plaintext space and the reduced ciphertext space may include the case where the plaintext value is greater than the midpoint, or may include the case where the plaintext value is smaller than the midpoint, if m >mid, the reduced plaintext space is the next number from the midpoint to the lower boundary of the original plaintext space, which can be expressed as [mid+1, a2], and the reduced ciphertext space is the next number from the sampling point From the beginning to the lower boundary of the ciphertext space, it can be expressed as [y+1,b2]. If m≤mid, the reduced plaintext space is from the upper boundary of the plaintext space to the midpoint, which can be expressed as [a1,mid], and the reduced ciphertext space is from the upper boundary of the ciphertext space to the sampling point, which can be Represented as [b1,y]. After repeated recursion, the upper and lower boundaries of the reduced plaintext space are equal to the plaintext value and the midpoint, which can be expressed as a1=a2=mid=m. At this time, the reduced plaintext space corresponds to The sampling point of the ciphertext space is the ciphertext index value. In this application, obtaining the ciphertext index value in a recursive manner can reduce the probability of leaking the ciphertext index value and improve the security of the ciphertext index value.

In a possible implementation manner of the first aspect, the above steps: sampling in a sampling interval of the ciphertext space to obtain sampling points, including: performing modulo calculation on the size of the sampling interval by using an unpredictable pseudo-random number, to obtain the modulo value; determine the corresponding sampling point from the sampling interval according to the modulo value.

In this possible implementation manner, in the sampling process, sampling is performed by taking a modulo value, which can improve the sampling efficiency, thereby improving the calculation efficiency of the ciphertext index value.

In a possible implementation manner of the first aspect, when the upper boundary and the lower boundary coincide, the sampling of the reduced ciphertext space is non-deterministic sampling.

In this possible implementation manner, the last sampling of the ciphertext space adopts non-deterministic sampling to determine the ciphertext index value, which can resist inference attacks.

In a possible implementation manner of the first aspect, the first statement indicates an insert operation or an update operation, and the method further includes: performing symmetric encryption processing on the plaintext data to obtain ciphertext data of the plaintext data; the second statement further includes: Or indicate the ciphertext data, and the ciphertext data is stored in the corresponding storage location by the cloud device.

In this possible implementation manner, when the first statement instructs to perform an insert operation or an update operation, the client will also send the ciphertext data corresponding to the plaintext data to the cloud device for storage, and the second statement may directly include the ciphertext data. The ciphertext data may also include a link to the storage location of the ciphertext data, and the link indicates the storage location of the ciphertext data.

In a possible implementation manner of the first aspect, when the first statement is used to perform a query operation, the method further includes: scrambling the second statement; receiving the query result returned by the cloud device, and descrambling the query result .

In this possible implementation manner, scrambling the second statement before sending the second statement can reduce the probability of query leakage. If the client performs scramble, after the cloud device returns the query result, the client decrypts the symmetric ciphertext. The decrypted query result may have some false positive results, but no false negative results. Then, the decrypted result will be filtered and checked, and then the final result will be output.

In a possible implementation manner of the first aspect, after the above steps obtain the first statement, the method further includes: sending an index creation statement to the cloud device, where the index creation statement indicates the specified column of the specified table of the first statement; receiving the cloud device The existing data on the specified column returned by the device; determine the ciphertext index value of the existing data; send the ciphertext index value of the existing data to the cloud device.

In this possible implementation manner, for the stock data in the cloud device, the ciphertext index value of the existing data can be determined by sampling the above method, and the ciphertext index value is inserted into the index structure, so that the stock data can be adapted The data management process for this application.

A second aspect of the present application provides a data management method, comprising: receiving a second statement from a client, where the second statement includes a ciphertext index value determined by the client according to information of plaintext data in response to the first statement, the first The statement includes plaintext data; in response to the second statement, establish a correspondence between the ciphertext index value and the information of the storage location of the ciphertext data in the index structure according to the ciphertext index value, or query the ciphertext data from the index structure The information of the storage location of the ciphertext data is the encrypted data corresponding to the plaintext data, and the information of the storage location indicates the storage location of the ciphertext data.

The solution provided in the second aspect is applied to a cloud device corresponding to the client of the first aspect, and the cloud device may be a physical machine or a virtual machine or a container. The features of the second aspect that are the same as those of the first aspect can be understood with reference to the introduction of the first aspect.

In the second aspect, the cloud device can store the ciphertext index value determined by the client in the index structure, establish a correspondence between the ciphertext index value and the information of the storage location of the ciphertext data, and query the ciphertext data when it needs to be queried. When the ciphertext data corresponding to the text index value is retrieved, the corresponding ciphertext data can be queried according to the corresponding relationship in the index structure, and then corresponding operations on the ciphertext data can be performed. It can be seen that in this application, the ciphertext index value is used instead of the field in the data column as the key value in the conventional ordered index to realize the search for ciphertext data, and the ciphertext stored in the table can be searched without adding data table fields. The data is queried based on the order, thereby reducing the space occupied by the expansion of the table used to store the ciphertext data, and improving the scalability of the stored data in the cloud device. That is to say, the solution of the present application has the advantages of not changing the interaction mode, not increasing the number of extra interactions, maintaining the efficiency of conventional queries, not adding data table fields, not changing the conventional index function, and not adding additional SQL statements to change the query mode. The function based on sequential operation is implemented.

In a possible implementation manner of the second aspect, the second statement indicates an insert operation, and before establishing the corresponding relationship, the method further includes: determining ciphertext data corresponding to the plaintext data according to the second statement; storing the ciphertext data in a The corresponding storage location, where the storage location is the location indicated by the storage location information in the corresponding relationship.

In this possible implementation manner, when the second statement sent by the client indicates an insert operation, the cloud device will first store the ciphertext data in a corresponding storage location, and the storage location may be a table for storing ciphertext data One or more rows of a certain column, and then the cloud device establishes the corresponding relationship between the ciphertext index value and the information of the storage location of the ciphertext data in the index structure. In this way, when querying the ciphertext data in the future, The ciphertext data can be queried from the table for storing the ciphertext data through the corresponding relationship in the index structure, so that the ciphertext data can be quickly searched in the normal query mode.

In a possible implementation manner of the second aspect, the second statement indicates a query operation, and after querying the information of the storage location of the ciphertext data from the index structure, the method further includes: querying the ciphertext data according to the information of the storage location ; Return ciphertext data to the client.

In this possible implementation, when the second statement sent by the client indicates a query operation, the cloud device will query the index structure according to the ciphertext index value in the second statement, and use the ciphertext already established in the index structure to query. The corresponding relationship between the index value and the information of the storage location, query the information of the storage location of the ciphertext data, and then query the ciphertext data in the table according to the information of the storage location, and then return the ciphertext data to the client. text data. In this way, the fast search for ciphertext data can be achieved in the manner of maintaining the conventional query.

In a possible implementation manner of the second aspect, the second statement instructs to update the index value, the second statement further includes the original ciphertext index value of the plaintext data, and the method further includes: querying the original ciphertext index value according to the original ciphertext index value The correspondence between the ciphertext index and the information of the storage location; the correspondence between the original ciphertext index value in the index structure and the information of the storage location is updated according to the ciphertext index value.

In this possible implementation manner, if the second statement instructs to update the ciphertext index value, the second statement will include the old ciphertext index value and the new ciphertext index value of the plaintext data. The text index value finds the correspondence between the established old ciphertext index value and the information of the storage location of the ciphertext data in the index structure, and then replaces the old ciphertext index value in the corresponding relationship with the new ciphertext index value. The ciphertext index value, in this way, enhances the flexibility of managing the correspondence between the ciphertext index value and the information of the storage location of the ciphertext data.

In a possible implementation manner of the second aspect, the second statement indicates to update the ciphertext data, the second statement further includes or indicates the ciphertext data of the plaintext data, and the ciphertext index value of the plaintext data before the update, the The method further includes: querying the correspondence between the ciphertext index value of the plaintext data before the update and the information of the storage location according to the ciphertext index value of the plaintext data before the update; updating the plaintext before the update according to the ciphertext index value of the plaintext data The correspondence between the ciphertext index value of the data and the information of the storage location; the ciphertext data of the storage location is updated according to the ciphertext data of the plaintext data.

In this possible implementation, if the user updates the plaintext data, the corresponding ciphertext index value and new ciphertext data will be regenerated according to the updated plaintext data, and the client can use the new ciphertext data, new ciphertext data, The ciphertext index value and the ciphertext index value before the update are sent to the cloud device, so that the cloud device can find the corresponding relationship in the index structure according to the ciphertext index value before the update, and replace the corresponding relationship with the new ciphertext index value The ciphertext index value before the update is used in the corresponding storage location to update the old ciphertext data with the new ciphertext data according to the information of the storage location in the corresponding relationship. The update solution provided in this possible implementation manner can realize flexible management of the ciphertext data and the ciphertext index value in the cloud device.

In a possible implementation manner of the second aspect, the second statement indicates to delete the index value, and the method further includes: deleting the ciphertext index value from the correspondence between the ciphertext index value of the index structure and the information of the storage location .

In this possible implementation, if the user wants to delete the ciphertext index value of a certain plaintext data, the client terminal will send a second statement indicating deletion of the ciphertext index value to the cloud device. The text index value finds a corresponding relationship in the index structure, and then deletes the ciphertext index value in the corresponding relationship, or deletes the corresponding relationship.

In a possible implementation manner of the second aspect, the second statement indicates to delete the ciphertext data, and the method further includes: deleting the ciphertext data in the storage location according to the information of the storage location, and deleting the ciphertext index from the index structure Correspondence between the value and the information of the storage location of the ciphertext data.

In this possible implementation, if the user wants to delete the ciphertext data of a certain plaintext data, the client terminal will send a second statement indicating deletion of the ciphertext data to the cloud device, and the cloud device will index the ciphertext data according to the second statement. The corresponding corresponding relationship is found in the index structure, and then the ciphertext data is deleted from the corresponding position according to the information of the storage location in the corresponding relationship, and the corresponding relationship is deleted from the index structure.

In a possible implementation manner of the second aspect, the method further includes: receiving a statement of creating an index; querying a specified column of a specified table of the second statement according to the statement of creating an index; when there is existing data in the specified column, reporting to the client The terminal sends the existing data; receives the ciphertext index value of the existing data; establishes the correspondence between the ciphertext index value of the existing data and the information of the storage location of the existing data in the index structure.

In a third aspect of the present application, a client is provided for executing the method in the first aspect or any possible implementation manner of the first aspect. Specifically, the apparatus includes modules or units for executing the method in the first aspect or any possible implementation manner of the first aspect, such as: an acquiring unit, a processing unit, a sending unit, and a receiving unit.

In a fourth aspect of the present application, a cloud device is provided for executing the method in the second aspect or any possible implementation manner of the second aspect. Specifically, the apparatus includes modules or units for executing the method in the second aspect or any possible implementation manner of the second aspect, such as a receiving unit, a processing unit, and a sending unit.

A fifth aspect of the present application provides a client. The client may include at least one processor, memory and a communication interface. The processor is coupled with the memory and the communication interface. The memory is used to store instructions, the processor is used to execute the instructions, and the communication interface is used to communicate with other network elements under the control of the processor. The instructions, when executed by the processor, cause the processor to perform the method of the first aspect or any possible implementation of the first aspect.

In a sixth aspect of the present application, a cloud device is provided. The cloud device may include at least one processor, memory, and a communication interface. The processor is coupled with the memory and the communication interface. The memory is used to store instructions, the processor is used to execute the instructions, and the communication interface is used to communicate with other network elements under the control of the processor. The instructions, when executed by the processor, cause the processor to perform the method of the second aspect or any possible implementation of the second aspect.

A seventh aspect of the present application provides a computer-readable storage medium, where a program is stored in the computer-readable storage medium, and the program causes a processor to execute the first aspect and any one of the various implementation manners thereof.

In an eighth aspect of the present application, a computer-readable storage medium is provided, where a program is stored in the computer-readable storage medium, and the program causes a processor to execute the second aspect and any one of the various implementation manners thereof.

In a ninth aspect of the present application, a computer program product is provided, the computer program product includes computer-executable instructions, and the computer-executable instructions are stored in a computer-readable storage medium; at least one processor of the device can be read from the computer-readable storage medium. The computer executes instructions, and at least one processor executes the computer execute instructions to cause the device to implement the first aspect or a method provided by any possible implementation manner of the first aspect.

A tenth aspect provides a computer program product comprising computer-executable instructions stored in a computer-readable storage medium; at least one processor of the device can read the computer from the computer-readable storage medium Executing the instructions, at least one processor executes the computer-executable instructions to cause the device to implement the second aspect or a method provided by any possible implementation manner of the second aspect.

An eleventh aspect of the present application provides a chip system, where the chip system includes a processor for supporting a client to implement the functions involved in the first aspect or any possible implementation manner of the first aspect. In a possible design, the chip system may further include a memory for storing necessary program instructions and data of the client. The chip system may be composed of chips, or may include chips and other discrete devices.

A twelfth aspect of the present application provides a chip system, where the chip system includes a processor for supporting a cloud device to implement the functions involved in the second aspect or any possible implementation manner of the second aspect. In a possible design, the chip system may further include a memory for storing necessary program instructions and data of the cloud device. The chip system may be composed of chips, or may include chips and other discrete devices.

A nineteenth aspect of the present application provides a data management system. The data management includes a client and a cloud device, the client is used to execute the functions involved in the first aspect or any possible implementation manner of the first aspect, and the cloud device is used to execute the second aspect or the second aspect The functions involved in any of the possible implementations.

It can be understood that the client, cloud device, computer storage medium, computer program product or chip system provided above are all used to execute the corresponding data management method provided above. Therefore, the beneficial effects that can be achieved can be referred to. The beneficial effects in the corresponding methods provided above will not be repeated here.

Description of drawings

1 is a schematic structural diagram of a data management system provided by an embodiment of the present application;

2A is a schematic diagram of a stand-alone database system;

2B is a schematic diagram of a cluster database system using a shared disk architecture;

2C is a schematic diagram of a cluster database system using a shared-nothing architecture;

3 is a schematic diagram of an embodiment of a data management method provided by an embodiment of the present application;

FIG. 4 is a schematic diagram of another embodiment of the data management method provided by an embodiment of the present application;

FIG. 5 is a schematic diagram of another embodiment of the data management method provided by the embodiment of the present application;

FIG. 6 is a schematic diagram of another embodiment of the data management method provided by an embodiment of the present application;

FIG. 7 is a schematic diagram of another embodiment of the data management method provided by an embodiment of the present application;

FIG. 8 is a schematic diagram of another embodiment of a data management method provided by an embodiment of the present application;

FIG. 9 is a schematic diagram of another embodiment of the data management method provided by an embodiment of the present application;

FIG. 10 is a schematic diagram of another embodiment of the data management method provided by the embodiment of the present application;

FIG. 11 is a schematic structural diagram of a client provided by an embodiment of the present application;

12 is a schematic structural diagram of a cloud device provided by an embodiment of the present application;

FIG. 13 is a schematic structural diagram of a client provided by an embodiment of the present application;

FIG. 14 is a schematic structural diagram of a cloud device provided by an embodiment of the present application.

Detailed ways

The embodiments of the present application will be described below with reference to the accompanying drawings. Obviously, the described embodiments are only a part of the embodiments of the present application, rather than all the embodiments. Those of ordinary skill in the art know that, with the development of technology and the emergence of new scenarios, the technical solutions provided in the embodiments of the present application are also applicable to similar technical problems.

The terms "first", "second" and the like in the description and claims of the present application and the above drawings are used to distinguish similar objects, and are not necessarily used to describe a specific order or sequence. It is to be understood that the data so relied upon can be interchanged under appropriate circumstances so that the embodiments described herein can be practiced in sequences other than those illustrated or described herein. Furthermore, the terms "comprising" and "having" and any variations thereof, are intended to cover non-exclusive inclusion, for example, a process, method, system, product or device comprising a series of steps or units is not necessarily limited to those expressly listed Rather, those steps or units may include other steps or units not expressly listed or inherent to these processes, methods, products or devices.

Embodiments of the present application provide a data management method, device, and system, which are used to reduce the space occupied by the expansion of a table for storing ciphertext data, and improve the scalability of stored data in a cloud device. Embodiments of the present application also provide corresponding apparatuses, systems, computer-readable storage media, computer program products, and the like. Each of them will be described in detail below.

Because the storage space of the client is limited, the user data of the client is usually stored in the cloud device. For the security of user data, these user data are usually stored in cloud devices in the form of ciphertext data. The cloud device can manage the stored ciphertext data. The system formed by the client and the cloud device related to the embodiment of the present application is called a data management system, and the data management system can be understood with reference to FIG. 1 .

As shown in Figure 1, the data management system can include clients and cloud devices. There can be one or more clients and one or more cloud devices. Different cloud devices can manage data on different clients, such as : Cloud device 1 can manage data on clients in region 1, and cloud device 2 can manage data on clients in region 2. Different cloud devices may also manage different types of user data, for example, cloud device 1 manages data of type A generated by the client, and cloud device 2 manages data of type B generated by the client.

The client may be hardware (eg, a terminal device) or software (eg, an application (application, APP)).

If the client is a terminal device, the terminal device (also referred to as user equipment (UE)) is a device with wireless transceiver functions that can be deployed on land, including indoor or outdoor, handheld or vehicle-mounted; Can be deployed on water (such as ships, etc.); can also be deployed in the air (such as aircraft, balloons and satellites, etc.). The terminal may be a mobile phone (mobile phone), a tablet computer (pad), a computer with a wireless transceiver function, a virtual reality (VR) terminal, an augmented reality (AR) terminal, or a terminal in an industrial control (industrial control). Wireless terminal, wireless terminal in self driving, wireless terminal in remote medical, wireless terminal in smart grid, wireless terminal in transportation safety, smart city Wireless terminals in (smart city), wireless terminals in smart homes (smart home), wireless terminals in the Internet of Things (IoT), etc.

Cloud devices can be physical machines or virtual machines (VMs) or containers. The above-mentioned cloud device can be a device carrying a database management system (database management system, DBMS) in a database system (database system), and the method provided in the embodiment of the present application can be implemented as a part of the database management system, or as an independent component . The methods provided by the embodiments of the present application can be applied to a single-machine database system or a cluster database system. A database system generally consists of the following three parts: (1) Database (DB), which refers to a collection of organized and sharable data stored in a computer for a long time. The data in the database is organized, described and stored according to a certain mathematical model, with less redundancy, high data independence and easy expansion, and can be shared by various users. (2) Hardware, including data storage required to store data, such as memory and/or disk. (3) Software, including DBMS, DBMS is the core software of the database system, is used to scientifically organize and store data, and efficiently acquire and maintain data. The database engine is the core component of DBMS.

Specifically, FIG. 2A is a schematic diagram of a stand-alone database system, including a database management system and a data storage (data storage), the database management system is used to provide services such as database query and modification, and the database management system stores data in the data storage. . In stand-alone database systems, the database management system and data storage are usually located on a single server, such as a symmetric multi-processor (SMP) server. The SMP server includes multiple processors, all of which share resources such as bus, memory, and I/O systems. The functions of the database management system may be implemented by one or more processors executing in-memory programs.

FIG. 2B is a schematic diagram of a cluster database system using a shared-storage architecture, including multiple nodes (nodes 1-N in FIG. 2B ), each node is deployed with a database management system, which provides database queries for users respectively and modification services, multiple database management systems store shared data in the shared data storage, and perform read and write operations on the data in the data storage through the switch. Shared data storage can be a shared disk array. Nodes in a clustered database system can be physical machines, such as database servers, or virtual machines (virtual machines, VMs) or containers (containers) running on abstract hardware resources. When the node is a virtual machine or a container, the database management system deployed in the node is a DBMS instance (instance), and the DBMS may be a process or a thread. If the node is a physical machine, the switch is a storage area network (storage area network, SAN) switch, an Ethernet switch, a fiber optic switch or other physical switching devices. If the node is a virtual machine or container, the switch is a virtual switch.

2C is a schematic diagram of a cluster database system using a shared-nothing architecture, each node has its own exclusive hardware resources (such as data storage), an operating system and a database, and the nodes communicate through a network. Under this system, data will be allocated to each node according to the database model and application characteristics, and the query task will be divided into several parts, which will be executed in parallel on all nodes, and calculated in cooperation with each other, providing database services as a whole, and all communication functions are in It is implemented on a high-bandwidth network interconnection system. Like the cluster database system of the shared-storage architecture described in FIG. 2B , the nodes here can be either physical machines or virtual machines.

In all the embodiments of the present application, the data storage (data storage) of the database system includes but is not limited to solid state drives (SSD), disk arrays or other types of non-transitory computer-readable media. Although the database is not shown in FIGS. 2A-2C, it should be understood that the database is stored in the data storage. Those skilled in the art will appreciate that a database system may include fewer or more components than those shown in FIGS. 2A-2C, or components that are different from those shown in FIGS. 2A-2C. FIG. 2C only shows components more related to the implementations disclosed in the embodiments of the present application. For example, although 4 nodes have been described in FIGS. 2B and 2C, those skilled in the art will understand that a clustered database system may include any number of nodes. The database management system functions of each node may be implemented by an appropriate combination of software, hardware and/or firmware running on each node, respectively.

The above database systems in FIGS. 2A to 2C all include nodes, and the structures of the nodes are described below with reference to the accompanying drawings. The node may include at least one processor, a non-transitory computer-readable medium storing executable code, and a database management system. The executable code, when executed by the at least one processor, is configured to implement the components and functions of the database management system. A non-transitory computer-readable medium may include one or more non-volatile memories including, by way of example, semiconductor memory devices such as erasable programmable read only memory (EPROM), Electrically erasable programmable read only memory (EEPROM) and flash memory (flash memory); magnetic disks, such as internal hard disks or removable disks, magneto optical disks, As well as CD-ROM and DVD-ROM. In addition, a non-transitory computer-readable medium can also include any device configured as main memory. The at least one processor may include any type of general purpose computing circuit or special purpose logic circuit, such as a field-programmable gate array (FPGA) or an application specific integrated circuit (ASIC). At least one processor 104 may also be one or more processors, such as a CPU, coupled to one or more semiconductor substrates.

Database management systems support structured query language (SQL). In general, SQL refers to a special-purpose programming language designed to manage data held in relational databases. SQL can refer to various types of data-related languages, including, for example, data definition languages and data manipulation languages, where the scope of SQL can include data insertion, query, update and delete, schema creation and modification, and data access control. Additionally, in some examples, SQL may include descriptions related to various language elements, including clauses, expressions, predicates, and query statements, which are also often referred to simply as "query". For example, clauses can refer to various components of statements and queries, and in some cases, clauses can be considered optional. Additionally, expressions may be configured to produce scalar values and/or tables that include columns and/or rows of data. Additionally, predicates can be configured to specify conditions for adjusting the effects of statements and queries.

A query statement is a request to view, access and/or manipulate data stored in a database. A database management system can receive queries in SQL format (called SQL queries) from clients. The SQL query may also be referred to as an SQL statement. Generally, the database management system generates query results corresponding to the query by accessing relevant data from the database and manipulating the relevant data, and returning the query results to the database client. A database is a collection of data organized, described and stored according to a certain mathematical model. A database can include one or more database structures or formats, such as row storage and column storage.

The above cloud device can be applied to a database scenario or a non-database scenario. Regardless of whether the cloud device is applied to a database scenario, the data management method provided by the embodiment of the present application can be applied. The data management method provided by the embodiments of the present application will be introduced below with reference to the accompanying drawings.

A schematic diagram of an embodiment of a data management method is shown in FIG. 3 . An embodiment of the data management method provided by the embodiment of the present application includes:

101. The client obtains a first statement, where the first statement includes plaintext data.

The first statement may be a first statement based on sequential operations.

Plaintext data can also be described as "the plaintext of the data". Many plaintext data are based on sequential records, such as employee information lists, student information lists and other data, which are all recorded based on sequential records. These sequential records also need to be arranged in order after being encrypted by the user key. Data can also be referred to as data with sequential requirements.

The table is based on sequential records and can be understood by referring to Table 1 below.

Table 1: Employee Information Form

标识logo	姓名Name	年龄age	部门department
00010001	赵一Zhao Yi	24twenty four	品管quality control
00020002	李二Li Er	2626	生产Production
00030003	张三Zhang San	2828	工程project
……...	……...	……...	……...

The plaintext data may be any column in Table 1, or may be information of a certain row or certain rows in a certain column.

The encryption method for these order-required data can be order-preserving encryption (OPE), order-revealing encryption (ORE), or other order-based encryption methods. In the present application, statements for operations on these sequence-related data may be referred to as statements based on sequence operations. Input conditions based on sequential operations can include comparison operators, range queries, sorting (ORDER BY), minimum (minimum, MIN), maximum (maximum, MAX), and sorting (SORT), etc.

The first statement may be a structured query language (SQL) statement. The first statement is typically a statement generated based on user input. For example: a statement generated by a query condition input by a user, or a statement generated by an insert instruction, an update instruction or a delete instruction input by the user.

102. The client determines the ciphertext index value according to the information of the plaintext data.

The ciphertext index value refers to an index value that has a pointing relationship with the ciphertext data.

103. The client sends a second sentence to the cloud device, where the second sentence includes a ciphertext index value. Accordingly, the cloud device receives the second sentence.

The second statement may also be an SQL statement. The operation indicated by the second statement is the same as the operation indicated by the first statement.

104. In response to the second statement, the cloud device establishes a correspondence between the ciphertext index value and the information of the storage location of the ciphertext data in the index structure according to the ciphertext index value, or queries the index structure for the information of the ciphertext data. The information of the storage location, the ciphertext data is the encrypted data corresponding to the plaintext data, and the information of the storage location indicates the storage location of the ciphertext data.

The ciphertext data is encrypted data corresponding to the plaintext data, and the storage location information indicates the storage location of the ciphertext data.

The index structure is a structure established by the cloud device to store the correspondence between the ciphertext index value and the information of the storage location of the ciphertext data. The index structure can be a tree structure, such as a B-tree, or other type of structure. The information on the storage location of the ciphertext data may include an address of the storage location or an identification of the ciphertext data in the stored list. If the operation indicated by the second statement is an insert operation, the cloud device will establish a correspondence between the ciphertext index value and the information of the storage location of the ciphertext data in the index structure. For a query operation, an update operation or a deletion operation, the cloud device will query the information of the storage location of the ciphertext data from the index structure, and then can query the ciphertext data according to the information of the storage location.

In the solution provided by this embodiment of the present application, the client can generate a ciphertext index value for plaintext data based on sequential operations, and then the cloud device can store the ciphertext index value in an index structure to establish a relationship between the ciphertext index value and the ciphertext data. The corresponding relationship between the information of the storage location, when the ciphertext data corresponding to the ciphertext index value needs to be queried, the corresponding ciphertext data can be queried according to the corresponding relationship in the index structure, and then the corresponding ciphertext data can be executed. operate. It can be seen that in this application, the ciphertext index value is used instead of the field in the data column as the key value in the conventional ordered index to realize the search for ciphertext data without adding data table fields, and the ciphertext data stored in the table can be searched Sequence-based queries are performed, thereby reducing the space occupied by the expansion of tables used to store ciphertext data, and improving the scalability of stored data in cloud devices. That is to say, the solution of the present application has the advantages of not changing the interaction mode, not increasing the number of extra interactions, maintaining the efficiency of conventional queries, not adding data table fields, not changing the conventional index function, and not adding additional SQL statements to change the query mode. The function based on sequential operation is implemented.

Optionally, the information of the plaintext data involved in the foregoing step 102 may include the value of the plaintext data, the type of the plaintext data, and the value range of the plaintext data. The value range of the plaintext data may include the size of the plaintext data or the lower boundary of the plaintext data.

In the embodiment of the present application, the value of the plaintext data, the type of the plaintext data, and the value range of the plaintext data can be normalized to obtain the plaintext value, the plaintext space and the ciphertext space; Text space, determine the ciphertext index value.

The plaintext value is the normalized plaintext value, and the plaintext space is also the normalized plaintext space.

Wherein, the above process of determining the ciphertext index value according to the plaintext value, the plaintext space and the ciphertext space can be performed by a binary recursion method, and the process can include: sampling in a sampling interval of the ciphertext space to obtain sampling points, sampling intervals Corresponds to the midpoint of the plaintext space; according to the midpoint and the plaintext value, the plaintext space and the ciphertext space are reduced to obtain the reduced plaintext space and the reduced ciphertext space, and the reduced plaintext space is bounded by the midpoint and contains the plaintext value , the reduced ciphertext space is bounded by the sampling point; the above steps of sampling and reducing the plaintext space and the ciphertext space are repeated until the upper and lower boundaries of the reduced plaintext space coincide, and the corresponding The sampling point of the reduced ciphertext space is the ciphertext index value.

The above process of determining the ciphertext index value can be understood by referring to FIG. 4 . As shown in Figure 4, the process of determining the ciphertext index value may include:

201. The client parses the first statement, and determines the value of the plaintext data, the data type of the plaintext data, and the value range of the plaintext data.

The value range of the plaintext data may be determined according to the data type of the plaintext data, or may be a preconfigured default range, or may be a range dynamically input by the user.

The types of plaintext data can include integer (int), floating-point (float), string (string), and character (char). Moreover, integers can also be subdivided into int4 and int8, etc. It can be subdivided into floating-point types with different granularities, string types can also be subdivided into long strings and short strings, and character types can also be subdivided into readable characters and full characters. The value range of the plaintext data is related to the type of the plaintext data. For example, if the type of the plaintext data is int4, the value range of the plaintext data can be [-2 ³¹ , 2 ³¹ ].

202. The client determines the normalization parameter of the plaintext data according to the type of the plaintext data and the value range of the plaintext data.

203. The client performs normalization processing on the value of the plaintext data according to the normalization parameter, so as to obtain the plaintext value, the plaintext space and the ciphertext space.

The process of normalization processing can be different processing methods for different types, such as: normalization processing methods such as translation or shift for integer types, and normalization processing methods such as truncation and compression for string types. For floating-point types, normalization methods such as truncation and translation are used.

For example: Integer (int1, int2, int4, int8): Negative numbers need to be translated into non-negative numbers according to the normalization parameters. In the case of exceeding the limit after int8 encryption, the BN library in the openssl open source library can be uniformly used before encryption (the BIGNUM library is used for those beyond the range of int8 after conversion), which makes the actual application data range of this application unlimited.

Character type (text, varchar(n), char, char(n), varchar2(n), bytea): first note n is the size of the valid character space of the current type + 1, and the full valid character space such as bytea is 256. The long string intercepts the high-order fixed-length string according to the normalization parameter, and the low-order complement of the short string is 0, and then converts the string to an n-ary number, and then transfers it to the BN structure.

Floating-point number types (float4, float8, double precision): The normalized structure is a concatenated significand of the exponent bit, and negative numbers and negative exponents are supported. Note that the current type maximum exponent is emax, and the exponent is exp. The exponent bit is corrected to emax-exp for negative numbers, and 3*emax+exp for positive numbers. The significant digits (decimal) of negative numbers are corrected digit-by-digit to 9-native significant digits. In the case of different precisions, if the number of significant digits is insufficient, the low digits of the significant digits should be filled with 0 according to the normalization parameter and then cascaded. If the significant digits are too long, the low digits should be truncated.

In order to reduce the case of weak keys with continuous ciphertext, the normalized plaintext value can be uniformly multiplied by the same ratio (for example, 8) to limit the existence of two ciphertexts that differ by less than the multiplication ratio. The multiplication ratio refers to the normalization ratio. The scale by which the normalized plaintext value is multiplied.

The plaintext space is determined by the type of plaintext data and the upper and lower boundaries of the plaintext data determined by the normalization parameter. The size of the ciphertext space can generally be a fixed multiple of the bit length of the size of the plaintext space (such as 1.3 times, 1.5 times, of course, other multiples, which are not limited in this application), and exceed a certain lower limit (for example, limit The bit length of the ciphertext space is at least 10 bits longer than the plaintext), and the lower bound of the ciphertext space can be 1.

In this application, the ciphertext space is obtained by enlarging the plaintext space according to the expansion coefficient. In this application, normalization parameters are added for different types of plaintext data and different normalization processing methods are adopted, so that the ciphertext index value generation algorithm of this application can be adapted to all data types without input range limitation.

The plaintext space is a range of values, including upper and lower boundaries. For example, the plaintext space is expressed as [a1, a2], and the ciphertext space is obtained by enlarging the plaintext space according to the expansion coefficient. For example, the ciphertext space can be expressed as [ b1,b2].

204. The client performs sampling in the sampling interval of the ciphertext space to obtain sampling points, and the sampling interval corresponds to the midpoint of the plaintext space.

The plaintext space corresponds to the ciphertext space. The midpoint of the plaintext space refers to the midpoint (mid) determined by the upper and lower boundaries of the plaintext space, that is, half of the sum of the upper and lower boundaries of the plaintext space is The midpoint of this plaintext space. For example: the midpoint of [a1, a2] is (a1+a2)/2. Because the ciphertext space is larger than the plaintext space, the midpoint of the plaintext space corresponds to a sampling interval of the ciphertext space. The client can perform deterministic sampling in this sampling interval, or it can be understood as pseudo-random sampling, that is, according to The user key is sampled, and the sampling point (y) is obtained in the sampling interval.

The relational expression of the sampling point y can be expressed as: y=unisample([b1+mid-a1,b2-a2+mid]*K _sam ,coin), where coin=SHA256(mid‖key), where SHA256 represents For the secure hash function, K _sam is a parameter added before sampling. For example, the value can be 0.9. Adding this K _sam parameter can increase the smoothness of the actual ciphertext distribution. key is a secure random number or user key.

205. The client reduces the plaintext space and the ciphertext space according to the midpoint and the plaintext value, so as to obtain a reduced plaintext space and a reduced ciphertext space.

The reduced plaintext space is bounded by the midpoint and contains the plaintext value, and the reduced ciphertext space is bounded by the sampling point.

Repeat the above steps of sampling and reducing the plaintext space and the ciphertext space until the upper boundary of the reduced plaintext space and the lower boundary coincide, and the sampling point of the reduced ciphertext space corresponding to the coincidence of the upper boundary and the lower boundary is the ciphertext index. value.

According to the size relationship between the midpoint (mid) and the plaintext value (m), determining the reduced plaintext space and the reduced ciphertext space may include the case where the plaintext value is greater than the midpoint, or may include the case where the plaintext value is smaller than the midpoint. The comparison relationship and the corresponding result can be expressed as: if m>mid, the reduced plaintext space is [mid+1, a2], and the reduced ciphertext space is [y+1, b2]; if m≤mid, then The reduced plaintext space is [a1,mid], and the reduced ciphertext space is [b1,y].

It can also be described as: if m>mid, the reduced plaintext space starts from the next number from the midpoint to the lower boundary of the original plaintext space, which can be expressed as [mid+1, a2], and the reduced ciphertext space is From the next number of the sampling point to the lower boundary of the ciphertext space, it can be expressed as [y+1,b2]. If m≤mid, the reduced plaintext space is from the upper boundary of the plaintext space to the midpoint, which can be expressed as [a1,mid], and the reduced ciphertext space is from the upper boundary of the ciphertext space to the sampling point, which can be Represented as [b1,y].

206. The client performs multiple recursion, the upper and lower boundaries of the reduced plaintext space are equal, and the output sampling point is the ciphertext index value.

The upper and lower boundaries of the reduced plaintext space are equal, and they are also equal to the plaintext value and the midpoint, that is, it can be expressed as a1=a2=mid=m. At this time, the sampling of the ciphertext space corresponding to the reduced plaintext space The dot is the ciphertext index value. That is, when a1=a2=mid=m, the output y is the ciphertext index value. In the present application, obtaining the ciphertext index value in a recursive manner can reduce the probability of leakage of the ciphertext index value and improve the security of the ciphertext index value.

In the embodiment of the present application, sampling in the sampling interval corresponding to the midpoint of the plaintext space to obtain the sampling point may include: performing a modulo calculation on the size of the sampling interval by using an unpredictable pseudo-random number to obtain a modulo value; The corresponding sampling point is determined from the sampling interval according to the modulo value. In the sampling process, sampling is performed by taking the modulo value, which can improve the sampling efficiency, thereby improving the calculation efficiency of the ciphertext index value.

In this embodiment of the present application, when the upper boundary and the lower boundary coincide, the sampling of the reduced ciphertext space is non-deterministic sampling. This last sampling of the ciphertext space uses non-deterministic sampling to determine the ciphertext index value, which can resist inference attacks.

Optionally, before sending the second statement, the client may further scramble the second statement, which can reduce the probability of query leakage. If the client performs scramble, after the cloud device returns the query result, the client decrypts the symmetric ciphertext. The decrypted query result may have some false positive results, but no false negative results. Then, the decrypted result will be filtered and checked, and then the final result will be output.

In the embodiment of the present application, the above-mentioned first statement and second statement may indicate various operations such as insert, query, update, and delete. For different operations, the data management processes of the client and the cloud device are somewhat different. The statement and the second statement indicating an insert operation, a query operation, an update operation, and a delete operation introduce the data management process provided by the embodiments of the present application.

1. The first statement and the second statement indicate an insert operation.

As shown in FIG. 5 , another embodiment of the data management method provided by the embodiment of the present application may include:

301. The client side symmetrically encrypts the plaintext data in the first sentence to obtain ciphertext data.

302. The client determines the ciphertext index value according to the information of the plaintext data.

This step can be understood by referring to the previous process of determining the ciphertext index value, and details are not repeated here.

303. The client adds the ciphertext data and the ciphertext index value to the second statement.

If the ciphertext data is stored on another device, a link to the storage location of the ciphertext data can be added to the second sentence, so that the cloud device can obtain the ciphertext data through the link of the storage location.

304. The client sends the second sentence to the cloud device. Correspondingly, the cloud device receives the second sentence.

305. The cloud device parses the second sentence, and stores the ciphertext data in a corresponding storage location.

The second statement may carry the identifier of the table where the ciphertext data is to be stored, and the identifier of the column in the table. In this way, the cloud device can find the corresponding table according to the table identifier, then insert the data carried by the second statement into the corresponding column, and store the ciphertext data in the column indicated by the column identifier.

306. The cloud device establishes a correspondence between the ciphertext index value and the information of the storage location where the ciphertext data is located in the index structure.

The corresponding relationship is a key-value (key-value, KV) relationship, wherein the ciphertext index value is the key, and the information of the storage location is the value.

307. The cloud device returns an execution message to the client.

Such as: inserting a successful response message.

In the solution provided by the embodiment of the present application, the ciphertext index value can be inserted into the index structure, so that the ciphertext data can be quickly searched when the ciphertext data query is performed.

2. The first statement and the second statement indicate a query operation.

As shown in FIG. 6 , another embodiment of the data management method provided by the embodiment of the present application may include:

401. The client determines the ciphertext index value according to the information of the plaintext data in the first sentence.

402. The client adds the ciphertext index value to the second statement.

403. The client sends a second sentence to the cloud device. Correspondingly, the cloud device receives the second sentence.

404. The cloud device parses the second sentence, and searches for the KV relationship of the ciphertext index value from the index structure according to the ciphertext index value.

405. The cloud device queries the ciphertext data from the corresponding storage location according to the storage location information in the KV relationship of the ciphertext index value.

406. The cloud device returns a query result to the client, where the query result includes ciphertext data.

With the solution provided by the embodiment of the present application, ciphertext data can be quickly searched through the ciphertext index value and the KV relationship.

3. The first statement and the second statement indicate the operation of updating the index value.

As shown in FIG. 7 , another embodiment of the data management method provided by the embodiment of the present application may include:

501. The client determines the ciphertext index value according to the information of the plaintext data in the first sentence.

The ciphertext index value is a new ciphertext index value.

502. The client adds the ciphertext index value of the plaintext data and the original ciphertext index value of the plaintext data to the second statement.

503. The client sends a second sentence to the cloud device. Correspondingly, the cloud device receives the second sentence.

The second sentence includes the original ciphertext index value and the new ciphertext index value of the plaintext data.

504. The cloud device searches the index structure for the KV relationship including the original ciphertext index value according to the original ciphertext index value.

505. The cloud device replaces the original ciphertext index value in the KV relationship according to the new ciphertext index value.

506. The cloud device returns the execution result to the client.

The execution result may be a response to an index value update.

The solution provided by the embodiment of the present application enhances the flexibility of the management of the correspondence between the ciphertext index value and the information of the storage location of the ciphertext data.

4. The first statement and the second statement indicate the operation of updating the ciphertext data.

As shown in FIG. 8 , another embodiment of the data management method provided by this embodiment of the present application may include:

601. The client determines the ciphertext index value according to the information of the plaintext data in the first sentence.

The plaintext data is the updated plaintext data, and the ciphertext index value is a new ciphertext index value.

602. The client performs symmetric encryption on the plaintext data to generate ciphertext data.

The ciphertext data is the ciphertext data corresponding to the plaintext data updated by the client.

603. The client adds the ciphertext data corresponding to the updated plaintext data, the new ciphertext index value and the ciphertext index value of the plaintext data before the update to the second sentence.

604. The client sends the second sentence to the cloud device. Correspondingly, the cloud device receives the second sentence.

The second sentence includes the ciphertext data corresponding to the updated plaintext data, as well as the new ciphertext index value and the ciphertext index value of the plaintext data before the update.

605. The cloud device searches the index structure for the KV relationship including the ciphertext index value of the plaintext data before the update according to the ciphertext index value of the plaintext data before the update.

606. The cloud device replaces the ciphertext data at the corresponding location with the ciphertext data corresponding to the updated plaintext data according to the storage location information in the KV relationship.

607. The cloud device replaces the ciphertext index value of the plaintext data before the update in the KV relationship according to the new ciphertext index value.

608. The cloud device returns the execution result to the client.

The execution result may be a response of updating the ciphertext data.

The solutions provided by the embodiments of the present application can realize flexible management of ciphertext data and ciphertext index values in the cloud device.

5. The first statement and the second statement indicate the operation of deleting the index value or the operation of deleting the ciphertext data.

As shown in FIG. 9 , another embodiment of the data management method provided by the embodiment of the present application may include:

701. The client determines the ciphertext index value according to the information of the plaintext data in the first sentence.

702. The client adds the ciphertext index value to the second statement.

703. The client sends a second sentence to the cloud device. Correspondingly, the cloud device receives the second sentence.

704. The cloud device searches for the corresponding KV relationship from the index structure according to the ciphertext index value in the second sentence.

705. The cloud device deletes the ciphertext index value from the KV relationship, or deletes the ciphertext data according to the information of the storage location in the KV relationship, and deletes the KV relationship.

706. The cloud device returns the execution result to the client.

The execution result may be a successful deletion response.

The above describes the execution process of inserting, querying, updating, and deleting operations designed by the client and cloud device in the data management process. Data, the embodiment of the present application also provides a corresponding management process, which will be understood below with reference to FIG. 10 .

As shown in FIG. 10 , another embodiment of the data management method provided by this embodiment of the present application may include:

801. The client sends an index creation statement to the cloud device. Correspondingly, the cloud device receives the create index statement.

Create index statement (create index). The CREATE INDEX statement indicates the specified column of the specified table of the first statement. The create statement will contain the identifier of the specified table (table ID) and the identifier of the specified column (column ID).

802. The cloud device queries the specified column of the specified table of the second statement according to the index creation statement.

803. When existing data exists in the specified column, the cloud device sends the existing data to the client. Correspondingly, the client receives the existing data on the specified column returned by the cloud device.

804. The client determines the ciphertext index value of the existing data.

805. The client sends the ciphertext index value of the existing data to the cloud device. Correspondingly, the cloud device receives the ciphertext index value of the existing data sent by the client.

The ciphertext index value of the existing data may be sent through an update statement.

806. The cloud device establishes a correspondence between the ciphertext index value of the existing data and the information of the storage location of the existing data in the index structure.

In this embodiment of the present application, the existing data in the cloud device can be adapted to the above-mentioned data management process. This process can be performed before the above insert, query, update and delete operations.

In the data management method provided by the embodiments of the present application, a Gauss order preserving encryption (GSOPE) algorithm is configured in the client, and the GSOPE algorithm is higher in computational efficiency than the existing BCLO algorithm or the Lewi-Wu algorithm. , and a set of experimental data is taken as an example for comparison and description.

Table 2: Experimental data (unit: microseconds)

	GSOPEGSOPE	BCLOBCLO	Lewi-Wu(分块为10)Lewi-Wu (blocks of 10)
INT4INT4	8888	3000+3000+	300300
INT8INT8	360360	7000+7000+	527527
FLOAT8FLOAT8	343343	不支持not support	不支持not support
0-1字符串[25]0-1 string[25]	9999	不支持not support	223223
CHAR[15](可读字符)CHAR[15] (readable characters)	515515	不支持not support	900+900+
CHAR[15](全字符)CHAR[15] (full character)	728728	不支持not support	1200+1200+

In Table 2, Lewi-Wu is a trapdoor block evolution algorithm used by the CLWW algorithm to reduce ciphertext leakage.

From the data comparison results in Table 2, it can be seen that for the plaintext data of INT4, using the GSOPE algorithm provided by this application only takes 88 microseconds, while using the BCLO algorithm requires more than 3000 microseconds, and using the Lewi-Wu algorithm also requires 300 microseconds, and for the float type, the BCLO algorithm and the Lewi-Wu algorithm do not support the calculation of the float, and the BCLO algorithm does not support the calculation of the string type and CHAR type. Although the Lewi-Wu algorithm supports the string type and CHAR type. However, the computational efficiency is far lower than the GSOPE algorithm provided in this application.

It can be seen from this that the GSOPE algorithm provided in the embodiment of the present application supports all data types of plaintext data, and there is no limitation on the data range objectively, and the range is controllable subjectively.

The above describes the method for the client and the cloud device to cooperate to complete the data management according to the embodiments of the present application. The following describes the client and the cloud device provided by the embodiments of the present application with reference to the accompanying drawings.

As shown in FIG. 11 , an embodiment of the client terminal 90 provided by this embodiment of the present application includes:

The obtaining unit 901 is configured to obtain a first sentence, where the first sentence includes plaintext data.

The processing unit 902 is configured to determine the ciphertext index value according to the information of the plaintext data acquired by the acquiring unit 901 .

The sending unit 903 is configured to send a second statement to the cloud device, where the second statement includes the ciphertext index value determined by the processing unit 902, and the ciphertext index value is used by the cloud device to establish the ciphertext index value and the ciphertext data in the index structure The corresponding relationship between the information of the storage location of the ciphertext data, or query the information of the storage location of the ciphertext data from the index structure, the ciphertext data is the encrypted data corresponding to the plaintext data, and the information of the storage location indicates the storage location of the ciphertext data.

In the solution provided by this embodiment of the present application, the client can generate a ciphertext index value for plaintext data based on sequential operations, and then the cloud device can store the ciphertext index value in an index structure to establish a relationship between the ciphertext index value and the ciphertext data. The corresponding relationship between the information of the storage location, when the ciphertext data corresponding to the ciphertext index value needs to be queried, the corresponding ciphertext data can be queried according to the corresponding relationship in the index structure, and then the corresponding ciphertext data can be executed. operate. It can be seen that in this application, the ciphertext index value is used instead of the field in the data column as the key value in the conventional ordered index to realize the search for ciphertext data, and the ciphertext stored in the table can be searched without adding a data table field. The data is queried based on the order, thereby reducing the space occupied by the expansion of the table used to store the ciphertext data, and improving the scalability of the stored data in the cloud device. That is to say, the solution of the present application has the advantages of not changing the interaction mode, not increasing the number of extra interactions, maintaining the efficiency of conventional queries, not adding data table fields, not changing the conventional index function, and not adding additional SQL statements to change the query mode. The function based on sequential operation is implemented.

Optionally, the information of the plaintext data includes the value of the plaintext data, the type of the plaintext data, and the value range of the plaintext data.

Optionally, the processing unit 902 is configured to perform normalization processing on the value of the plaintext data, the type of the plaintext data and the value range of the plaintext data to obtain the plaintext value, the plaintext space and the ciphertext space; space and ciphertext space, determine the ciphertext index value.

Optionally, the processing unit 902 is configured to perform sampling in the sampling interval of the ciphertext space to obtain a sampling point, and the sampling interval corresponds to the midpoint of the plaintext space; according to the midpoint and the plaintext value, reduce the plaintext space and the ciphertext space, In order to obtain the reduced plaintext space and the reduced ciphertext space, the reduced plaintext space is bounded by the midpoint and contains the plaintext value, and the reduced ciphertext space is bounded by the sampling point; repeat the above sampling and reduced plaintext space and ciphertext Space steps until the upper boundary of the reduced plaintext space and the lower boundary coincide, and the sampling point of the reduced ciphertext space corresponding to the coincidence of the upper boundary and the lower boundary is the ciphertext index value.

Optionally, the processing unit 902 is configured to perform modulo calculation on the size of the sampling interval by using an unpredictable pseudo-random number to obtain a modulo value; and determine a corresponding sampling point from the sampling interval according to the modulo value.

Optionally, when the upper boundary and the lower boundary coincide, the sampling of the reduced ciphertext space is non-deterministic sampling.

Optionally, the processing unit 902 is also used for the first statement to indicate an insert operation or an update operation, and symmetric encryption processing is performed on the plaintext data to obtain the ciphertext data of the plaintext data; the second statement also includes the ciphertext data, the ciphertext data. Stored in the corresponding storage location by the cloud device.

Optionally, the processing unit 902 is further configured for the first statement to indicate a query operation, and to scramble the second statement.

The receiving unit 904 is configured to receive the query result returned by the cloud device.

The processing unit 902 is further configured to descramble the query result.

Optionally, the sending unit 903 is further configured to send a create index statement to the cloud device, where the create index statement indicates the specified column of the specified table of the first statement.

The receiving unit 904 is configured to receive the existing data on the specified column returned by the cloud device.

The processing unit 902 is further configured to determine the ciphertext index value of the existing data.

The sending unit 903 is also used to send the ciphertext index value of the existing data to the cloud device.

As shown in FIG. 12 , an embodiment of the cloud device 100 provided by this embodiment of the present application includes:

The receiving unit 1001 is configured to receive a second sentence from a client, where the second sentence includes a ciphertext index value determined by the client according to information of plaintext data in response to the first sentence, and the first sentence includes plaintext data.

The processing unit 1002 is configured to, in response to the second statement received by the receiving unit 1001, establish a correspondence between the ciphertext index value and the information of the storage location of the ciphertext data in the index structure according to the ciphertext index value, or, from the index In the structure, the information of the storage location of the ciphertext data is queried, the ciphertext data is the encrypted data corresponding to the plaintext data, and the information of the storage location indicates the storage location of the ciphertext data.

In this embodiment of the present application, the cloud device may store the ciphertext index value determined by the client in the index structure, and establish a correspondence between the ciphertext index value and the information of the storage location of the ciphertext data. When the ciphertext data corresponding to the text index value is retrieved, the corresponding ciphertext data can be queried according to the corresponding relationship in the index structure, and then corresponding operations on the ciphertext data can be performed. It can be seen that in this application, the ciphertext index value is used instead of the field in the data column as the key value in the conventional ordered index to realize the search for ciphertext data, and the ciphertext stored in the table can be searched without adding data table fields. The data is queried based on the order, thereby reducing the space occupied by the expansion of the table used to store the ciphertext data, and improving the scalability of the stored data in the cloud device. That is to say, the solution of the present application has the advantages of not changing the interaction mode, not increasing the number of extra interactions, maintaining the efficiency of conventional queries, not adding data table fields, not changing the conventional index function, and not adding additional SQL statements to change the query mode. The function based on sequential operation is implemented.

Optionally, the processing unit 1002 is further configured to, if the second statement indicates an insert operation, before establishing the corresponding relationship, determine the ciphertext data corresponding to the plaintext data according to the second statement; store the ciphertext data in a corresponding storage location, and store the The position is the position indicated by the information of the storage position in the corresponding relationship.

Optionally, the processing unit 1002 is further configured to query the ciphertext data according to the information of the storage location after querying the information of the storage location of the ciphertext data from the index structure if the second statement indicates a query operation.

The sending unit 1003 is configured to return ciphertext data to the client.

Optionally, the processing unit 1002 is further configured to query the original ciphertext index and store the original ciphertext index according to the original ciphertext index value if the second statement indicates to update the index value, and the second statement also includes the original ciphertext index value of the plaintext data. Correspondence between the information of the location; update the correspondence between the original ciphertext index value in the index structure and the information of the storage location according to the ciphertext index value.

Optionally, the processing unit 1002 is further configured to, if the second statement indicates to update the ciphertext data, the second statement also includes or indicates the ciphertext data of the plaintext data, and the ciphertext index value of the plaintext data before the update, according to The ciphertext index value of the plaintext data before the update is to query the correspondence between the ciphertext index value of the plaintext data before the update and the information of the storage location; update the ciphertext index of the plaintext data before the update according to the ciphertext index value of the plaintext data Correspondence between the value and the information of the storage location; update the ciphertext data of the storage location according to the ciphertext data of the plaintext data.

Optionally, the processing unit 1002 is further configured to delete the ciphertext index value from the correspondence between the ciphertext index value of the index structure and the information of the storage location if the second statement indicates to delete the index value.

Optionally, the processing unit 1002 is further configured to delete the ciphertext data in the storage location according to the information of the storage location if the second statement indicates to delete the ciphertext data, and delete the difference between the ciphertext index value and the ciphertext data from the index structure. The correspondence between the information of the storage location.

Optionally, the receiving unit 1001 is further configured to receive an index creation statement.

The processing unit 1002 is further configured to query the specified column of the specified table of the second statement according to the index creation statement.

The sending unit 1003 is configured to send the existing data to the client when existing data exists in the specified column.

The receiving unit 1001 is further configured to receive the ciphertext index value of the existing data.

The processing unit 1002 is further configured to establish a correspondence between the ciphertext index value of the existing data and the information of the storage location of the existing data in the index structure.

The functions of the client and the cloud device described above can be understood by referring to the corresponding descriptions in the foregoing parts of FIG. 1 to FIG. 10 , which will not be repeated here.

FIG. 13 is a block diagram showing a partial structure of a mobile phone provided by an embodiment of the present application. 13 , the mobile phone includes: a radio frequency (: Radio Frequency,: RF) circuit 810, a memory 820, an input unit 830, a display unit 840, a sensor 850, an audio circuit 860, a wireless fidelity (WiFi) module 870, a processing 880, and the power supply 890 and other components. Those skilled in the art can understand that the structure of the mobile phone shown in FIG. 13 does not constitute a limitation on the mobile phone, and may include more or less components than shown, or combine some components, or arrange different components.

The following is a detailed introduction to each component of the mobile phone with reference to Figure 13:

The RF circuit 810 can be used for receiving and sending signals during sending and receiving of information or during a call. In particular, after receiving the downlink information of the base station, it is processed by the processor 880; in addition, the designed uplink data is sent to the base station. Typically, the RF circuit 810 includes, but is not limited to, an antenna, at least one amplifier, a transceiver, a coupler, a Low Noise Amplifier (LNA), a duplexer, and the like.

The memory 820 can be used to store software programs and modules, and the processor 880 executes various functional applications and data processing of the mobile phone by running the software programs and modules stored in the memory 820 . The memory 820 may mainly include a stored program area and a stored data area, wherein the stored program area may store an operating system, an application program required for at least one function (such as a sound playback function, an image playback function, etc.), etc.; According to the data created by the mobile phone (such as audio data, phone book, etc.) and so on. Additionally, memory 820 may include high-speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other volatile solid state storage device.

The input unit 830 can be used to receive information input by the user, such as a user password, and generate key signal input related to user settings and function control of the mobile phone. Specifically, the input unit 830 may include a touch panel 831 and other input devices 832 . The touch panel 831, also referred to as a touch screen, can collect the user's touch operations on or near it (such as the user's finger, stylus, etc., any suitable object or attachment on or near the touch panel 831). operation), and drive the corresponding connection device according to the preset program. Optionally, the touch panel 831 may include two parts, a touch detection device and a touch controller. Among them, the touch detection device detects the user's touch orientation, detects the signal brought by the touch operation, and transmits the signal to the touch controller; the touch controller receives the touch information from the touch detection device, converts it into contact coordinates, and then sends it to the touch controller. To the processor 880, and can receive the command sent by the processor 880 and execute it. In addition, the touch panel 831 can be implemented in various types such as resistive, capacitive, infrared, and surface acoustic waves. Besides the touch panel 831 , the input unit 830 may further include other input devices 832 . Specifically, other input devices 832 may include, but are not limited to, one or more of physical keyboards, function keys (such as volume control keys, switch keys, etc.), trackballs, mice, joysticks, and the like.

The display unit 840 may be used to display the interface content of the APP. The display unit 840 may include a display panel 841. Optionally, a liquid crystal display (English full name: Liquid Crystal Display, English abbreviation: LCD), an organic light-emitting diode (English full name: Organic Light-Emitting Diode, English abbreviation: OLED), etc. The display panel 841 is configured in the form. Further, the touch panel 831 can cover the display panel 841, and when the touch panel 831 detects a touch operation on or near it, it transmits it to the processor 880 to determine the type of the touch event, and then the processor 880 determines the type of the touch event according to the touch event. Type provides corresponding visual output on display panel 841 . Although in FIG. 13, the touch panel 831 and the display panel 841 are used as two independent components to realize the input and input functions of the mobile phone, in some embodiments, the touch panel 831 and the display panel 841 can be integrated to form Realize the input and output functions of the mobile phone.

The cell phone may also include at least one sensor 850, such as a light sensor, a motion sensor, and other sensors. Specifically, the light sensor may include an ambient light sensor and a proximity sensor, wherein the ambient light sensor may adjust the brightness of the display panel 841 according to the brightness of the ambient light, and the proximity sensor may turn off the display panel 841 and/or when the mobile phone is moved to the ear. or backlight. As a kind of motion sensor, the accelerometer sensor can detect the magnitude of acceleration in all directions (usually three axes), and can detect the magnitude and direction of gravity when it is stationary. games, magnetometer attitude calibration), vibration recognition related functions (such as pedometer, tapping), etc.; as for other sensors such as gyroscope, barometer, hygrometer, thermometer, infrared sensor, etc. Repeat.

The audio circuit 860, the speaker 861, and the microphone 862 can provide an audio interface between the user and the mobile phone. The audio circuit 860 can transmit the received audio data converted electrical signals to the speaker 861, and the speaker 861 converts them into sound signals for output; on the other hand, the microphone 862 converts the collected sound signals into electrical signals, and the audio circuit 860 converts the collected sound signals into electrical signals. After receiving, it is converted into audio data, and then the audio data is output to the processor 880 for processing, and then sent to, for example, another mobile phone through the RF circuit 810, or the audio data is output to the memory 820 for further processing.

WiFi is a short-distance wireless transmission technology. The mobile phone can help users to send and receive emails, browse web pages, and access streaming media through the WiFi module 870. It provides users with wireless broadband Internet access. Although FIG. 13 shows the WiFi module 870, it can be understood that it is not a necessary component of the mobile phone, and can be completely omitted as required within the scope of not changing the essence of the invention.

The processor 880 is the control center of the mobile phone, using various interfaces and lines to connect various parts of the entire mobile phone, by running or executing the software programs and/or modules stored in the memory 820, and calling the data stored in the memory 820. Various functions of the mobile phone and processing data, so as to monitor the mobile phone as a whole. Optionally, the processor 880 may include one or more processing units; preferably, the processor 880 may integrate an application processor and a modem processor, wherein the application processor mainly processes the operating system, user interface, and application programs, etc. , the modem processor mainly deals with wireless communication. It can be understood that, the above-mentioned modulation and demodulation processor may not be integrated into the processor 880.

The mobile phone also includes a power supply 890 (such as a battery) for supplying power to various components. Preferably, the power supply can be logically connected to the processor 880 through a power management system, so as to manage charging, discharging, and power consumption management functions through the power management system.

Although not shown, the mobile phone may also include a camera, a Bluetooth module, and the like, which will not be repeated here.

In this embodiment of the present application, the processor 880 also has the function of data management of the client described above.

FIG. 14 is a schematic diagram of a possible logical structure of the cloud device involved in the above-mentioned embodiment provided by the embodiment of the present application. The cloud device 110 includes: a processor 1101 , a communication interface 1102 , a memory 1103 and a bus 1104 . The processor 1101 , the communication interface 1102 , and the memory 1103 are connected to each other through a bus 1104 . In this embodiment of the present application, the processor 1101 is configured to control and manage the actions of the cloud device 110. For example, the processor 1101 is configured to perform the verification process of the token by the cloud device in FIG. 3 to FIG. 10, and/or Additional procedures for the techniques described herein. The communication interface 1102 is used to support the cloud device 110 to communicate, for example, the communication interface 1102 can perform the steps of sending and receiving data in the above method embodiments. The memory 1103 is used to store program codes and data of the cloud device 110 .

The processor 1101 may be a central processing unit, a general-purpose processor, a digital signal processor, an application-specific integrated circuit, a field programmable gate array, or other programmable logic devices, transistor logic devices, hardware components, or any combination thereof. It may implement or execute the various exemplary logical blocks, modules and circuits described in connection with this disclosure. A processor may also be a combination that performs computing functions, such as a combination comprising one or more microprocessors, a combination of a digital signal processor and a microprocessor, and the like. The bus 1104 may be a Peripheral Component Interconnect (PCI) bus or an Extended Industry Standard Architecture (Extended Industry Standard Architecture, EISA) bus or the like. The bus can be divided into address bus, data bus, control bus and so on. For ease of presentation, only one thick line is shown in FIG. 14, but it does not mean that there is only one bus or one type of bus.

In another embodiment of the present application, a computer-readable storage medium is also provided, where computer-executable instructions are stored in the computer-readable storage medium, and when at least one processor of a device executes the computer-executable instructions, the device executes the above diagram 3 to FIG. 10 describe the data management method in some embodiments.

In another embodiment of the present application, a computer program product is also provided, the computer program product includes computer-executable instructions, and the computer-executable instructions are stored in a computer-readable storage medium; at least one processor of the device can be obtained from a computer-readable storage medium. Reading the storage medium reads the computer-executable instructions, and at least one processor executes the computer-executable instructions to cause the device to perform the data management methods described in the above-mentioned partial embodiments of FIG. 3 to FIG. 10 .

In another embodiment of the present application, a chip system is further provided, where the chip system includes a processor, and is configured to support a client to implement the data management methods described in the above-mentioned partial embodiments of FIG. 3 to FIG. 10 . In one possible design, the system-on-chip may also include memory for storing necessary program instructions and data. The chip system may be composed of chips, or may include chips and other discrete devices.

In another embodiment of the present application, a chip system is further provided, the chip system includes a processor, and is configured to support a cloud device to implement the data management methods described in the above-mentioned partial embodiments of FIG. 3 to FIG. 10 . In one possible design, the chip system may further include a memory for storing necessary program instructions and data. The chip system may be composed of chips, or may include chips and other discrete devices.

Those of ordinary skill in the art can realize that the units and algorithm steps of each example described in conjunction with the embodiments disclosed herein can be implemented in electronic hardware, or a combination of computer software and electronic hardware. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the technical solution. A skilled person can implement the described functions according to different methods for each specific application, but such implementation should not be considered beyond the scope of the embodiments of the present application.

Those skilled in the art can clearly understand that, for the convenience and brevity of description, the specific working process of the above-described systems, devices and units may refer to the corresponding processes in the foregoing method embodiments, which will not be repeated here.

In the several embodiments provided by the embodiments of the present application, it should be understood that the disclosed systems, devices and methods may be implemented in other manners. For example, the apparatus embodiments described above are only illustrative. For example, the division of units is only a logical function division. In actual implementation, there may be other division methods, for example, multiple units or components may be combined or integrated. to another system, or some features can be ignored, or not implemented. On the other hand, the shown or discussed mutual coupling or direct coupling or communication connection may be through some interfaces, indirect coupling or communication connection of devices or units, and may be in electrical, mechanical or other forms.

Units described as separate components may or may not be physically separated, and components shown as units may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution in this embodiment.

In addition, each functional unit in each embodiment of the embodiments of the present application may be integrated into one processing unit, or each unit may exist physically alone, or two or more units may be integrated into one unit.

The functions, if implemented in the form of software functional units and sold as stand-alone products or based, may be stored in a computer-readable storage medium. Based on this understanding, the technical solutions of the embodiments of the present application can be embodied in the form of software products in essence, or the parts that make contributions to the prior art or the parts of the technical solutions, and the computer software products are stored in a storage medium , including several instructions to cause a computer device (which may be a personal computer, a server, or a network device, etc.) to execute all or part of the steps of the methods in the embodiments of the present application. The aforementioned storage medium includes: U disk, mobile hard disk, read-only memory (Read-Only Memory, ROM), random access memory (Random Access Memory, RAM), magnetic disk or optical disk and other media that can store program codes .

The above are only specific implementations of the embodiments of the present application, but the protection scope of the embodiments of the present application is not limited thereto.

Claims

A method for data management, comprising:

obtaining a first statement, where the first statement includes plaintext data;

According to the information of the plaintext data, determine the ciphertext index value;

Send a second statement to the cloud device, the second statement includes the ciphertext index value, and the ciphertext index value is used by the cloud device to establish storage of the ciphertext index value and ciphertext data in an index structure The corresponding relationship between the information of the location, or the information of the storage location of the ciphertext data is queried from the index structure, the ciphertext data is the encrypted data corresponding to the plaintext data, and the information of the storage location indicates the ciphertext data. The storage location of the text data.
The method of claim 1, wherein:

The information of the plaintext data includes the value of the plaintext data, the type of the plaintext data, and the value range of the plaintext data.
The method according to claim 2, wherein the determining the ciphertext index value according to the information of the plaintext data comprises:

normalizing the value of the plaintext data, the type of the plaintext data and the value range of the plaintext data to obtain the plaintext value, the plaintext space and the ciphertext space;

The ciphertext index value is determined according to the plaintext value, the plaintext space and the ciphertext space.
The method according to claim 3, wherein the determining the ciphertext index value according to the plaintext value, the plaintext space and the ciphertext space comprises:

Sampling is performed in the sampling interval of the ciphertext space to obtain a sampling point, and the sampling interval corresponds to the midpoint of the plaintext space;

According to the midpoint and the plaintext value, the plaintext space and the ciphertext space are reduced to obtain a reduced plaintext space and a reduced ciphertext space, and the reduced plaintext space is bounded by the midpoint and includes the plaintext value, the reduced ciphertext space is bounded by the sampling point;

Repeat the above steps of sampling and reducing the plaintext space and the ciphertext space until the upper boundary of the reduced plaintext space and the lower boundary coincide, and the sampling point of the reduced ciphertext space corresponding to the coincidence of the upper boundary and the lower boundary is the ciphertext index value.
The method according to claim 4, wherein the sampling in the sampling interval of the ciphertext space to obtain sampling points comprises:

Perform modulo calculation on the size of the sampling interval by using an unpredictable pseudo-random number to obtain a modulo value;

The corresponding sampling point is determined from the sampling interval according to the modulo value.
The method according to claim 5, wherein when the upper boundary and the lower boundary coincide, the sampling of the reduced ciphertext space is non-deterministic sampling.
The method according to any one of claims 1-6, wherein the first statement indicates an insert operation or an update operation, and the method further comprises:

Symmetric encryption processing is applied to the plaintext data to obtain ciphertext data of the plaintext data;

The second sentence further includes or indicates the ciphertext data, and the ciphertext data is stored in a corresponding storage location by the cloud device.
The method according to any one of claims 1-6, wherein the first statement indicates a query operation, and the method further comprises:

scrambling the second sentence;

The query result returned by the cloud device is received, and the query result is descrambled.
The method according to any one of claims 1-8, wherein after acquiring the first statement, the method further comprises:

sending an index creation statement to the cloud device, where the index creation statement indicates the specified column of the specified table of the first statement;

receiving the existing data on the specified column returned by the cloud device;

determining the ciphertext index value of the existing data;

Send the ciphertext index value of the existing data to the cloud device.
A method for data management, comprising:

receiving a second statement from a client, where the second statement includes a ciphertext index value determined by the client in response to the first statement and according to information of plaintext data, and the first statement includes the plaintext data;

In response to the second statement, establish a correspondence between the ciphertext index value and the information of the storage location of the ciphertext data in the index structure according to the ciphertext index value, or query the index structure for the information of the ciphertext data. Storage location information, the ciphertext data is encrypted data corresponding to the plaintext data, and the storage location information indicates the storage location of the ciphertext data.
The method according to claim 10, wherein the second statement indicates an insert operation, and before establishing the corresponding relationship, the method further comprises:

Determine the ciphertext data corresponding to the plaintext data according to the second statement;

The ciphertext data is stored in a corresponding storage location, where the storage location is the location indicated by the storage location information in the corresponding relationship.
The method according to claim 10, wherein the second statement indicates a query operation, and after querying the information of the storage location of the ciphertext data from the index structure, the method further comprises:

query the ciphertext data according to the information of the storage location;

Return the ciphertext data to the client.
The method according to claim 10, wherein the second statement instructs to update the index value, the second statement further includes the original ciphertext index value of the plaintext data, and the method further comprises:

Query the correspondence between the original ciphertext index and the information of the storage location according to the original ciphertext index value;

The correspondence between the original ciphertext index value in the index structure and the information of the storage location is updated according to the ciphertext index value.
The method according to claim 10, wherein the second sentence indicates to update the ciphertext data, the second sentence further includes or indicates the ciphertext data of the plaintext data, and the ciphertext data of the plaintext data before the update. ciphertext index value, the method further includes:

Query the correspondence between the ciphertext index value of the plaintext data before the update and the information of the storage location according to the ciphertext index value of the plaintext data before the update;

Update the correspondence between the ciphertext index value of the plaintext data before the update and the information of the storage location according to the ciphertext index value of the plaintext data;

The ciphertext data of the storage location is updated according to the ciphertext data of the plaintext data.
The method of claim 10, wherein the second statement instructs to delete the index value, the method further comprising:

The ciphertext index value is deleted from the correspondence between the ciphertext index value of the index structure and the information of the storage location.
The method according to claim 10, wherein the second sentence indicates to delete the ciphertext data, and the method further comprises:

According to the information of the storage location, the ciphertext data of the storage location is deleted, and the correspondence between the ciphertext index value and the information of the storage location of the ciphertext data is deleted from the index structure.
The method according to any one of claims 10-16, wherein the method further comprises:

Receive the create index statement;

Query the specified column of the specified table of the second statement according to the index creation statement;

When existing data exists on the specified column, send the existing data to the client;

receiving the ciphertext index value of the existing data;

The corresponding relationship between the ciphertext index value of the existing data and the information of the storage location of the existing data is established in the index structure.
A client, characterized in that it includes:

an acquisition unit, configured to acquire a first statement, where the first statement includes plaintext data;

a processing unit, configured to determine the ciphertext index value according to the information of the plaintext data acquired by the acquiring unit;

a sending unit, configured to send a second statement to the cloud device, where the second statement includes a ciphertext index value determined by the processing unit, and the ciphertext index value is used by the cloud device to establish the ciphertext index in the index structure The correspondence between the ciphertext index value and the information of the storage location of the ciphertext data, or, query the information of the storage location of the ciphertext data from the index structure, and the ciphertext data is the encrypted data corresponding to the plaintext data, The information of the storage location indicates the storage location of the ciphertext data.
The client according to claim 18, wherein the information of the plaintext data includes a value of the plaintext data, a type of the plaintext data, and a value range of the plaintext data.
The client according to claim 19, wherein,

The processing unit is configured to perform normalization processing on the value of the plaintext data, the type of the plaintext data and the value range of the plaintext data to obtain the plaintext value, the plaintext space and the ciphertext space; The plaintext value, the plaintext space and the ciphertext space are described, and the ciphertext index value is determined.
The client according to claim 20, wherein,

The processing unit is configured to perform sampling in a sampling interval of the ciphertext space to obtain a sampling point, and the sampling interval corresponds to a midpoint of the plaintext space; according to the midpoint and the plaintext value, reduce the the plaintext space and the ciphertext space to obtain a reduced plaintext space and a reduced ciphertext space, the reduced plaintext space is bounded by the midpoint and contains the plaintext value, and the reduced ciphertext space Take the sampling point as the boundary; repeat the above-mentioned steps of sampling and reducing the plaintext space and the ciphertext space, until the upper boundary and the lower boundary of the reduced plaintext space coincide, and the corresponding value when the upper boundary and the lower boundary coincide. The sampling point of the reduced ciphertext space is the ciphertext index value.
A cloud device, comprising:

a receiving unit, configured to receive a second sentence from a client, where the second sentence includes a ciphertext index value determined by the client in response to the first sentence according to information of plaintext data, and the first sentence includes the plaintext data;

a processing unit, configured to, in response to the second statement received by the receiving unit, establish a correspondence between the ciphertext index value and the information of the storage location of the ciphertext data in the index structure according to the ciphertext index value, Alternatively, the information of the storage location of the ciphertext data is queried from the index structure, where the ciphertext data is encrypted data corresponding to the plaintext data, and the information of the storage location indicates the storage location of the ciphertext data.
The cloud device according to claim 22, wherein the cloud device further comprises a sending unit,

The receiving unit is also used to receive the creation index statement;

The processing unit is further configured to query the specified column of the specified table of the second statement according to the index creation statement received by the receiving unit;

The sending unit is further configured to send the existing data to the client when existing data exists on the designated column;

The receiving unit is further configured to receive the ciphertext index value of the existing data;

The processing unit is further configured to establish a correspondence between the ciphertext index value of the existing data and the information of the storage location of the existing data in the index structure.
A client, characterized in that the client includes at least one processor, a memory, and instructions stored on the memory and executable by the at least one processor, characterized in that the at least one processor The instructions are executed to implement the steps of the method of any one of claims 1 to 9.
A cloud device, comprising: the cloud device includes at least one processor, a memory, and instructions stored on the memory and executable by the at least one processor, wherein the at least one The instructions are executed by a processor to implement the steps of the method of any of claims 10 to 17.
A computer-readable storage medium on which a computer program is stored, characterized in that, when the program is executed by a processor, the method according to any one of claims 1 to 9 is implemented.
A computer-readable storage medium on which a computer program is stored, characterized in that, when the program is executed by a processor, the method of any one of claims 10 to 17 is implemented.
A data management system, comprising: a client and a cloud device, the client is configured to execute the method according to any one of the preceding claims 1 to 9, and the cloud device is configured to execute the preceding claims The method of any one of 10 to 17.