面向产业链协同SaaS平台的业务数据加密及检索技术研究
发布时间:2018-02-26 00:36
本文关键词: 产业链协同 Saas 密文检索 自建索引 两阶段查询 出处:《西南交通大学》2015年硕士论文 论文类型:学位论文
【摘要】:产业链协同SaaS (Software as Service)平台是一个主要面向中小型制造业的第三方服务平台,为众多的以制造业企业为龙头与众多协作供应商、经销商、维修服务商形成的企业联盟提供多种服务。各个联盟中的企业成员使用平台进行业务协同和数据查询,同时平台与各个制造厂的内部ERP(Enterprise Resource Planning企业资源管理系统)系统之间进行无缝集成,让各个企业成员能够在各自的内部系统中对业务进行进一步的处理。平台用户在产业链协同SaaS平台上进行业务操作时,会产生大量业务数据,比如采购订单信息、车辆售后服务数据等,这些信息会先存储在平台的数据库中,然后通过数据交换将新产生的数据传递到各个企业的内部系统中。数据存储在平台数据库时,对于企业而言就具有一定的数据安全隐患,因为其中一些数据是比较重要的,不能够被其他个体获取。为满足用户的需求,平台需要对这些重要数据提供机密性保护,最安全最常用的措施就是采用加密存储方式,但加密的数据又会造成数据检索的不便。针对产业链协同SaaS平台中数据的加密及检索需求,并结合多租户关联的平台业务数据加密定制方案,本文提出了一种面向产业链协同SaaS平台的密文检索方案。该方案采用自建索引机制、两阶段查询方法,通过字符串邻接信息生成算法对字符型敏感字段明文建立索引信息,通过保序加密算法OPES (Order Preserving Encryption Scheme)对数值型敏感信息明文建立索引信息。索引中记录了敏感字段的位置信息。检索时先通过索引表获取敏感信息的查询结果初集,然后再进行第二阶段查询,将查询结果中的误检信息剔除,通过该方法实现少量解密就可以获取正确的查询结果。该方法目前已在KM售后服务系统与NJSC零部件采购系统中进行了应用验证,能够为用户提供透明和准确的检索支持。
[Abstract]:The industry chain collaboration SaaS Software as Service platform is a third party service platform for small and medium-sized manufacturing enterprises, which is the leading supplier and distributor of manufacturing enterprises. The enterprise alliance formed by the maintenance service provider provides a variety of services. The enterprise members in each alliance use the platform for business collaboration and data query. At the same time, the platform integrates seamlessly with the internal ERP(Enterprise Resource Planning enterprise resource management system of each manufacturer. The platform users will produce a large amount of business data, such as purchase order information, when they operate on the industrial chain collaborative SaaS platform. The information is stored in the database of the platform, and then the newly generated data is transferred to the internal system of each enterprise through the exchange of data. When the data is stored in the database of the platform, Because some of the data are important and can not be obtained by other individuals. In order to meet the needs of users, the platform needs to provide confidential protection to these important data. The most secure and commonly used measure is to use encryption storage method, but the encrypted data will cause the inconvenience of data retrieval. In view of the data encryption and retrieval requirements in the industrial chain collaborative SaaS platform, Combined with the multi-tenant associated platform data encryption and customization scheme, this paper proposes a ciphertext retrieval scheme for industry chain collaborative SaaS platform, which adopts self-built indexing mechanism and two-stage query method. The character sensitive fields are indexed by string adjacency information generation algorithm. In this paper, the index information of numeric sensitive information is established by OPES order Preserving Encryption Schema. The location information of sensitive field is recorded in the index. The first set of query results of sensitive information is obtained by index table. Then the second stage of the query is carried out to remove the misinformation from the result of the query. The method has been applied to km after-sales service system and NJSC parts purchasing system, which can provide users with transparent and accurate retrieval support.
【学位授予单位】:西南交通大学
【学位级别】:硕士
【学位授予年份】:2015
【分类号】:TP311.13;TP309
【参考文献】
相关期刊论文 前4条
1 楚志凯;吕秀平;路晓亚;;SQL Server的数据库加密技术的研究与实现[J];电脑学习;2010年01期
2 蔡克;张敏;冯登国;;基于单断言的安全的密文区间检索[J];计算机学报;2011年11期
3 魏占祯;杨亚涛;陈志伟;;RSA乘法同态的数据库密文检索实现[J];哈尔滨工程大学学报;2013年05期
4 肖庆;王淑营;;面向产业链协同SaaS平台的多租户数据加密配置技术研究[J];计算机应用研究;2015年07期
,本文编号:1535841
本文链接:https://www.wllwen.com/jingjilunwen/chanyejingjilunwen/1535841.html