| In the information age,the explosive growth of data forces users to deliver the data to the database service provider for management.However,in recent years,the disclosure of many enterprise information leakage events makes the issue of user privacy related to database more and more widely concerned.Although traditional technologies such as user authentication,security audit and access control can be used to protect the security of database data,relevant methods can only solve the problem of data leakage and tampering caused by external attacks.For cloud servers,too much internal administrator authority can also cause greater security problems.Generally,data encryption and storage can protect the security of data to a certain extent,but users cannot search the corresponding ciphertext safely and efficiently.For example,for relational databases,the complex query methods such as join table query are not suitable for efficient query in big data environment.Because of the structure of key-value pairs,the storage of non-relational databases cannot provide strong data confidentiality.Up to now,most of the database encryption technologies can not perform well in the aspects of data security,storage cost and computing cost.Based on the above analysis,this article proposes a queryable database encryption storage scheme and a multi-keyword searchable encryption scheme in a distributed environment.In this article,the non-relational database is stored in the form of key-value in the distributed environment to improve the performance of the query.The main work contents are as follows:(1)For distributed database,this article proposes a queryable database encryption scheme.In this scheme,there are two encrypted query methods: precise matching and range matching.Users use these two methods to store data encrypted to the corresponding server node,can support rich query.In the query process,the user generates the corresponding query password for each server node,and then parallel query can be realized.While protecting data privacy,the performance of the scheme is well guaranteed.(2)For distributed storage files,this article proposes a multi-keyword searchable encryption scheme based on database encryption.The data owner stores the file set and the corresponding keyword index encrypted to the corresponding node,and the user cangenerate the corresponding trap value set for each server node to realize multi-keyword search.With the increase of the number of nodes,the throughput of the query increases,and the scheme has a good performance in data security,computing overhead and storage overhead. |
PDF Full Text Request