摘要
针对数据库中敏感数据被非法篡改后难以检测发现的问题,提出了一种基于单向散列算法的不可逆性对敏感数据篡改的有效检测方法,并采用检测客户端与服务器的双重检测机制来加强检测效果。单向散列算法选用MD5算法,并通过向算法中注入隐蔽的"抗体"因子以抵抗篡改者的穷举搜索,使MD5算法得到有效的改进。重点阐述了上述检测方法的原理及其在应用系统中的实现。应用结果表明,该检测方法对非法篡改具有高度敏感性和优秀的数据篡改检测性能。
This paper presents a method that can discover effectively the modification of sensitive data in database by using one-way hash algorithm that cannot be deduced inversely,because it is difficult to detect the illegal revision of sensitive data.The dual inspection approach is adopted through checking client and server for better detection effect.The MD5 algorithm,a one-way hash algorithm,is improved availably by adding a hidden 'antibody' factor to the algorithm for withstanding cribber's exhaustion search.The paper mainly describes the principle of this method based on the improved MD5 algorithm and how to realize it in the application system.Applied results demonstrate that this method has highly sensitive to intentional tampering and outstanding detection performance for data tamper detection.
出处
《计算机工程与应用》
CSCD
北大核心
2008年第33期148-150,共3页
Computer Engineering and Applications
基金
云南省大型科学仪器
设备协作公用网及服务平台(No.2006PT06)。
