摘要
数据的安全散布是构建可靠性分布式存储的关键一环,针对现有的数据安全散布方案存在的“密钥保护能力不足和密钥泄露后大规模解码重新加密数据带来的严重资源消耗”等问题,提出了一种数据安全散布方案:LS&SSS-RS。该方案将密钥和密文分开存储,利用拉丁方和Shamir方案将密钥拉丁方进行秘密共享,密文利用RS编码进行分散存储。实验结果表明该方案有效避免了密钥分片的直接暴露,提高了分片的容错性,还能在密钥分片泄露后节约大量的数据更新时间。此外部分数据的丢失不影响原始数据的完整性,避免了单点故障,提高了分布式存储系统的容错性。分析表明该方案能够克服潜在的安全风险,有力地保护密钥的安全,同时节约了大量的时间以及计算资源。
Secure data distribution is a key link to build reliable distributed storage.Aiming at the problems existing in exis-ting data security distribution schemes,such as“insufficient key protection capability and severe resource consumption caused by large-scale decoding and re-encryption of data after key leakage”,this paper proposed a data security distribution scheme:LS&SSS-RS.In this scheme,the key and ciphertext were stored separately,the Latin square of the key was secretly shared by the Latin square and the Shamir scheme,and the ciphertext was distributed stored by RS coding.The experimental results show that the scheme avoids the direct exposure of key sharding,improves the fault tolerance of the sharding,and saves a lot of data update time after the key sharding is leaked.In addition,the loss of some data does not affect the integrity of the original data,avoids the single point of failure,and improves the fault tolerance of distributed storage system.The analysis shows that the scheme can overcome the potential security risks,protect the key security effectively,and save a lot of time and computing resources.
作者
李国
殷俊锋
李静
Li Guo;Yin Junfeng;Li Jing(School of Computer Science&Technology,Civil Aviation University of China,Tianjin 300300,China)
出处
《计算机应用研究》
CSCD
北大核心
2021年第5期1533-1538,共6页
Application Research of Computers
基金
国家自然科学基金联合基金资助项目(U1833114)
国家自然科学基金青年项目(61702521)
民航科技创新重大专项资助项目(MHRD20160109)
民航安全能力项目(TRSA201803)。
关键词
数据安全散布
拉丁方
秘密共享
RS码
密钥更新
data security dissemination
Latin square
secret sharing
RS code
key to update