摘要
以防止数据被窃取、泄露为目标,维护多用户访问环境下数据库的安全性,研究基于同态加密过程设计了一种数据库安全访问多级控制模型。根据用户和数据库端的分块密钥与安全等级字段解密的密钥,指定二者的加密与解密过程,然后通过同态加密手段在访问者进入系统主客体后,为其赋予一个安全标记,借用标识辅助实现数据库的多级访问,再将数据库授权方式转换成二维矩阵模式,利用同态加密私钥与公钥的对应关系,令矩阵内各项与对应的权限互相匹配,从而完成对安全访问控制模型的设计。结果表明:与传统模型相比,研究模型能够更有效区分出异常访问攻击数据,且其加密控制效果较优,证明研究模型具有较高的可行性。
This paper designs a multilevel control model of database security access based on homomorphic encryption for preventing data theft and leakage,and maintaining the security of the database in a multi-user access environment.Based on the block key of the user and database and the decryption key of the security level field,the encryption and decryption process of both were formulated.According to the homomorphic encryption method,the visitor was given a security mark after entering the host and object of the system.According to the identification assistance,the multi-level access to the database was completed.The database authorization mode was transformed into a twodimensional matrix mode.By using the corresponding relationship between the private key and the public key of homomorphic encryption,each item in the matrix was matched with the corresponding authority,thus completing the design of the security access control model.The results show that the model designed in this word is facile to distinguish the abnormal access attack data,being better than the encryption control effect of the traditional model,implying that the model is highly feasible.
作者
马飞
李娟
MA Fei;LI Juan(North Minzu University,Yinchuan Ningxia 750021,China)
出处
《计算机仿真》
北大核心
2022年第8期446-449,共4页
Computer Simulation
基金
北方民族大学2019校级科研项目(2019XYZJK01)。
关键词
数据库访问
同态加密
安全标记
多级控制
权限匹配
Database access
Homomorphic encryption
Safety mark
Multi-stage control
Permission to match
