39results about How to "Improve data confidentiality" patented technology

The invention relates to an authentication system and an authentication method based on biological features. The method comprises the steps of conducting centralized storage and biological feature comparison operation for a large quantity of user biological feature templates according to user ID identifiers stored on a memory on a limited use machine and corresponding biding ID identifiers thereof on a biological authentication device of a digital processing terminal; separating the biological feature templates from the authentication function of the limited use machine; allocating to digital processing terminals (including PCs, notebooks or mobile phones, PDAs of users)of users as biological authentication device-storing the biological feature templates with decentralization and operating and processing biological features to be authenticated with decentralization so as to conduct comparison with the biological feature templates pre-stored on the respective digital processing terminals; feeding back comparison and verification results to the limited use machines; authorizing to conduct equal authentication of the biological authentication device ID identifier on the digital processing terminal for the corresponding binding user ID identifiers by the centralized authentication of the limited use machine according to the comparison verification result data.

The embodiment of the invention provides a virtual machine creating method and system and a host. Each host identity in a binding relationship between tenant identities and host identities only corresponds to one tenant identity; for any one tenant having a physical isolation requirement on the host, the virtual machine creating system can only create a virtual machine of the tenant in the host having the host identity corresponding to the tenant identity of the tenant but cannot create the virtual machine of the tenant in the hosts having the host identities corresponding to the tenant identities of other tenants, that is to say, the host having the host identity corresponding to the tenant identity of the tenant can only contain the virtual machine of the tenant but cannot contain the virtual machines of the other tenants; therefore, physical isolation among the virtual machines of different tenants is achieved, and then the data security among the virtual machines of different tenants is improved.

The invention discloses a cloud storage oriented ciphertext full-text search method and system based on full homomorphic ciphers. The method comprises that a data owner uploads document IDs, encrypted document ciphertexts and an encrypted document inverse index table to a cloud server; hash operation is carried out to the document terms on the inverse index table; TF (Term frequency) and IDF (Inverse document frequency) values are encrypted by a full homomorphic technique on integers; a public key certificate is issued to a data user; the data user carries out hash operation to to-be queried keywords and uploads to a cloud service provider; the cloud service provider compares and searches the hash operation values of the to-be queried keywords and the hash operation values of the document terms on the inverse index table; and the cloud service provider carries out full homomorphic multiplication and add operations. According to the method and the system of the invention, the calculation is carried out in a ciphertext state; in the calculation process, any information related to the documents will not be leaked to the cloud service provider and other attackers; the data privacy of the data owner and the query data privacy of the data user are protected; and moreover, the controllability of the data right of use is realized.

Disclosed are a method and an apparatus for protecting data on a storage medium by encrypting the data to be recorded on the storage medium with a password. This method comprises a step of, generating, for changing key data on each memory unit by one password, the key data, thereafter encrypting the key data with the password and writing the encrypted data to the storage medium, and a step of encrypting the data with the key data and encrypted data to the storage medium. The method further comprises a step of reading the encrypted key data from the storage medium, a step of decoding the encrypted key data with the password, and a step of decoding the data on the storage medium with the decoded key data. The encryption is done by using the key data generated separately from the password, and it is therefore feasible to prevent the password from being analyzed by decoding a cipher text.

An image monitoring system comprises triggering unit of editable event for providing execution content of editing and starting up event trigger by user, image comparison unit for comparing variation of each image and for generating event triggering command corresponding to execution content of editing and starting up event trigger by user as well as application program calling unit for calling up application program corresponding to execution content according to event triggering command.

A method is provided for the transmissions of information between at least a first and a second communication means. The method includes in saving at least one set of information in an intermediate element. The method also includes defining a plurality of client groups, using an identifier in order to designate at least one group of clients that are authorized to access the information set, and at least one filtering step, which is intended to prevent a user that does not belong to the group from accessing the information. The method enables the integrity of the contained in the intermediate element to be substantially secured, by selecting clients that are authorized to access the information.

A data encryption-decryption method for enhancing the confidentiality of data transmitted between two, first and second communication network entities including the steps of: at the first network entity, performing a quadruple-churning operation on a byte N to obtain an encrypted byte N, the quadruple-churning operation including: performing a first churning operation to obtain a first churned output; bit-wise XORing the first churned output with two values to obtain a first XOR result; bit-swapping the first XOR result; performing a second churning and XORing stages to obtain a second XOR result; performing a third churning and XORing stages to obtain a third XOR result; bit swapping the third XOR result; and performing a fourth churning operation on the third bit-swapped XOR result to obtain encrypted byte N; and transmitting the encrypted byte N to the second network entity.

The invention provides a multi-area interconnected microgrid system decentralized coordination scheduling method and device. The scheduling method comprises the following steps: S1, establishing MISOCP models of electro-pneumatic integrated energy systems of multiple areas; S2, obtaining an SOCP model according to the MISOCP model; s3, adopting an ADMM algorithm to initialize the SOCP model; s4, fixing the solved shared information value, and updating the value of the integer variable; s5, adopting a continuous cone optimization algorithm for each area, and autonomously solving an MISOCP modelof each area; S6, fixing the solved value of the integer variable of each area to obtain an updated SOCP model; s7, adopting an ADMM algorithm to carry out distributed optimization on the updated SOCP model; s8, judging the change condition of the integer variable, and if the integer variable does not change any more, returning the current area scheduling plan as a final scheduling result, otherwise, executing the step S9; and S9, increasing the number of iterations by 1, and repeatedly executing the steps S4-S8. According to the scheduling method disclosed by the invention, the information exchange amount between the areas can be reduced, and the convergence efficiency in the solving process is improved.

The invention discloses a whole-sea tidal observation system based on Beidou. The whole-sea tidal observation system comprises a Beidou second-generation satellite navigation and positioning system, a Beidou satellite communication system, a shoreside base station, and a tidal observation data acquisition device positioned on a carrier in ocean; meanwhile, the invention discloses a tidal observation method for the tidal observation system; the tidal observation method comprises the following steps: determining a tide model of a sea area where the shoreside base station is located by the shoreside base station according to latitude and longitude coordinates of the tidal observation data acquisition device, determining a main tidal component type of the sea area where the shoreside base station is located, and carrying out trigonometric polynomial fitting on daylong tidal level data according to the period of the tidal component type to obtain a high-precision daily tide level curve. The whole-sea tidal observation system disclosed by the invention can be applied to any one sea area which can receive an electromagnetic wave signal of a Beidou second-generation satellite; the defect that a conventional tidal observation means only can be operated near shore is overcome, and the working range of marine tide measurement is widened; in addition, the Beidou satellite communication system is adopted for carrying out data transmission, so high data security is realized.

The invention discloses an image processing system and an image processing method based on fragmentation technique, which belongs to an image compression processing method. The system comprises a template customization module, an image cutting engine and a digital processing site, wherein the template customization module is used for inputting an image template and recording the size of the current image template by using a coordinate counting method; the image cutting engine is used for cutting an image picture which is uploaded to the system according to the image template and distributing cut fragments to each remote digital processing site at random; the digital processing site is used for digitizing the fragments of the image picture and transmitting the digitized fragments to a fragment splicing module and the like. An image picture file is fragmented by the fragmentation engine and then is distributed to each site so as to perform image digitalization processing, so that data security in a remote image processing field is effectively increased, and additionally, network resource consumption due to image transmission in a remote machining process is reduced.

A data mask section outputs memory data read from a memory array unit for a predetermined time period that is shifted from an edge timing of a clock signal, while a microcomputer takes in the data output from the data mask section at the edge timing of the clock signal. Thus, the microcomputer is capable of appropriately taking in the memory data only when the frequency of the clock signal is within a predetermined range, and accordingly, it is difficult to fraudulently obtain the memory data. Furthermore, the data mask section may output random data, or the like, during a time period other than the predetermined time period. In such a case, it is difficult to analyze the memory data, and the confidentiality of the memory data is improved.

A printing system and a data transmission method thereof are provided. The printing system includes a peripheral unit and a controller. The peripheral unit is configured to execute a data printing function and includes a digital data. The controller is coupled to the peripheral unit. The controller converts a digital control command to obtain an analog control signal, and transmits the analog control signal to the peripheral unit. The peripheral unit converts the analog control signal into the digital control command when the analog control signal is received by the peripheral unit. The peripheral unit converts a corresponding digital data into an analog signal according to the digital control command to transmit the analog signal to the controller.

The invention discloses a data processing method of full-automatic equipment and a related device, which are used for improving the data confidentiality degree of traditional full-automatic equipment. The method comprises the following steps: acquiring a data file of the full-automatic equipment; performing binary conversion processing on the data file; starting a running program of the full-automatic equipment, and loading the data file to the equipment unit; performing external equipment configuration on the full-automatic equipment according to the configuration file; performing initialization processing on the at least one equipment unit according to the initialization data file and the point location data file; controlling the first equipment unit to process the to-be-detected screen body according to the equipment unit state file, the point location data file and the processing data, and updating the processing data; the second equipment unit is used for controlling the first equipment unit to transfer the to-be-detected screen body into the full-automatic equipment; copying the processing data into the second equipment unit to enable the second equipment unit to process the to-be-detected screen body; and updating and storing the data of the at least two equipment units into the data file.

The invention relates to a device and a method for analyzing performances of a web application capable of performing a process of on-the-fly anonymization (400) of production data, said production data being generated following a benchmark request message (MR1, MR2′) transmitted to said web application, said anonymization process (400) being carried out by a first electronic communication device (10) capable of

• • Identifying, from a sensitive data identification repository (14), data to be anonymized in the response message (MRR1, MRR2);
  • Generating, from an anonymization repository (15), anonymized data from previously identified data to be anonymized; and
  • Generating, from the anonymized data and from the response message (MRR2), an anonymized response message (MRR2′).

The invention relates to a data fragmentation processing method for a bid invitation, tender and evaluation online transaction system. The data fragmentation processing method includes the steps of S1, connecting a tenderer application service device, a bidder application service device, an evaluator application service device and a data processing service device through the network; S2, storing bid invitation data individually through the data processing service device; S3, responding to the bid invitation data one by one through the tender application service device; S4, data, divided into automatic calculated data and manual reviewed data, as well as results of the automatic calculated data , are stored individually through the data processing service device; S5, responding to the manual reviewed data one by one through the evaluator application service device; S6, storing evaluation response data individually through the data processing service device. As the bid invitation data, the response data and the automatic calculated data of the system are stored respectively to realize fragmentation data storage, data confidentiality of the whole bid invitation, tender and evaluationprocess is improved.

The invention provides a supply and marketing system based on a block chain technology, which comprises a supply and marketing module, the supply and marketing module comprises an information traceability tool module, a wallet tool module, an authentication tool module and a credit rating module; the information traceability tool module can check detailed information of commodities through authorized users, and combined with geographic positions, the source of the product is traced, thus understanding the situation of the product from various aspects; the wallet tool module is used for payingand inquiring account information, and the authentication tool module is used for digital authentication of blockchain products and has the functions of inquiring and tracing a supply and marketing platform shop, authenticating information, confirming an authentication state and the like, so that a foundation is laid for building a supply and marketing platform consumption environment; and the credit rating module adopts an enterprise rating and scoring system and is based on enterprise basic information and basic indexes.