Method and system for improving SaaS application security

A security and user technology, applied in the direction of public key of secure communication, transmission system, user identity/authority verification, etc. Avoid the effects of leakage and malicious use

Inactive Publication Date: 2010-07-07
SOUTH CHINA UNIV OF TECH +1
View PDF0 Cites 44 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, this method requires hardware support, which brings inconvenience to customers and increases the implementation cost

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for improving SaaS application security
  • Method and system for improving SaaS application security
  • Method and system for improving SaaS application security

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] In the embodiment of the present application, when creating a client, set the public key belonging to the client ID for future user identity verification; according to the instructions of the at least one user, when saving relevant business data for the corresponding client ID, for the The customer ID of the customer randomly generates a data key for encrypting business data; uses a symmetric encryption algorithm to encrypt business data with the data key as a key; uses an asymmetric encryption algorithm to encrypt the data with the public key of the customer ID key; allow the client to save the encrypted data and data key on the server; after the client successfully decrypts the server’s challenge message with its own private key, the client is allowed to obtain the aforementioned ciphertext saved on the server; the client You can decrypt the aforementioned ciphertext with your own private key, obtain the data key of the aforementioned encrypted business data, and furth...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a method and a system for improving SaaS application security. The encryption method includes that a public password belonging to the client is set up; a data password used for encrypting business data for the client is randomly generated when the business data of the client is saved; the data password is used as the password to encrypt the business data according to a symmetrical cryptographic algorithm; the business data are encrypted through the public password and according to an unsymmetrical cryptographic algorithm; the business data cryptograph and the data password cryptograph are saved in a server; the client gets the cryptograph saved in the server after successfully decrypting the challenge message of the server with the private password; the client decrypts the data password cryptograph with the private password and further decrypts the business data according to the symmetrical cryptographic algorithm. The system includes a WEB server, an authentication server and a database server which can transmit data each other. The invention effectively prevents the administrator from reveal and malicious use of the data password.

Description

technical field [0001] The invention relates to the fields of computer software and the Internet, in particular to a method and system for improving application security based on data encryption in a SaaS environment. Background technique [0002] SaaS (Software-as-a-Service) means software as a service, which is a software application model that provides software services based on the Internet. For the majority of small and medium-sized enterprises, SaaS is the best way to implement informatization with advanced technology. But SaaS is by no means just for SMBs, businesses of all sizes can benefit from SaaS. [0003] The SaaS service model has many advantages compared with the traditional license model software. It not only reduces or cancels the traditional software licensing fees, but also the manufacturer deploys the application software on a unified server, which saves the end user from server hardware, network security equipment and For software upgrade and maintenan...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L9/32H04L9/30H04L9/06
Inventor 宋海涛
Owner SOUTH CHINA UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap