Unlock instant, AI-driven research and patent intelligence for your innovation.

A data protection system and method for a general database based on sgx

A data protection and database technology, applied in the database field, can solve the problems of inability to provide security protection, poor performance, and no support for computing functions, so as to protect data confidentiality and improve performance.

Active Publication Date: 2020-04-07
XIDIAN UNIV
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] To sum up, the problems existing in the existing technology are: the current security encryption schemes have the following problems: they cannot provide strict security protection; they do not support many original computing functions; the methods based solely on cryptography have poor performance

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A data protection system and method for a general database based on sgx
  • A data protection system and method for a general database based on sgx
  • A data protection system and method for a general database based on sgx

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0033] In order to make the object, technical solution and advantages of the present invention more clear, the present invention will be further described in detail below in conjunction with the examples. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

[0034] The application principle of the present invention will be described in detail below in conjunction with the accompanying drawings.

[0035] Such as figure 1 As shown, the data protection system based on the SGX general database provided by the embodiment of the present invention includes: an initialization phase module 1 and an execution phase module 2 .

[0036] Initialization phase module 1, used to realize remote authentication and key sharing, and send the data key and its ID to the database engine: ID i , upon receiving the ID i and k i After that will be recorded, select the correct data key based on the ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention belongs to the field of database technology, and discloses an SGX-based data protection system and SGX-based data protection methods of a general database. One of the methods includes an initialization phase and an execution phase. The initialization phase includes: carrying out remote authentication and key sharing; sending an application data key and ID to a database engine by an application; using a shared key for encryption; and selecting the correct data key according to the ID of the application program. The execution phase includes: sending a database request to the data engine by the application; finding the key in the database engine according to a received ID; verifying the integrity of a sent message by the database engine; decrypting the message; verifying the integrity of a database file; executing a request statement in plaintext in enclave; encrypting an execution result to return the same to the application; and updating a database table and a table MAC value. The method protects the data confidentiality and the data integrity of the database. In a multi-application environment, the method still can realize protection of the data confidentiality and the data integrity for a lightweight database which does not support user isolation and access control.

Description

technical field [0001] The invention belongs to the technical field of databases, and in particular relates to a data protection method for a general database based on SGX, which protects the data confidentiality and data integrity of application programs in a multi-application program scenario, and protects application program data from external attackers , malicious attacks and tampering by malicious database administrators and malicious applications. For a lightweight database that does not support user isolation and access control, the invention can still protect data confidentiality and data integrity. Background technique [0002] Databases are an important part of modern computing systems. Especially in the era of rampant malware and cyber attacks, database security has become an important issue that needs to be addressed. The storage security of the database, and the anti-theft and anti-tampering of sensitive data have attracted more and more attention. The indust...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/62G06F21/64H04L9/08
CPCG06F21/6218G06F21/64H04L9/0861
Inventor 王永智沈玉龙马佳文刘灵通苏翠翠杨宜博
Owner XIDIAN UNIV