Data encryption/decryption and desensitization operation engine and working method thereof

A technology for running engines and working methods, applied in the field of information system security, and can solve problems such as business unavailability

Inactive Publication Date: 2018-09-07
SHENZHEN TIANYUAN DIC INFORMATION TECH CO LTD
View PDF4 Cites 25 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] Therefore, the purpose of the present invention is to provide a data encryption and decryption and desensitization operation engine, working method and computer-readable storage medium to solve the problem of business unavailability risk caused by the stability of the existing transparent encryption gateway proxy mode

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Data encryption/decryption and desensitization operation engine and working method thereof
  • Data encryption/decryption and desensitization operation engine and working method thereof
  • Data encryption/decryption and desensitization operation engine and working method thereof

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0043] see figure 1 , which is a schematic diagram of the operating principle of the overall architecture of a preferred embodiment of the data encryption, decryption and desensitization operation engine of the present invention. The data encryption, decryption and desensitization running engine mainly includes: SDK client, security service, and database extension functions.

[0044] The SDK client is integrated into the business system, which can intercept SQL statements and determine whether rewriting is required based on the metadata configuration. SQL statements that do not need to be rewritten directly send requests to the database, and SQL statements that need to be rewritten request security services to rewrite; the SDK client can pass The http protocol sends requests to security services.

[0045] The security service is used to obtain the SQL statement that needs to be rewritten, complete the rewriting of the SQL statement according to the metadata configuration, and...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a data encryption / decryption and desensitization operation engine, a working method thereof and a computer readable storage medium. The working method of the data encryption / decryption and desensitization operation engine comprises the following steps of: 10, intercepting SQL statements by an SDK client integrated to a business system, judging whether the SQL statements need to be rewritten or not according to a metadata configuration, directly sending requests to a database by the SQL statements not needing to be rewritten, and requesting a security service by the SQLstatements needing to be rewritten so as to be rewritten; 20, obtaining the SQL statements needing to be rewritten by the security service, completing SQL statement rewriting according to the metadata configuration, returning the rewritten SQL statements to the SDK client, and calling the rewritten SQL statements to initiate a request to the database by the SDK client; and 30, for the request involved in desensitization processing, taking a database expansion function as an RPC client to call an operation component of an RPC operation service so as to return a result. By using a client SDK mode, the business unavailability risk, caused by stability, of transparent data encryption gateway agency mode is avoided.

Description

technical field [0001] The invention relates to the technical field of information system security, in particular to a data encryption, decryption and desensitization operation engine, a working method and a computer-readable storage medium. Background technique [0002] At present, user account information leakage incidents frequently occur in domestic information systems, and a large amount of data containing sensitive information is exported from the database. It is not safe for an information system to store sensitive information in plain text, nor is it safe to display sensitive information in plain text. Data encryption storage and data desensitization display are important security measures to prevent data leakage. At present, data encryption storage and desensitization need to solve many technical problems, including compatibility with relational databases and no-sql databases, support for ciphertext range queries, transparent encryption (that is, support for busine...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/62G06F17/30G06F9/54
CPCG06F9/547G06F21/6245
Inventor 王浩李键邓双林徐德意邓远杰
Owner SHENZHEN TIANYUAN DIC INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap