北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2010, Vol. 33 ›› Issue (2): 105-110.doi: 10.13190/jbupt.201002.105.275

• 研究报告 • 上一篇    下一篇

XML数据库的加密与密文检索

刘念 周亚建 钮心忻 杨义先   

  1. (1北京邮电大学 网络与交换技术国家重点实验室, 北京 100876;
    2北京邮电大学 网络与信息攻防技术教育部重点实验室,北京 100876;
    3北京邮电大学 灾备技术国家工程实验室, 北京 100876)
  • 收稿日期:2009-06-15 修回日期:2009-12-02 出版日期:2010-04-28 发布日期:2010-04-28
  • 通讯作者: 刘念
  • 作者简介:刘 念(1981—), 男, 博士生, Email: pidstuliu@163.com; 钮心忻(1963—), 女, 教授, 博士生导师.
  • 基金资助:

    国家高技术研究发展计划项目(2009AA01Z430); 北京市自然科学基金项目(9092009); 国家重大科技专项项目(2009ZX0300400303)

Study on Querying Encrypted XML Databases

LIU Nian, ZHOU Ya-jian, NIU Xin-xin, YANG Yi-xian   

  1. (1State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications,Beijing 100876,China; 2Key Laboratory of Network and Information Attack and Defense Technology, Ministry of Education, Beijing University of Posts and Telecommunications,Beijing 100876,China; 3National Engineering Laboratory for Disaster Backup and Recovery,Beijing University of Posts and Telecommunications,Beijing 100876,China)
  • Received:2009-06-15 Revised:2009-12-02 Online:2010-04-28 Published:2010-04-28
  • Contact: LIU Nian

摘要:

提出一种基于曲线插值的数据库加密和密文检索模型,该模型通过可扩展标记语言(XML)节点的隐藏机制控制加密粒度,利用曲线插值变换改变数据库密文分布,可有效地抵御各类针对数据库的攻击. 在此基础上建立了XQuery检索翻译器,该翻译器支持数值范围检索,且只需解密少数密文,可提高检索效率,并证明加密模型具备足够的安全性. 以Oracle XML DB为例进行实验的结果显示,密文检索效率达到无索引明文检索的65%.

关键词: 曲线插值, 可扩展标记语言数据库, 密文检索, 加密粒度

Abstract:

The security and query effectiveness must be considered in the extensible markup language (XML) encryption. To address these problems, an approach based on curve interpolation is presented. Firstly, more flexible encryption granularity can be obtained through a XML nodehide mechanism; secondly, more efficiency to resist various kinds of database attack due to the changing of ciphertext distribution and data size. A XMLQuery (XQuery) is established. The proposed model offers greater security, and the ciphertext query performance can amount to 65% of the plaintext query based on the result of experimental simulation.

Key words: curve interpolation, extensible markup language database, ciphertext query, encryption granularity

中图分类号: