计算机工程与应用 ›› 2012, Vol. 48 ›› Issue (6): 73-76.

• 网络、通信、安全 • 上一篇    下一篇

一种改进的外包数据库查询验证技术

张艳辉,王晓明   

  1. 暨南大学 计算机系,广州 510632
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2012-02-21 发布日期:2012-02-21

Improved authentication of queries in outsourced database

ZHANG Yanhui, WANG Xiaoming   

  1. Department of Computer, Jinan University, Guangzhou 510632, China
  • Received:1900-01-01 Revised:1900-01-01 Online:2012-02-21 Published:2012-02-21

摘要: 在外包数据库系统模式下,由于外包服务器并非完全可信,给外包服务带来一系列安全问题。讨论了外包数据库安全体系的分类,针对外包数据中的完整性问题,介绍了常用的外包数据库查询验证技术。通过对SAE模型的分析研究,提出一种改进的基于B+树的查询验证方案,可以有效减少存储开销,提高搜索效率,并能精确定位篡改位置,同时保证可信第三方的合法权益。理论分析和实验数据表明,该方案具有存储开销小、验证速度快、安全性高等优点。

关键词: 外包数据库, B+树, 查询验证, 部分物化, 动态签名

Abstract: Since a server is almost never fully trusted, the outsourced database model introduces several research issues related to data security. This paper discusses the classification of outsourced database security system, especially the state-of-the-art technology on the integrity of the data. After researching SAE model, a B+ tree-based query authentication model is proposed. This model can effectively reduce storage costs, improve search efficiency, locate the tampering location, and ensure rights of the trusted third party. Experimental results demonstrate that the new model has smaller storage overhead, faster verification speed, higher security and so on.

Key words: outsourced database, B+ tree, query validation, partially materialize, dynamic signature