| 一种服务器透明的外包数据库查询验证方法 | |
| 张敏 ; 洪澄 ; 陈驰 | |
| 刊名 | 计算机研究与发展
 |
| 2010 | |
| 卷号 | 47期号:1页码:182-190 |
| 关键词 | 查询验证 外包数据库(ODB) 验证对象(VO) 签名链(CES) 服务器透明Communication Cost accounting Data structures Database systems Real time systems |
| ISSN号 | 1000-1239 |
| 其他题名 | server transparent query authentication of outsourced database |
| 中文摘要 | 查询验证作为外包数据库(ODB)重要安全需求之一,旨在向用户证明其所得查询结果集的正确性与完备性.目前大多数查询认证方法以服务器为验证中心,这不仅需要扩展数据库服务器功能,而且增加了服务器负担.提出一种服务器透明模式的查询验证方法(签名链,简称CES),将验证对象(VO)嵌于外包数据库表内部,数据库服务器通过常规的数据库服务实现数据内容与验证对象的检索.该方法避免了对服务器功能扩展或成为计算瓶颈,并且保证了ODB并发更新操作时VO的一致性. |
| 学科主题 | Computer Science |
| 语种 | 中文 |
| 公开日期 | 2011-05-23 |
| 附注 | With the rapid growth of database outsourcing, the security concerns in the outsourced database (ODB) paradigm are receiving more and more attentions. Query authentication is one of the important security requirements which enable the database clients to verify the authenticity and the completeness of the query results. Currently several query verification schemes are proposed based on the specially designed authentication data structures (ADS), in which the DBMS computes verification object (VO) for each query, and returns the result together with its VO. Since this "server-centric" model requires the functional extensions of DBMS and the modification of communication protocols, it will inevitably affect the application in practice. In this paper the authors propose a server transparent query authentication method called chain embedded signature (CES), which embeds the VO inside the ODB, therefore it supports the query authentication with commercial DBMS and standard SQL commands. This transparency also frees the server from heavy verification tasks, and prevents it from becoming the bottleneck of performance. Furthermore, since the VOs are stored inside ODB, the consistency of them is promised by the database transaction mechanism. The cost analysis and experimental results show that the time and space overhead are reasonable to be deployed in real systems. |
| 内容类型 | 期刊论文 |
| 源URL | [http://124.16.136.157/handle/311060/10054]  |
| 专题 | 软件研究所_信息安全国家重点实验室_期刊论文 |
| 推荐引用方式 GB/T 7714 | 张敏,洪澄,陈驰. 一种服务器透明的外包数据库查询验证方法[J]. 计算机研究与发展,2010,47(1):182-190. |
| APA | 张敏,洪澄,&陈驰.(2010).一种服务器透明的外包数据库查询验证方法.计算机研究与发展,47(1),182-190. |
| MLA | 张敏,et al."一种服务器透明的外包数据库查询验证方法".计算机研究与发展 47.1(2010):182-190. |
| 个性服务 |
| 查看访问统计 |
| 相关权益政策 |
| 暂无数据 |
| 收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论