本文選題：產(chǎn)業(yè)鏈協(xié)同 + SaaS��； 參考：《西南交通大學(xué)》2016年碩士論文

【摘要】：產(chǎn)業(yè)鏈協(xié)同SaaS平臺以公共服務(wù)平臺的方式為中小企業(yè)提供協(xié)作服務(wù)以龍頭企業(yè)為核心的企業(yè)聯(lián)盟構(gòu)成了平臺的主要用戶群。產(chǎn)業(yè)協(xié)作過程中產(chǎn)生的大量業(yè)務(wù)數(shù)據(jù),都存儲在平臺的數(shù)據(jù)庫中,因此必須保證數(shù)據(jù)庫中存儲的業(yè)務(wù)數(shù)據(jù)尤其是一些重要的數(shù)據(jù)不被第二方獲取,這就需要平臺對數(shù)據(jù)庫中的業(yè)務(wù)數(shù)據(jù)提供機密性保護。針對平臺的數(shù)據(jù)安全需求,結(jié)合產(chǎn)業(yè)鏈協(xié)同SaaS平臺的用戶特點以及數(shù)據(jù)特性,展開了面向產(chǎn)業(yè)鏈協(xié)同SaaS平臺的數(shù)據(jù)分級加解密技術(shù)的研究。具體包括：(1)為了保證平臺用戶身份認(rèn)證安全,采用哈希加鹽技術(shù)來對用戶的身份信息進行認(rèn)證,在認(rèn)證過程中可以保證用戶信息的安全；(2)針對平臺的角色建立相應(yīng)的權(quán)限配置模型,權(quán)限配置由企業(yè)聯(lián)盟的龍頭企業(yè)管理員根據(jù)協(xié)作類型及需求進行配置,不同的角色分配不同的權(quán)限,平臺用戶通過分配的角色獲取對應(yīng)的權(quán)限來訪問數(shù)據(jù)庫中的數(shù)據(jù)；(3)為了保證密鑰的安全性,利用混合隨機數(shù)生成算法來生成密鑰,根據(jù)不同的安全需求配置由不同長度的字符和數(shù)字混合組成的密鑰；(4)分析平臺數(shù)據(jù)的安全性需求,提出了數(shù)據(jù)庫數(shù)據(jù)分級加密配置方案、數(shù)據(jù)分級解密查詢方案和密鑰的配置管理模型,其中加密配置和密鑰的配置管理都由龍頭企業(yè)管理員完成,并對算法的實現(xiàn)進行了描述；(5)對具體模塊的設(shè)計和實現(xiàn)進行了詳細描述,包括身份認(rèn)證安全的實現(xiàn)、權(quán)限配置的實現(xiàn)、混合隨機數(shù)生成算法的實現(xiàn)、加／解密引擎的實現(xiàn)和密鑰的配置管理,利用權(quán)限與角色、字段以及密鑰的綁定完成對數(shù)據(jù)庫的分級加解密,并結(jié)合產(chǎn)業(yè)鏈協(xié)同SaaS平臺數(shù)據(jù)庫中的具體業(yè)務(wù)數(shù)據(jù),完成了對系統(tǒng)功能的驗證。
[Abstract]:Industrial chain collaborative SaaS platform provides cooperative services to small and medium-sized enterprises in the form of public service platform. The enterprise alliance with leading enterprises as the core constitutes the main user group of the platform. A large number of business data generated in the process of industrial cooperation are stored in the database of the platform, so it is necessary to ensure that the business data stored in the database, especially some important data, are not obtained by the second party. This requires the platform to provide confidential protection to the business data in the database. According to the data security requirements of the platform, combined with the user characteristics and data characteristics of the industrial chain collaborative SaaS platform, the research on the data gradation encryption and decryption technology for the industrial chain collaborative SaaS platform is carried out. Specifically including: 1) in order to ensure the security of user identity authentication on the platform, hash salt technology is used to authenticate the identity information of the user. In the process of authentication, we can ensure the safety of user information. (2) to establish the corresponding authority configuration model for the role of the platform, the authority configuration is configured by the leading enterprise administrator of the enterprise alliance according to the type and requirement of cooperation. Different roles assign different permissions. The platform users obtain the corresponding permissions to access the data in the database through the assigned roles. In order to ensure the security of the key, the hybrid random number generation algorithm is used to generate the key. According to the different security requirements configuration, which is composed of characters and numbers of different lengths, the security requirements of the platform data are analyzed, and the scheme of database data encryption configuration is put forward. Data hierarchical decryption query scheme and key configuration management model, in which encryption configuration and key configuration management are accomplished by leading enterprise administrator. The implementation of the algorithm is described. (5) the design and implementation of the specific module are described in detail, including the implementation of identity authentication security, the implementation of authorization configuration, and the realization of hybrid random number generation algorithm. The implementation of encryption / decryption engine and key configuration management, the binding of permissions and roles, fields and keys to complete the hierarchical encryption and decryption of the database, and combined with the industrial chain in the SaaS platform database specific business data. The function of the system is verified.
【學(xué)位授予單位】：西南交通大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2016
【分類號】：TP311.52;TP393.09

【相似文獻】

相關(guān)期刊論文 前3條

1 胡若;錢省三;;一種組播鑰匙分配的分析和設(shè)計方法[J];計算機科學(xué);2005年11期

2 鐘卓q，

本文編號：2003895