本文選題：產(chǎn)業(yè)鏈協(xié)同 + SaaS��； 參考：《西南交通大學(xué)》2016年碩士論文

【摘要】：產(chǎn)業(yè)鏈協(xié)同SaaS平臺(tái)以公共服務(wù)平臺(tái)的方式為中小企業(yè)提供協(xié)作服務(wù)以龍頭企業(yè)為核心的企業(yè)聯(lián)盟構(gòu)成了平臺(tái)的主要用戶群。產(chǎn)業(yè)協(xié)作過(guò)程中產(chǎn)生的大量業(yè)務(wù)數(shù)據(jù),都存儲(chǔ)在平臺(tái)的數(shù)據(jù)庫(kù)中,因此必須保證數(shù)據(jù)庫(kù)中存儲(chǔ)的業(yè)務(wù)數(shù)據(jù)尤其是一些重要的數(shù)據(jù)不被第二方獲取,這就需要平臺(tái)對(duì)數(shù)據(jù)庫(kù)中的業(yè)務(wù)數(shù)據(jù)提供機(jī)密性保護(hù)。針對(duì)平臺(tái)的數(shù)據(jù)安全需求,結(jié)合產(chǎn)業(yè)鏈協(xié)同SaaS平臺(tái)的用戶特點(diǎn)以及數(shù)據(jù)特性,展開(kāi)了面向產(chǎn)業(yè)鏈協(xié)同SaaS平臺(tái)的數(shù)據(jù)分級(jí)加解密技術(shù)的研究。具體包括：(1)為了保證平臺(tái)用戶身份認(rèn)證安全,采用哈希加鹽技術(shù)來(lái)對(duì)用戶的身份信息進(jìn)行認(rèn)證,在認(rèn)證過(guò)程中可以保證用戶信息的安全；(2)針對(duì)平臺(tái)的角色建立相應(yīng)的權(quán)限配置模型,權(quán)限配置由企業(yè)聯(lián)盟的龍頭企業(yè)管理員根據(jù)協(xié)作類型及需求進(jìn)行配置,不同的角色分配不同的權(quán)限,平臺(tái)用戶通過(guò)分配的角色獲取對(duì)應(yīng)的權(quán)限來(lái)訪問(wèn)數(shù)據(jù)庫(kù)中的數(shù)據(jù)；(3)為了保證密鑰的安全性,利用混合隨機(jī)數(shù)生成算法來(lái)生成密鑰,根據(jù)不同的安全需求配置由不同長(zhǎng)度的字符和數(shù)字混合組成的密鑰；(4)分析平臺(tái)數(shù)據(jù)的安全性需求,提出了數(shù)據(jù)庫(kù)數(shù)據(jù)分級(jí)加密配置方案、數(shù)據(jù)分級(jí)解密查詢方案和密鑰的配置管理模型,其中加密配置和密鑰的配置管理都由龍頭企業(yè)管理員完成,并對(duì)算法的實(shí)現(xiàn)進(jìn)行了描述；(5)對(duì)具體模塊的設(shè)計(jì)和實(shí)現(xiàn)進(jìn)行了詳細(xì)描述,包括身份認(rèn)證安全的實(shí)現(xiàn)、權(quán)限配置的實(shí)現(xiàn)、混合隨機(jī)數(shù)生成算法的實(shí)現(xiàn)、加／解密引擎的實(shí)現(xiàn)和密鑰的配置管理,利用權(quán)限與角色、字段以及密鑰的綁定完成對(duì)數(shù)據(jù)庫(kù)的分級(jí)加解密,并結(jié)合產(chǎn)業(yè)鏈協(xié)同SaaS平臺(tái)數(shù)據(jù)庫(kù)中的具體業(yè)務(wù)數(shù)據(jù),完成了對(duì)系統(tǒng)功能的驗(yàn)證。
[Abstract]:Industrial chain collaborative SaaS platform provides cooperative services to small and medium-sized enterprises in the form of public service platform. The enterprise alliance with leading enterprises as the core constitutes the main user group of the platform. A large number of business data generated in the process of industrial cooperation are stored in the database of the platform, so it is necessary to ensure that the business data stored in the database, especially some important data, are not obtained by the second party. This requires the platform to provide confidential protection to the business data in the database. According to the data security requirements of the platform, combined with the user characteristics and data characteristics of the industrial chain collaborative SaaS platform, the research on the data gradation encryption and decryption technology for the industrial chain collaborative SaaS platform is carried out. Specifically including: 1) in order to ensure the security of user identity authentication on the platform, hash salt technology is used to authenticate the identity information of the user. In the process of authentication, we can ensure the safety of user information. (2) to establish the corresponding authority configuration model for the role of the platform, the authority configuration is configured by the leading enterprise administrator of the enterprise alliance according to the type and requirement of cooperation. Different roles assign different permissions. The platform users obtain the corresponding permissions to access the data in the database through the assigned roles. In order to ensure the security of the key, the hybrid random number generation algorithm is used to generate the key. According to the different security requirements configuration, which is composed of characters and numbers of different lengths, the security requirements of the platform data are analyzed, and the scheme of database data encryption configuration is put forward. Data hierarchical decryption query scheme and key configuration management model, in which encryption configuration and key configuration management are accomplished by leading enterprise administrator. The implementation of the algorithm is described. (5) the design and implementation of the specific module are described in detail, including the implementation of identity authentication security, the implementation of authorization configuration, and the realization of hybrid random number generation algorithm. The implementation of encryption / decryption engine and key configuration management, the binding of permissions and roles, fields and keys to complete the hierarchical encryption and decryption of the database, and combined with the industrial chain in the SaaS platform database specific business data. The function of the system is verified.
【學(xué)位授予單位】：西南交通大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2016
【分類號(hào)】：TP311.52;TP393.09

【相似文獻(xiàn)】

相關(guān)期刊論文 前3條

1 胡若;錢省三;;一種組播鑰匙分配的分析和設(shè)計(jì)方法[J];計(jì)算機(jī)科學(xué);2005年11期

2 鐘卓q，

本文編號(hào)：2003895