Data Security Sharing Service Platform Based on Micro-services and Privacy Computing Technology

Journal of Information Security Reserach ›› 2022, Vol. 8 ›› Issue (10): 1000-.

Data Security Sharing Service Platform Based on Micro-services and Privacy Computing Technology

Online:2022-10-25 Published:2022-10-24

基于微服务与隐私计算技术的数据安全共享服务平台

安鹏, 张卓晖, 喻波

(北京明朝万达科技股份有限公司北京100142)

通讯作者: 安鹏硕士,工程师.主要研究方向为密码学与应用、数据安全治理、联邦学习. anpeng@wondersoft.cn
作者简介:安鹏硕士,工程师.主要研究方向为密码学与应用、数据安全治理、联邦学习. anpeng@wondersoft.cn 张卓晖工程师.主要研究方向为数据安全. zhangzhuohui@wondersoft.cn 喻波硕士,高级工程师.主要研究方向为数据安全. yubo@wondersoft.cn

Abstract

Abstract: According to the requirements of multisource data fusion and sharing applications, this paper applies privacy computing technology, based on trusted and controlled storage, combined with dense computing and collaborative computing, provides inter agency fusion data sharing service mode, and constructs a compliant data security sharing platform application platform, which provides service registration, publishing, subscription, call, log off and other data service management in the whole life cycle supported by microservice architecture and API gateway technology. In addition, according to the needs of multisource data fusion and sharing applications, the data security sharing architecture based on microservices is adopted to realize the cross domain security sharing of internal and external data through access control strategy management, sensitive data flow monitoring, abnormal behavior monitoring and control and other technologies. Build a massive multidimensional data fusion and sharing service platform, realize multiparty data security calculation across platforms, entities and departments, and solve the problem of collaborative application of nontradable data.

Key words: data security, microservices, privacy computing, security sharing, multiparty security computing, sharing service platform

摘要： 针对多源数据融合共享应用的需求，应用基于隐私计算技术，在可信受控存储的基础上，结合密态计算和协同计算，提供机构间融合数据共享服务模式，并构建合规的数据安全共享服务平台，提供微服务架构及API网关技术支撑的服务注册、发布、订阅、调用、注销等全生命周期的数据服务管理.此外，针对多源数据融合共享应用的需求，采用基于微服务的数据安全共享架构，通过访问控制策略管理、敏感数据流转监测、异常行为监测与管控等技术，实现内外部数据的跨域安全共享.构建海量多维数据的融合共享服务平台，实现跨平台、跨主体、跨部门的多方数据安全计算，解决不可流通数据的协同应用问题.

关键词: 数据安全, 微服务, 隐私计算, 安全共享, 多方安全计算, 共享服务平台

安鹏, 张卓晖, 喻波. 基于微服务与隐私计算技术的数据安全共享服务平台[J]. 信息安全研究, 2022, 8(10): 1000-.

References

参考文献
［1］蒋凯元. 多方安全计算研究综述［J］. 信息安全研究, 2021, 7(12): 11611165［2］范江波. 以个人数据权益保护为核心的大数据权益保护研究［J］. 信息安全研究, 2021, 7(12): 11661177［3］国家工业信息安全发展研究中心. 中国隐私计算产业发展报告 (2020—2021)［R］. 北京: 国家工业信息安全发展研究中心, 2021［4］李凤华, 李晖, 贾焰, 等. 隐私计算研究范畴及发展趋势［J］. 通信学报, 2016, 37(4): 111［5］丁毅, 沈薇, 李海生, 等. 面向CNN的区块链可信隐私服务计算模型［J］. 电子学报, 2022, 50(6): 13991409［6］张勇, 李丹丹, 韩璐, 等. 隐私保护的群体感知数据交易算法［J］. 通信学报, 2022,43(5): 113［7］熊金波,周永洁, 毕仁万, 等. 边缘协同的轻量级隐私保护分类框架［J］. 通信学报, 2022, 43(1): 111［8］张贺, 王忠杰, 陈连平, 等. 面向持续软件工程的微服务架构技术专题前言［J］. 软件学报, 2021, 32(5): 12291230［9］彭鑫, 赵文耘, 吴毅坚, 等. 一个基于服务请求语言的统一Web服务框架［J］. 计算机科学, 2006, 33(1): 8690［10］Zhang J, Jiang Z L, Li P, et al. Privacypreserving multikey computing framework for encrypted data in the cloud［J］. Information Sciences, 2021, 575(3): 217230［11］Li C, Lv Q, Li N, et al. A novel deep framework for dynamic malware detection based on API sequence intrinsic features［J］. Computers & Security, 2022, 116: 102686［12］Xue K, Liu Z, Zhu H, et al. Advances in privacypreserving computing［J］. PeertoPeer Networking and Applications, 2021, 14(3): 13481352［13］Fazal R, Shah M A, Khattak H A, et al. Achieving data privacy for decision support systems in times of massive data sharing［J］. Cluster Computing, 2022 (18): 113［14］钱文君, 沈晴霓, 吴鹏飞, 等. 大数据计算环境下的隐私保护技术研究进展［J］. 计算机学报, 2022, 45(4): 669701［15］Du W, Atallah M J. Secure multiparty computation problems and their applications［COL］ Proc of New Security Paradigms Workshop. 2001 ［20220920］. http:www.onacademic.comdetailjournal_1000037344405010_2749.html［16］张泽辉, 富瑶, 高铁杠. 支持数据隐私保护的联邦深度神经网络模型研究［J］. 自动化学报, 2022, 48(5): 12731284［17］刘艺璇, 陈红, 刘宇涵, 等. 联邦学习中的隐私保护技术［J］. 软件学报, 2022, 33(3): 10571092［18］Shukla S, Patel S J. A novel ECCbased provably secure and privacypreserving multifactor authentication protocol for cloud computing［J］. Computing, 2022, 104(5): 11731202

[1]	. Research on Data Security Endogenous Mechanism on Complex Adaptive Organizations [J]. Journal of Information Security Reserach, 2022, 8(9): 901-.
[2]	. Promotion and Regulation Path of Personal Financial Information Cross-border Flow in China [J]. Journal of Information Security Reserach, 2022, 8(9): 931-.
[3]	. [J]. Journal of Information Security Reserach, 2022, 8(6): 554-.
[4]	. [J]. Journal of Information Security Reserach, 2022, 8(6): 613-.
[5]	. [J]. Journal of Information Security Reserach, 2022, 8(5): 484-.
[6]	. Data Security Governance Technology and Practice in Big Data Applications [J]. Journal of Information Security Reserach, 2022, 8(4): 326-.
[7]	. Research on Industry Practice of Data Security Governance [J]. Journal of Information Security Reserach, 2022, 8(4): 333-.
[8]	. Computing Force Network Security Architecture and Data Security Governance Technology [J]. Journal of Information Security Reserach, 2022, 8(4): 340-.
[9]	. Model of Data Security Governance Based on Business Scenarios [J]. Journal of Information Security Reserach, 2022, 8(4): 392-.
[10]	. An Access Control Model Based on Data Classification and Grading System for Education Cloud Platform [J]. Journal of Information Security Reserach, 2022, 8(4): 400-.
[11]	. [J]. Journal of Information Security Reserach, 2022, 8(3): 270-.
[12]	. Data sharing model based on privacy computing [J]. Journal of Information Security Reserach, 2022, 8(2): 122-.
[13]	. Security Analysis and Research on Smart Home Gateway [J]. Journal of Information Security Reserach, 2022, 8(2): 178-.
[14]	. A Privacy-Preserving Federated Learning Method for Traffic Flow Prediction [J]. Journal of Information Security Reserach, 2022, 8(10): 1035-.
[15]	. Intelligent Data Management Platform [J]. Journal of Information Security Reserach, 2021, 7(E1): 50-.