基于脚本面向敏感文档的动态指纹溯源架构设计与实现
作者:
作者单位:

1.中国科学院深圳先进技术研究院、河北大学数学与信息科学学院;2.中国科学院新疆生态与地理研究所;3.中国科学院深圳先进技术研究院

作者简介:

通讯作者:

基金项目:

第三次新疆综合科学考察项目 (2021xjkk1300);国家重点研发计划资助(2021YFF1201700);深圳市科技计划项目(深港澳C类, SGDX20220530111001003)

伦理声明:



Design and Implementation of Dynamic Fingerprint Traceability Architecture for Sensitive Documents Based on Scripts
Author:
Ethical statement:

Affiliation:

1.Shenzhen Institutes of Advanced Technology, Chinese Academy of Sciences、 College of Mathematics and Information Science of Hebei University;2.Xinjiang Institute of Ecology and Geography, Chinese Academy of Sciences;3.Shenzhen Institutes of Advanced Technology, Chinese Academy of Sciences

Funding:

the 3rd Xinjiang Scientific Expedition Program (2021xjkk1300), the National Key R&D Program of China (2021YFF1201700), and the Shenzhen Science and Technology Plan Project (SGDX20220530111001003)

  • 摘要
  • |
  • 图/表
  • |
  • 访问统计
  • |
  • 参考文献
  • |
  • 相似文献
  • |
  • 引证文献
  • |
  • 资源附件
    摘要:

    数据溯源技术可以记录和追踪敏感文档的来源,从而防止文档泄露。传统的网络通路溯源对离线文档缺乏有效跟踪机制,基于加密文件的密钥追踪对共享文件不能保证有效溯源,现有的标注法、反向查询和数据水印技术,往往需要用户参与并在应用层实现,导致溯源的安全力度不够,缺乏透明性和灵活性,系统的整体扩展性不足。该文提出了一种创新的基于脚本的动态指纹溯源架构,该架构基于Linux内核实现底层溯源,加强文档溯源的安全性和透明性;基于用户脚本实现指纹追踪算法,提升文档溯源的灵活性和有效性。同时面向多负载共享需求设计指纹驱动算法,确保文档共享的高效性和可扩展性。经验证,本架构对操作系统的影响极小,同时具备出色的可扩展性。在处理单个或多个负载共享的场景时,指纹驱动算法展现了其透明性、实时性和高效性。

    Abstract:

    Data provenance technology is capable of recording and tracking the origins of sensitive documents to prevent their leakage. Traditional network path tracing methods are ineffective in tracking offline documents, and key tracing for encrypted files does not ensure reliable provenance for shared files. Existing techniques such as annotation, reverse querying, and data watermarking often require user involvement and are implemented at the application layer, resulting in inadequate security, lack of transparency and flexibility, and insufficient overall system scalability. This paper introduces an innovative script-based dynamic fingerprint provenance architecture that utilizes modifications to the Linux kernel to achieve foundational provenance, enhancing the security and transparency of document tracing. The fingerprint tracking algorithm is implemented through user scripts, improving the flexibility and effectiveness of document provenance. Additionally, the fingerprint-driven algorithm is designed to meet the demands of multi-load sharing, ensuring efficient and scalable document sharing. Upon verification, this architecture has a minimal impact on the operating system and exhibits excellent scalability. In scenarios involving single or multiple load sharing, the fingerprint-driven algorithm demonstrates transparency, real-time performance, and efficiency.

    参考文献
    相似文献
    引证文献
引用本文

包立兴,赵峰,黄小罗,等.基于脚本面向敏感文档的动态指纹溯源架构设计与实现 [J].集成技术,

Citing format
BAO Lixing, ZHAO Feng, HUANG Xiaoluo, et al. Design and Implementation of Dynamic Fingerprint Traceability Architecture for Sensitive Documents Based on Scripts[J]. Journal of Integration Technology.

复制
分享
文章指标
  • 点击次数:
  • 下载次数:
  • HTML阅读次数:
历史
  • 收稿日期:2024-04-23
  • 最后修改日期:2024-04-23
  • 录用日期:
  • 在线发布日期: 2024-06-03
  • 出版日期: