Dynamic data protection method and device for preventing database collision attacks

A data dynamic and anti-collision technology, applied in database indexing, digital data authentication, structured data retrieval, etc., can solve problems such as difficult identification, limited effect, and failure to solve the fact that leaked information is used, so as to improve the defense effect, Likelihood-Reducing Effects

Active Publication Date: 2019-07-19
中科天御(苏州)科技有限公司
View PDF6 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This low-frequency behavior is difficult to identify, allowing attackers to lurk for a long time and achieve their goals
[0006]Comparative analysis shows that the above-mentioned protection methods are all security defense methods after information leakage, and can only take passive countermeasures against the behavior of attempting to log in, without solving the leakage The fact that information is exploited has limited effectiveness in defending against credential stuffing attacks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Dynamic data protection method and device for preventing database collision attacks
  • Dynamic data protection method and device for preventing database collision attacks

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0033] The present invention will be further described below in conjunction with accompanying drawing and embodiment:

[0034] The data dynamic protection device for anti-collision database attack disclosed in an embodiment of the present invention, its steps are:

[0035]1) Put the protective device in front of the database, log in to the database management, enable the multi-table management module of the authentication database according to the characteristics of the authentication information, and create double or multiple tables in the database, specifically: when there is only one authentication secret attribute, Just create two tables, and more generally, when there are W password attributes, create W+1 tables, one of which is the authentication entity public attribute table (Pub table), and the rest are authentication secret attribute tables (Priv table );

[0036] 2) When receiving the authentication information entry instruction, start the certificate information en...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a dynamic data protection method and device for preventing database collision attack. The method comprises the steps of changing a database storage structure for storing authentication information into double tables from a single table; isolating and obfuscating the public attribute and the authentication secret attribute of the authentication entity, wherein the authentication entity public attribute table does not contain any field associated with the authentication secret attribute table, and a main key of the authentication secret attribute table is a dynamic hashvalue; inquiring the database double tables when an application system carries out authentication, and calculating an authentication entity public attribute hash value corresponding to the authentication entity public attribute dynamically. The safety protection device based on the method is deployed at the front end of a database and maintains the updating and calculation query of double tables.According to the present invention, the traditional mode of strong association and static binding of authentication public attributes and authentication secret attributes is changed, a data protectiontechnology of sensitive attribute separation and dynamic updating is provided, the authentication record information of a database is differentiated, the influence of database leakage on database collision attack is reduced to the maximum extent, and the safety of a website and an authentication system is guaranteed.

Description

technical field [0001] The invention relates to a method and device for anti-crash library attack, in particular to a data dynamic protection method and device for anti-collision library attack, belonging to the field of computer network security. Background technique [0002] The Internet has penetrated into every aspect of human society, and everyone relies on more and more Internet applications for work, entertainment and life. Human memory is limited, so in order to reduce the burden on the brain and simplify login operations, it is very common for multiple websites to set similar user names and passwords, or even a set of account passwords to log in to all Internet applications. This also brings convenience to hacker attacks, and there is a huge potential Security Risk. Among them, credential stuffing attacks have a wide range of influence, low difficulty, and great harm, and have become an important threat to Internet applications. There are three concepts associated...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/45G06F16/22
CPCG06F21/45G06F16/2282
Inventor 邓高见马多耀李宜花赵生群
Owner 中科天御(苏州)科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap