中圖分類號：TP309.2
文獻標識碼：A
DOI:10.19358/j.issn.2097-1788.2023.04.009
引用格式：邊杏賓，胡志勇，馬俊明,等.基于SM9密碼算法的大數據完整性保護方案［J］.網絡安全與數據治理，2023，42（4）：51-55.

Big data integrity protection based on SM9 cryptographic algorithm

Abstract： Big data is the basis of many intelligent analysis and decision applications. Partial damage and loss of big data will lead to incomplete information, resulting in deviation and even serious errors in analysis and decision making. Cloud computing platform provides basic support for the storage and use of big data. However, in this environment, big data is separated from the direct supervision of the owner, and many big data related parties are added, leading to an increase in the integrity and security risks of big data. To solve this problem, a set of big data lifecycle integrity protection scheme is designed based on the national password standard SM9. The scheme conducts data integrity audit for the whole life cycle of big data, finds the integrity problems, and traces the responsibility for data integrity. The participants in the whole life of cloud big data are analyzed. Based on the SM9 standard algorithm, a multiuser orderly chain signature and verification scheme is designed for the data circulation process in cloud big data application scenarios. The signature and signature verification process and related calculation steps are improved, and the integrity verification mechanism and the traceability mechanism of integrity problems in the circulation process of big data are established.

Key words : big data; domestic IBC encryption; ordered chain signature; integrity protection