CN114003964B - Method and device for processing sensitive information mask - Google Patents
Method and device for processing sensitive information mask Download PDFInfo
- Publication number
- CN114003964B CN114003964B CN202111645854.1A CN202111645854A CN114003964B CN 114003964 B CN114003964 B CN 114003964B CN 202111645854 A CN202111645854 A CN 202111645854A CN 114003964 B CN114003964 B CN 114003964B
- Authority
- CN
- China
- Prior art keywords
- mask
- data
- plaintext data
- sensitive information
- plaintext
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Digital Computer Display Output (AREA)
Abstract
The invention provides a method and a device for processing a sensitive information mask, wherein the method comprises the following steps: acquiring an original data table input by a user, wherein the original data table comprises: plaintext data for sensitive information; calculating a mask value of the plaintext data; filling the plaintext data and the mask value of the plaintext data into a mask table to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data; sending the original data table and the mask table to a remote server for storage; replacing the plaintext data in the original data table with the mask identification to obtain a masked data table; and storing the mask table and the masked data table. In the invention, the private data after the mask is stored in the client host, and the original private data is stored in the remote host, so that the protection of the private data is realized.
Description
Technical Field
The present invention relates to the field of information processing, and in particular, to a method and an apparatus for processing a sensitive information mask.
Background
For an independent system deployed and operated on a client host, user data is often stored in the client host, a secret key for encrypting private data is also stored in the client host, and if the data and the secret key are stored in the client host, sensitive information is easily leaked once the host is broken; if the user data and the key are stored in the remote host, network transmission cost is increased, requirements on network performance are high, and complexity of application development is increased.
Disclosure of Invention
The invention provides a method and a device for processing a sensitive information mask, which are used for solving the problems that sensitive information is easy to leak and the requirement on network performance is high in the prior art.
In order to solve the above problems, the present invention is realized by:
in a first aspect, the present invention provides a method for processing a sensitive information mask, which is applied to a terminal, and includes:
acquiring an original data table input by a user, wherein the original data table comprises: plaintext data for sensitive information;
calculating a mask value of the plaintext data;
filling the plaintext data and the mask value of the plaintext data into a mask table to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data;
sending the original data table and the mask table to a remote server for storage;
replacing the plaintext data in the original data table with the mask identification to obtain a masked data table;
and storing the mask table and the masked data table.
Optionally, the method further includes:
calculating a target mask value of the target sensitive information plaintext data according to the target sensitive information plaintext data input by a user;
matching the target mask value with the masked data table to obtain a target mask identifier;
and acquiring the data in the masked data table according to the target mask mark.
Optionally, the method further includes: sending a display request of plaintext data to be displayed and a mask mark corresponding to the plaintext data to be displayed to a server;
and receiving and displaying the to-be-displayed plaintext data sent by the server.
Optionally, the storing the mask table and the masked data table includes:
caching the mask table in a memory of the terminal;
caching the mask table and the masked data table in a database of the terminal;
and when the preset time is exceeded, the mask table cached in the memory of the terminal is not called, and the mask table cached in the memory of the terminal is deleted.
In a second aspect, the present invention provides a method for processing a sensitive information mask, which is applied to a remote server, and includes:
receiving and storing an original data table and a mask table sent by a terminal; the mask table includes: and plain text data of the sensitive information in the original data table, a mask value calculated according to the plain text data and mask values of the plain text data are filled in a mask table to obtain a corresponding mask identifier.
Optionally, the method further includes:
receiving a display request of plaintext data to be displayed sent by a terminal and a mask mark corresponding to the plaintext data to be displayed;
matching the plaintext data to be displayed in the original data table according to the corresponding mask identification of the plaintext data to be displayed;
and sending the plaintext data to be displayed to the terminal for displaying.
In a third aspect, the present invention provides a device for processing a sensitive information mask, including:
a first obtaining module, configured to obtain an original data table input by a user, where the original data table includes: plaintext data for sensitive information;
the first calculation module is used for calculating a mask value of the plaintext data;
the first processing module is used for filling the plaintext data and the mask value of the plaintext data into a mask table to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data;
the first sending module is used for sending the original data table and the mask table to a remote server for storage;
the second processing module is used for replacing the plaintext data in the original data table with the mask identifier to obtain a masked data table;
and the storage module is used for storing the mask table and the masked data table.
Optionally, the method further includes:
the second calculation module is used for calculating a target mask value of the target sensitive information plaintext data according to the target sensitive information plaintext data input by a user;
the first matching module is used for matching the target mask value with the masked data table to obtain a target mask identifier;
and the second obtaining module is used for obtaining the data in the masked data table according to the target mask mark.
Optionally, the method further includes:
the second sending module is used for sending a display request of the plaintext data to be displayed and a mask code identifier corresponding to the plaintext data to be displayed to the server;
and the first receiving module is used for receiving the plaintext data to be displayed sent by the server and displaying the plaintext data. Optionally, the storage module includes:
the first storage submodule is used for caching the mask table in a memory of the terminal; caching the mask table and the masked data table in a database of the terminal;
and the second storage submodule is used for deleting the mask table cached in the memory of the terminal when the preset time is exceeded and the mask table cached in the memory of the terminal is not called.
In a fourth aspect, the present invention provides a device for processing a sensitive information mask, including:
the third processing module is used for receiving and storing the original data table and the mask table sent by the terminal; the mask table includes: and plain text data of the sensitive information in the original data table, a mask value calculated according to the plain text data and mask values of the plain text data are filled in a mask table to obtain a corresponding mask identifier.
Optionally, the method further includes:
the second receiving module is used for receiving a display request of plaintext data to be displayed sent by a terminal and a mask code identifier corresponding to the plaintext data to be displayed;
the second matching module is used for matching the plaintext data to be displayed in the original data table according to the mask mark corresponding to the plaintext data to be displayed;
and the third sending module is used for sending the plaintext data to be displayed to the terminal for displaying.
In a fifth aspect, the present invention provides a terminal, including a processor, a memory, and a program or an instruction stored on the memory and executable on the processor, where the program or the instruction, when executed by the processor, implements the steps of the method for processing the sensitive information mask according to any one of the first aspect.
In a sixth aspect, the present invention provides a remote server, including a processor, a memory, and a program or an instruction stored on the memory and executable on the processor, wherein the program or the instruction, when executed by the processor, implements the steps of the method for processing the sensitive information mask according to any one of the second aspect.
In a seventh aspect, the present invention provides a readable storage medium, on which a program or instructions are stored, which when executed by a processor implement the method for processing a sensitive information mask according to any one of the first aspect or the steps of the method for processing a sensitive information mask according to any one of the second aspect.
According to the invention, the private data after the mask is stored in the client host, and the original private data is stored in the remote host, so that the protection of the private data is realized, and the network development cost is also reduced.
Drawings
Various other advantages and benefits will become apparent to those of ordinary skill in the art upon reading the following detailed description of the preferred embodiments. The drawings are only for purposes of illustrating the preferred embodiments and are not to be construed as limiting the invention. Also, like reference numerals are used to refer to like parts throughout the drawings. In the drawings:
fig. 1 is a schematic flowchart of a method for processing a sensitive information mask, which is applied to a terminal according to an embodiment of the present invention;
fig. 2 is a schematic query flow diagram of a processing method for a sensitive information mask according to an embodiment of the present invention;
fig. 3 is a schematic diagram illustrating a cache flow of a processing method for a sensitive information mask according to an embodiment of the present invention;
fig. 4 is a schematic flowchart illustrating a method for processing a sensitive information mask, which is applied to a remote server according to an embodiment of the present invention;
fig. 5 is a schematic structural diagram of a terminal to which a processing apparatus for sensitive information mask provided in an embodiment of the present invention is applied;
fig. 6 is a schematic structural diagram of a processing apparatus for sensitive information mask applied to a remote server according to an embodiment of the present invention;
fig. 7 is a schematic structural diagram of a server according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Referring to fig. 1, an embodiment of the present invention provides a method for processing a sensitive information mask, which is applied to a terminal, and includes:
step 11: acquiring an original data table input by a user, wherein the original data table comprises: plaintext data for sensitive information;
step 12: calculating a mask value of the plaintext data;
step 13: filling the plaintext data and the mask value of the plaintext data into a mask table to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data;
step 14: sending the original data table and the mask table to a remote server for storage;
step 15: replacing the plaintext data in the original data table with the mask identification to obtain a masked data table;
step 16: and storing the mask table and the masked data table.
In the embodiment of the invention, the private data after the mask is stored in the client host, and the original private data is stored in the remote host, so that the protection of the private data is realized, and the network development cost is also reduced.
In step 11, in the embodiment of the present invention, an original data table input by a user is obtained, where the original data table includes: plaintext data of sensitive information, for example: the original data table is a student class table, and the data in the student class table comprises: ID: 1; the class name: 1 shift; the name of the student: zhang III; zhang III is plaintext data of sensitive information; in step 12, the mask value of the plaintext data is calculated to be fc4e5996359a59962f36259c69cd5eba9351fe 23; thirdly, repeating; in step 13, filling the plaintext data and the mask value of the plaintext data into a mask table to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data; for example, the mask table data includes: mask value: fc4e5996359a59962f36259c69cd5eba9351fe 23; thirdly, repeating; plaintext data: zhang III; and the corresponding mask identification: 11; in step 14, the contents of the original data table and the mask table are sent to a remote server for storage; replacing the plaintext data in the original data table with the mask identifier in steps 15 and 16 to obtain a masked data table; the data in the student class table after the mask comprises: ID: 1; the class name: 1 shift; the name of the student: 11; storing the mask table and the masked data table, wherein the mask table stored in the terminal does not have the plaintext data, that is, the mask table data stored in the memory and the database of the terminal only include: mask value: fc4e5996359a59962f36259c69cd5eba9351fe 23; thirdly, repeating; and the corresponding mask identification: 11.
in the embodiment of the invention, as the data are respectively stored in the terminal and the remote server, the data can be synchronously transmitted to the terminal from the server to be inquired, displayed and the like; the terminal only stores the ciphertext data after the mask; the remote server stores the original plaintext sensitive data, and only a synchronous mask is needed during synchronization, so that the safety of the data in the synchronization process can be ensured.
In the embodiment of the present invention, optionally, the method further includes:
calculating a target mask value of the target sensitive information plaintext data according to the target sensitive information plaintext data input by a user;
matching the target mask value with the masked data table to obtain a target mask identifier;
and acquiring the data in the masked data table according to the target mask mark.
In the embodiment of the present invention, data is synchronized from the server to the terminal for operations such as querying and displaying, please refer to fig. 2, for example: after a user inputs plaintext of sensitive data, calculating a mask value of the input plaintext data to obtain masked sensitive data, namely a plaintext data mask, namely a target mask value, matching mask data stored in a terminal by using the target mask value, returning a mask id which is successfully matched, namely a target mask identifier, and finally obtaining data in a data table after the mask through a data table after the target mask identifier matches the mask stored in the terminal, wherein for example, if the plaintext data of the input target sensitive information is Zhang III, a class name in the data table after the mask is obtained according to the target mask identifier corresponding to Zhang III, the class name is 1 class; the calculation of the mask value of the input data needs to ensure the irreversibility and uniqueness of transformation, the irreversibility is to prevent reverse cracking of the private data, and the uniqueness is to ensure a one-to-one correspondence relationship between data after the mask and data before the mask, for example: the user inputs the identification number 123456789012345678 and calculates the hash value of the input string, but not limited to this algorithm, any irreversible algorithm may be used, so that the mask value c7de90db49 ceded 4007eb571663488f1663a114 to be spliced is spliced with the data value 1234 × 1663a114 with the middle bits replaced by stars, so that the masked data, namely the mask value c7de90db49 ceded 4007eb571663488f 571663488 a114, 1234 × 90db49 ceded 4007eb 1663a114, wherein the starred part is used for the presentation of the front end, and the c7de90 ceded 4007eb571663488f1663a114 is used for ensuring irreversibility and uniqueness, if the corresponding identification is 1, all the identification of the mask is returned as the identification number db 1.
In the embodiment of the present invention, optionally, the method further includes: sending a display request of plaintext data to be displayed and a mask mark corresponding to the plaintext data to be displayed to a server;
and receiving and displaying the to-be-displayed plaintext data sent by the server.
In the embodiment of the invention, scenes which do not need to display plaintext data, such as general sensitive data query, display and the like, can be directly matched with the masked sensitive data stored in the terminal; the method comprises the steps that a remote server can be requested to acquire plaintext data for a scene needing to display original plaintext data; and the sensitive data stored by the remote server and the terminal are encrypted and decrypted by a locally stored key.
In this embodiment of the present invention, optionally, the storing the mask table and the masked data table includes:
caching the mask table in a memory of the terminal;
caching the mask table and the masked data table in a database of the terminal;
and when the preset time is exceeded, the mask table cached in the memory of the terminal is not called, and the mask table cached in the memory of the terminal is deleted.
Referring to fig. 3, in the embodiment of the present invention, through a two-level cache mechanism, a first level cache is a memory, and a recently matched mask and a mask identifier corresponding to the recently matched mask are stored in the memory; firstly, inquiring whether a mask exists in a memory cache or not, namely inquiring whether a corresponding mask exists in the memory cache or not; if the query can be carried out in the memory, directly returning a mask id, namely a mask identifier; if the query can not be found in the memory, the second-level cache is switched to; the second-level cache is a file or DB database, all masks and mask identifiers corresponding to the masks are stored in the second-level cache, if the file or DB data can be inquired, the mask identifiers are returned, if the file or DB data cannot be inquired, a corresponding relation between one mask and id is inserted into the file or DB data, namely, the corresponding relation between one mask value and one mask identifier is added and written into the two-level cache, and finally, the mask identifiers are returned; if the masked data is short, sensitive information in the original data can be directly replaced without adding a mask table and a cache; the performance problem caused by mask calculation when a large amount of repeated data is inquired is solved, and the calculation cost is reduced.
Referring to fig. 4, the present invention provides a method for processing a sensitive information mask, applied to a remote server, including:
step 41: receiving and storing an original data table and a mask table sent by a terminal; the mask table includes: and plain text data of the sensitive information in the original data table, a mask value calculated according to the plain text data and mask values of the plain text data are filled in a mask table to obtain a corresponding mask identifier.
In the embodiment of the present invention, optionally, the method further includes:
receiving a display request of plaintext data to be displayed sent by a terminal and a mask mark corresponding to the plaintext data to be displayed;
matching the plaintext data to be displayed in the original data table according to the corresponding mask identification of the plaintext data to be displayed;
and sending the plaintext data to be displayed to the terminal for displaying.
In the embodiment of the invention, the private data after the mask is stored in the client host, and the original private data is stored in the remote host, so that the protection of the private data is realized, and the network development cost is also reduced; because the data are respectively stored in the terminal and the remote server, the data can be synchronized to the terminal from the server to be inquired, displayed and the like; the terminal only stores the ciphertext data after the mask, namely a data table after the mask; the remote server stores the original plaintext sensitive data, and only a synchronous mask is needed during synchronization, so that the safety of the data in the synchronization process can be ensured.
Referring to fig. 5, the present invention provides a device for processing a sensitive information mask, including:
a first obtaining module 51, configured to obtain an original data table input by a user, where the original data table includes: plaintext data for sensitive information;
a first calculation module 52, configured to calculate a mask value of the plaintext data;
a first processing module 53, configured to fill the plaintext data and the mask value of the plaintext data into a mask table, so as to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data;
a first sending module 54, configured to send the original data table and the mask table to a remote server for storage;
a second processing module 55, configured to replace the plaintext data in the original data table with the mask identifier to obtain a masked data table;
and a storage module 56, configured to store the mask table and the masked data table.
In the embodiment of the present invention, optionally, the method further includes:
the second calculation module is used for calculating a target mask value of the target sensitive information plaintext data according to the target sensitive information plaintext data input by a user;
the first matching module is used for matching the target mask value with the masked data table to obtain a target mask identifier;
and the second obtaining module is used for obtaining the data in the masked data table according to the target mask mark.
In the embodiment of the present invention, optionally, the method further includes:
the second sending module is used for sending a display request of the plaintext data to be displayed and a mask code identifier corresponding to the plaintext data to be displayed to the server;
and the first receiving module is used for receiving the plaintext data to be displayed sent by the server and displaying the plaintext data.
In this embodiment of the present invention, optionally, the storage module includes:
the first storage submodule is used for caching the mask table in a memory of the terminal; caching the mask table and the masked data table in a database of the terminal;
and the second storage submodule is used for deleting the mask table cached in the memory of the terminal when the preset time is exceeded and the mask table cached in the memory of the terminal is not called.
The processing device for the sensitive information mask provided in the embodiment of the present invention can implement each process implemented by the processing method for the sensitive information mask in the embodiment of the method in fig. 1, and is not described here again to avoid repetition.
Referring to fig. 6, the present invention provides a device for processing a sensitive information mask, including:
the third processing module 61 is configured to receive and store the original data table and the mask table sent by the terminal; the mask table includes: and plain text data of the sensitive information in the original data table, a mask value calculated according to the plain text data and mask values of the plain text data are filled in a mask table to obtain a corresponding mask identifier.
In the embodiment of the present invention, optionally, the method further includes:
the second receiving module is used for receiving a display request of plaintext data to be displayed sent by a terminal and a mask code identifier corresponding to the plaintext data to be displayed;
the second matching module is used for matching the plaintext data to be displayed in the original data table according to the mask mark corresponding to the plaintext data to be displayed; the processing device for the sensitive information mask provided in the embodiment of the present invention can implement each process implemented by the processing method for the sensitive information mask in the method embodiment of fig. 4, and is not described herein again to avoid repetition.
Referring to fig. 7, an embodiment of the present invention further provides a server 70, which includes a processor 71, a memory 72, and a computer program stored in the memory 72 and capable of running on the processor 71, where the computer program is executed by the processor 71 to implement the processes of the above-mentioned embodiment of the processing method for sensitive information mask, and can achieve the same technical effects, and no further description is provided herein to avoid repetition.
The embodiment of the present invention further provides a computer-readable storage medium, where a computer program is stored on the computer-readable storage medium, and when the computer program is executed by a processor, the computer program implements each process of the above-mentioned sensitive information mask processing method embodiment, and can achieve the same technical effect, and in order to avoid repetition, the details are not repeated here. The computer-readable storage medium may be a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.
Through the above description of the embodiments, those skilled in the art will clearly understand that the method of the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but in many cases, the former is a better implementation manner. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal (such as a mobile phone, a computer, a server, an air conditioner, or a terminal) to execute the method according to the embodiments of the present invention.
While the present invention has been described with reference to the embodiments shown in the drawings, the present invention is not limited to the embodiments, which are illustrative and not restrictive, and it will be apparent to those skilled in the art that various changes and modifications can be made therein without departing from the spirit and scope of the invention as defined in the appended claims.
Claims (10)
1. A method for processing a sensitive information mask, applied to a local client, comprising:
acquiring an original data table input by a user, wherein the original data table comprises: plaintext data for sensitive information;
calculating a mask value of the plaintext data;
filling the plaintext data and the mask value of the plaintext data into a mask table to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data;
sending the original data table and the mask table to a remote server for storage;
replacing the plaintext data in the original data table with the mask identification to obtain a masked data table;
storing the mask table and the masked data table;
calculating a target mask value of the target sensitive information plaintext data according to the target sensitive information plaintext data input by a user;
matching the target mask value with the masked data table to obtain a target mask identifier;
and acquiring the data in the masked data table according to the target mask mark.
2. The method of processing a sensitive information mask of claim 1, further comprising:
sending a display request of plaintext data to be displayed and a mask mark corresponding to the plaintext data to be displayed to a server;
and receiving and displaying the to-be-displayed plaintext data sent by the server.
3. The method of processing the sensitive information mask of claim 1, wherein the storing the mask table and the masked data table comprises:
caching the mask table in a memory of the local client;
caching the mask table and the masked data table in a database of the local client;
and when the preset time is exceeded, the mask table cached in the memory of the local client is not called, and the mask table cached in the memory of the local client is deleted.
4. A method for processing a sensitive information mask, applied to a remote server, includes:
receiving and storing an original data table and a mask table sent by a local client; the mask table includes: plaintext data of sensitive information in the original data table, a mask value obtained by calculation according to the plaintext data, and a mask value of the plaintext data and the mask value of the plaintext data are filled in a mask table to obtain a corresponding mask identifier;
the method for processing the sensitive information mask by the local client comprises the following steps:
acquiring an original data table input by a user, wherein the original data table comprises: plaintext data for sensitive information;
calculating a mask value of the plaintext data;
filling the plaintext data and the mask value of the plaintext data into a mask table to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data;
sending the original data table and the mask table to a remote server for storage;
replacing the plaintext data in the original data table with the mask identification to obtain a masked data table;
storing the mask table and the masked data table;
calculating a target mask value of the target sensitive information plaintext data according to the target sensitive information plaintext data input by a user;
matching the target mask value with the masked data table to obtain a target mask identifier;
and acquiring the data in the masked data table according to the target mask mark.
5. The method of processing a sensitive information mask of claim 4, further comprising:
receiving a display request of plaintext data to be displayed sent by a local client and a mask code identifier corresponding to the plaintext data to be displayed;
matching the plaintext data to be displayed in the original data table according to the corresponding mask identification of the plaintext data to be displayed;
and sending the plaintext data to be displayed to the local client for displaying.
6. An apparatus for processing a sensitive information mask, comprising:
a first obtaining module, configured to obtain an original data table input by a user, where the original data table includes: plaintext data for sensitive information;
the first calculation module is used for calculating a mask value of the plaintext data;
the first processing module is used for filling the plaintext data and the mask value of the plaintext data into a mask table to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data;
the first sending module is used for sending the original data table and the mask table to a remote server for storage;
the second processing module is used for replacing the plaintext data in the original data table with the mask identifier to obtain a masked data table;
the storage module is used for storing the mask table and the masked data table;
the second calculation module is used for calculating a target mask value of the target sensitive information plaintext data according to the target sensitive information plaintext data input by a user;
the first matching module is used for matching the target mask value with the masked data table to obtain a target mask identifier;
and the second obtaining module is used for obtaining the data in the masked data table according to the target mask mark.
7. An apparatus for processing a sensitive information mask, comprising:
the third processing module is used for receiving and storing the original data table and the mask table sent by the local client; the mask table includes: plaintext data of sensitive information in the original data table, a mask value obtained by calculation according to the plaintext data, and a mask value of the plaintext data and the mask value of the plaintext data are filled in a mask table to obtain a corresponding mask identifier;
the method for processing the sensitive information mask by the local client comprises the following steps:
acquiring an original data table input by a user, wherein the original data table comprises: plaintext data for sensitive information;
calculating a mask value of the plaintext data;
filling the plaintext data and the mask value of the plaintext data into a mask table to obtain a mask identifier corresponding to the plaintext data; the mask identification is uniquely corresponding to the plaintext data;
sending the original data table and the mask table to a remote server for storage;
replacing the plaintext data in the original data table with the mask identification to obtain a masked data table;
storing the mask table and the masked data table;
calculating a target mask value of the target sensitive information plaintext data according to the target sensitive information plaintext data input by a user;
matching the target mask value with the masked data table to obtain a target mask identifier;
and acquiring the data in the masked data table according to the target mask mark.
8. A local client comprising a processor, a memory and a program or instructions stored on the memory and executable on the processor, the program or instructions when executed by the processor implementing the steps of the method of processing a sensitive information mask according to any one of claims 1-3.
9. A remote server, comprising a processor, a memory and a program or instructions stored on the memory and executable on the processor, the program or instructions, when executed by the processor, implementing the steps of the method of processing a sensitive information mask according to any one of claims 4 or 5.
10. A readable storage medium, characterized in that a program or instructions are stored on the readable storage medium, which program or instructions, when executed by a processor, implement the method of processing a sensitive information mask according to any one of claims 1-3, or the steps of the method of processing a sensitive information mask according to any one of claims 4 or 5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111645854.1A CN114003964B (en) | 2021-12-30 | 2021-12-30 | Method and device for processing sensitive information mask |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111645854.1A CN114003964B (en) | 2021-12-30 | 2021-12-30 | Method and device for processing sensitive information mask |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114003964A CN114003964A (en) | 2022-02-01 |
| CN114003964B true CN114003964B (en) | 2022-03-25 |
Family
ID=79932276
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111645854.1A Active CN114003964B (en) | 2021-12-30 | 2021-12-30 | Method and device for processing sensitive information mask |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114003964B (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105739480A (en) * | 2016-01-26 | 2016-07-06 | 深圳市元征科技股份有限公司 | Data compression transmission method and data compression transmission device |
| CN108694333A (en) * | 2017-04-07 | 2018-10-23 | 华为技术有限公司 | User information processing method and processing device |
| CN109325360A (en) * | 2018-09-06 | 2019-02-12 | 北京三快在线科技有限公司 | Approaches to IM and device |
-
2021
- 2021-12-30 CN CN202111645854.1A patent/CN114003964B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105739480A (en) * | 2016-01-26 | 2016-07-06 | 深圳市元征科技股份有限公司 | Data compression transmission method and data compression transmission device |
| CN108694333A (en) * | 2017-04-07 | 2018-10-23 | 华为技术有限公司 | User information processing method and processing device |
| CN109325360A (en) * | 2018-09-06 | 2019-02-12 | 北京三快在线科技有限公司 | Approaches to IM and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114003964A (en) | 2022-02-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108647527B (en) | File packing method, file packing device, file unpacking device and network equipment | |
| CN106790156B (en) | Intelligent device binding method and device | |
| CN109743161B (en) | Information encryption method, electronic device and computer readable medium | |
| CN111339545B (en) | Method for generating data tag, electronic device and computer storage medium | |
| CN103118355A (en) | Display method of mobile terminal user information, mobile terminals and service system | |
| CN110502602B (en) | Data storage method, device, equipment and computer storage medium | |
| CN111444547A (en) | Method, apparatus and computer storage medium for data integrity attestation | |
| EP2913973A1 (en) | Trusted NFC smart poster tag | |
| US9787476B2 (en) | Image verification by an electronic device | |
| CN107342866A (en) | Electronic document verification method, equipment and system | |
| CN103139761A (en) | Information real-time show method and mobile communication terminal | |
| CN112632009A (en) | Electronic file processing method and device, storage medium and electronic equipment | |
| CN108418679B (en) | Method and device for processing secret key under multiple data centers and electronic equipment | |
| CN114003964B (en) | Method and device for processing sensitive information mask | |
| KR101753721B1 (en) | High speed multivariate quadratic digital signature scheme and system thereof | |
| CN106022161B (en) | A kind of data processing method and device | |
| CN109450643B (en) | Signature verification method realized on Android platform based on native service | |
| CN111339547A (en) | Method for generating data tag, electronic device and computer storage medium | |
| US8776191B2 (en) | Techniques for reducing storage space and detecting corruption in hash-based application | |
| CN116361833A (en) | Verification method and device and terminal equipment | |
| CN105049453A (en) | Signature verification method | |
| CN111447072B (en) | Method, apparatus and storage medium for generating data equivalent zero knowledge proof | |
| CN113946862A (en) | Data processing method, device and equipment and readable storage medium | |
| CN112202551A (en) | Password verification method and device based on zero-knowledge proof and electronic equipment | |
| CN111460523A (en) | Data integrity verification method and device and computer-readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |