摘要 |
The present invention relates to the field of IT technologies, and in particular to a method, an apparatus, and a system for protecting cloud data security. According to the method for protecting cloud data security provided in the present invention, a key management center encrypts original data M sent by a first terminal; uploads encrypted data C1 that is obtained through encryption to a cloud server; and when receiving a request for decrypting data or a request for downloading data sent by a second terminal, obtains encrypted data C2 and sends the encrypted data C2 to the second terminal, so that the second terminal decrypts the encrypted data C2 according to a key owned by the second terminal, so as to obtain the original data M. The method provided in embodiments of the present invention not only ensures that the second terminal can decrypt the encrypted data C2 according to a key owned by the second terminal, so as to obtain the original data M, but also ensures that a key of the encrypted data C1 stored in the cloud server may not be leaked, thereby reducing a risk of key leakage and enhancing security of data sharing. |