论文部分内容阅读
近年来,网络硬盘系统得到了快速地推广和普及,而频发的网盘提供商泄漏用户数据的事件却表明:现有的许多网盘系统在保护用户数据安全方面仍然存在着较大的缺陷.本文提出并实现了一种高效便捷的网盘系统安全模块(security module of online storage system),使得加载此模块后的网络硬盘系统能够为用户提供数据私密性、数据完整性和访问控制权限等功能.为了保证网盘系统的独立性,本安全模块采用松耦合的设计方式,并引入第三方认证中心以加强网盘系统的权威性.除此之外,本安全模块还采用了分散式密钥管理、懒惰权限撤销、安全元数据缓存等一系列技术以降低安全模块对网盘系统在性能方面所产生的影响.实验结果表明,加载安全模块后网盘系统的性能并没有出现明显地下降,其整体性能仍在用户能够接受的范围.
In recent years, the network hard disk system has been rapidly popularized and popularized, and frequent network disk providers leak user data event shows that: Many existing network disk system in the protection of user data security there are still major flaws This paper presents and implements a kind of efficient and convenient security module of online storage system, which makes the network hard disk system loaded with this module provide users with data privacy, data integrity and access control permissions Function.In order to ensure the independence of network disk system, the security module using loosely coupled design, and the introduction of third-party certification center to strengthen the authority of the network disk system.In addition, the security module also uses a decentralized Key management, lazy permission revocation, security metadata cache, and a series of technologies to reduce the impact of the security module on the performance of the network disk system.Experimental results show that the performance of the network disk system does not significantly decline after loading the security module , Its overall performance is still user acceptable range.