一种基于虚拟隔离机制的安全私有云存储系统  被引量:2

Secure Private Cloud Storage System Based on Virtual Isolation Mechanism

在线阅读下载全文

作  者:鲍爱华[1] 袁晓萍[1] 陈锋[2] 缪嘉嘉[1] 

机构地区:[1]解放军理工大学指挥信息系统学院,南京210007 [2]第二军医大学,上海200000

出  处:《计算机科学》2014年第1期202-207,216,共7页Computer Science

基  金:江苏省自然科学基金项目(BK2010131)资助

摘  要:云存储技术是云计算领域的重要研究方向,由于存在隐私泄漏和安全问题,公共云存储服务在持有核心数据的组织(如创新型企业、军队)中往往难以得到广泛应用。提出一种基于虚拟隔离机制的安全私有云存储系统VIPCS:系统将物理存储介质和公共云存储服务虚拟化为虚拟存储能力,通过集中生命周期管理使其为系统提供服务;系统将文件存储过程划分为元数据管理、文件虚拟存储和文件物理存储3个层面,通过文件重命名、IO透明加解密等方式实现数据安全可靠存储;系统提供基于隔离沙箱技术的安全网盘访问方法,通过虚拟化隔离环境来保证数据安全、可控、可用;系统提出基于有序哈希树的文件双向同步方法来实现数据的高效同步,其离线模式也提高了系统的可用性和适应性。结果表明,系统在可靠性、安全性、可伸缩性和适应性方面具有一定的优势。Cloud storage technology is an important research area of cloud computing, because of the loss of privacy and security concerns, public cloud storage services are often difficult to be widely used in organizations which keep the core data, such as the innovative enterprises or the army. VI-PCS, a secure private cloud storage system based on virtual iso- lation mechanism,was proposed in which physical storage media and public cloud storage services are virtualized as storage capabilities,which are managed through centralized life-cycle, provide storage services for applications in VI- PCS;file storage procedure is divided into three levels(i, e. Meta-data management, virtual storage and physical stora- ge), in which secure, reliable data storage is achieved by file renaming and transparent encryption and decryption tech- nology; a secure net disk based on isolated sandbox is provided as access method, and data security, controllability and a- vailability are achieved in this isolated environment; a file bidirectional synchronization method based on ordered hash tree is proposed, and its offline mode is also helpful to improve system availability and adaptability. The results show that VI-PCS has certain advantages in reliability, security, scalability and adaptability.

关 键 词:云计算 私有云存储 虚拟隔离 沙盒 双向同步 

分 类 号:TP393[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象