本地无数据的iSCSI磁盘数据保护机制  被引量:1

Data protection mechanism of local-no-data for iSCSI disk

在线阅读下载全文

作  者:张晋卿[1] 姚淑珍[1] 谭火彬[2] ZHANG Jinqing YAO Shuzhen TAN Huobin(School of Computer Science and Engineering, Beihang University, Beijing 100191, China School of Software, Beihang University, Beijing 100191, China)

机构地区:[1]北京航空航天大学计算机学院,北京100191 [2]北京航空航天大学软件学院,北京100191

出  处:《计算机应用》2017年第2期412-416,共5页journal of Computer Applications

摘  要:在信息窃取者合法登录系统的情况下,现有的Internet小型计算机系统接口(i SCSI)磁盘数据保护措施并不能保证数据不被窃取。通过结合磁盘读写重定向算法、磁盘透明加解密机制,提出一种本地无数据的i SCSI磁盘数据保护机制i SCSI_SEC。本地无数据指的是i SCSI磁盘中的重要数据只会存在于i SCSI磁盘服务器中而不会因为用户操作或者程序拷贝等原因在本地存储介质上存在,从而能够保证磁盘中重要数据的机密性。通过在系统内核层加载磁盘过滤驱动程序的方式来实现数据保护机制,并与True Crypt进行磁盘读写性能对比,实验结果显示i SCSI_SEC使磁盘读、写性能下降幅度小于True Crypt。结果表明,i SCSI_SEC不仅能够保证i SCSI磁盘数据的机密性,并且在i SCSI磁盘环境下比True Crypt有更好的性能表现。The existing Internet Small Computer System Interface (iSCSI) disk data protection measures cannot guarantee that the data will not be stolen when unexpected user logs into the system legally. By combining algorithm of redirect disk read and write, transparent encryption and decryption of disk, local-no-data iSCSI disk data protection mechanism named iSCSI_ SEC ( iSCSI disk data SECurity) was proposed. The concept of local-no-data means that the important data in iSCSI disk will only be stored in the server and not be stored in the local storage by user operation or program copy or some other reasons, which can guarantee the confidentiality of important data on the disk. iSCSI_SEC was realized in system kernel by loading a layer of disk filter. The experimental results show that compared with TrueCrypt, although iSCSI SEC decreased the disk read and write performance, but the decrease is less than that of TrueCrypt. iSCSI_SEC not only can guarantee the confidentiality of data on iSCSI disk, but also has better performance than TrueCrypt under the environment of iSCSI.

关 键 词:ISCSI协议 磁盘过滤 数据窃取 

分 类 号:TP309.2[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象