Remote storage service method and system based on SGX

A storage service and storage server technology, applied in the field of data storage service security, can solve the problems of limited storage capacity, small scale, and storage services that cannot be built or managed by customers, achieving high flexibility and convenient implementation and modification.

Active Publication Date: 2018-11-06
ZHEJIANG UNIV
View PDF6 Cites 27 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, its current user scale is small, the storage capacity is limited, and the system robustness is still slightly insufficient; and the storage service cannot be built or managed by customers, a...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Remote storage service method and system based on SGX
  • Remote storage service method and system based on SGX
  • Remote storage service method and system based on SGX

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0086] The present invention will be further described in detail below with reference to the accompanying drawings and embodiments. It should be noted that the following embodiments are intended to facilitate the understanding of the present invention, but do not limit it in any way.

[0087] Such as figure 1 As shown, the remote storage service system of the present invention includes 4 modules:

[0088] The preprocessing module runs on the client, generates a request and sends it to the identity verification module; preprocesses the data to be stored and sends it to the data verification module;

[0089] The identity verification module runs on the remote storage server, verifies the user's identity, authority and request, and feeds back the verification result to the preprocessing module;

[0090] The data verification module runs on the remote storage server, communicates with the preprocessing module and the SGX encryption and decryption module, and verifies the correctn...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a remote storage service method and system based on SGX. The method comprises remote storage service system initialization, data storage, data access and data cleaning operations; the remote storage service system initialization operation comprises the steps of creating a credible space for a key generation function, a key expansion function and an encryption and decryptionfunction by virtue of the SGX and generating a parent key in the credible space; the data storage operation comprises the steps of transmitting to-be-stored data to a remote storage server by a client, generating a sub key of the to-be-stored data in the credible space and encrypting the to-be-stored data; the data access operation comprises the steps of decrypting accessed data in the credible space by the remote storage server and transmitting to the client by virtue of an encrypted channel; and the data cleaning operation comprises the steps of collecting to-be-cleaned data and the sub keyby the remote storage server and deleting. The method disclosed by the invention enables data encryption and decryption processes as well as storage and access processes not to be snooped or interfered by a rogue program or other prerogative software.

Description

technical field [0001] The present invention relates to the technical field of data storage service security, in particular to an SGX-based remote storage service method and system. Background technique [0002] With the development of information technology and the increasing amount of information, data storage services play an increasingly important role. Compared with local storage, remote storage can reduce the pressure on users to manage data and reduce data management costs, and has gradually become an important means of data storage and management. [0003] However, the development of technology has also made the attacks on data storage systems more and more serious. Although remote storage systems can take more professional protection measures to protect data than local storage systems independently maintained by users, they often become the focus of attacks, especially those that store private information, commercial data, software, etc. A remote storage server or...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L9/08H04L29/08
CPCH04L9/0861H04L63/0428H04L63/08H04L63/168H04L67/1097
Inventor 陈建海刘丁豪何钦铭纪守领黄步添王津航
Owner ZHEJIANG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap