Unlock instant, AI-driven research and patent intelligence for your innovation.

A cloud file security storage system and access control method

A technology for secure storage and cloud files, applied in the field of cloud storage, can solve the problem that cloud file storage and access methods cannot be satisfied at the same time, and achieve the effect of ensuring data privacy and optimizing file management

Active Publication Date: 2020-05-19
SHAOXING UNIVERSITY
View PDF12 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Aiming at the above defects or improvement needs of the prior art, the present invention provides a cloud file security storage system and access control method, the purpose of which is to adopt file block digest and identity authentication, while ensuring data privacy, data authenticity and data Integrity, thereby solving the technical problem that the existing cloud file storage and access methods cannot meet the above requirements at the same time

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A cloud file security storage system and access control method
  • A cloud file security storage system and access control method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0053] A cloud file security storage system, such as figure 1 As shown, including cloud data management server, identity authentication server, and double verification server;

[0054] The cloud data management server includes public cloud storage and private cloud storage; the public cloud storage is used to store file ciphertext data and decryption keys provided by the data provider; the private cloud storage is used to store data provided by the data provider The label used to uniquely mark the ciphertext data; the label of the ciphertext data uses the data provider public key, data provider private key, and file data block abstract provided by the data provider as input information, and uses the abstract The fetching algorithm fetches the corresponding digest, as a label. The file data block summary is obtained according to the following steps:

[0055] (1) Divide the file data into n data blocks;

[0056] (2) Utilize the public SHA-1 algorithm to generate the summary o...

Embodiment 2

[0070] Embodiment 2 The user requests to access the files stored in the cloud file security storage system provided in Embodiment 1, and the specific steps are as follows:

[0071] A1. The user sends a request to the cloud data management server to access the ciphertext of the data file stored in the public cloud;

[0072]A2. The cloud data management server forwards the user's access request to the identity authentication server, namely the Kerberos server;

[0073] A3. The Kerberos server authenticates the user's identity through the user authentication protocol; if the authentication is passed, the Kerberos server generates user credentials and sends them to the user; otherwise, the user access is terminated;

[0074] A4. The user combines the received user credentials with the request in step A1, and then sends them together to the cloud data management server;

[0075] A5, the cloud data management server verifies the cloud file access permission in the user request; if ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a cloud file secure storage system and an access control method. The system comprises a cloud data management server and a double-verification server, and the dual verificationserver is a trusted end and is used for storing the digital signature of the file ciphertext data, simultaneously verifying the user identity and the data integrity according to the digital signatureof the ciphertext data, the requested ciphertext data and the authorization code provided by the user, namely dual verification, and informing the cloud data management server of a dual verificationresult. The method comprises the steps of dual checking and data access. According to an overall system structure design and access control method, data privacy, data authenticability and data integrity of the cloud file data service are ensured.

Description

technical field [0001] The invention belongs to the technical field of cloud storage, and more specifically relates to a cloud file safe storage system. Background technique [0002] A large number of IoT devices generate a large amount of various data, how to effectively store and manage these big data is one of the challenging issues in the field of data storage and access. Currently, the most effective way to solve this problem is to store big data through cloud platforms. This method can greatly reduce the cost of local data storage and maintenance, and can provide users with convenient access anywhere connected to the Internet. [0003] However, storing data files on cloud platforms has multiple security issues. First of all, data privacy must be ensured, that is to say, the cloud data storage manager must ensure that the files stored on the cloud platform are safe, even if illegal users obtain the files stored on the cloud platform, they cannot obtain the original te...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L9/32H04L29/08
CPCH04L9/3213H04L9/3247H04L63/0807H04L63/123H04L67/1097
Inventor 沈士根刘建华周海平冯晟胡珂立赵利平
Owner SHAOXING UNIVERSITY