摘要
在数据泄露的问题上,许多已经被研究的方案,它们能一定程度上保护这些数据,但是却给系统的易用性带来严重影响。针对此问题,本文提出了一种基于驱动层透明加密系统的新模型。一方面,结合应用审计技术与透明加解密技术,给数据提供双层保护。另一方面,针对双缓存技术所存在的缺陷和不足,提出新的缓存管理的方案来实现缓存同步的问题,解决了可能因缓存导致的泄密问题,也在大大提高系统了性能和易用性。同时,对于文档密钥管理和用户合法性认证,提出新的方案,使得密钥管理和用户认证变得简单而且安全可行。
In light of data leakage issue,many proposed and studied schemes can protect such data in a certain extent,and however,also bring much serious influence to the system.Aiming at this problem,a new model based on driver layer transparent encryption system is proposed.On the one hand,it combines applicaLion audit technology and transparent encryption technology,and provides data with twofold protection,and on the other,in considering the deficiencies oi double—cache mechanism,a novel scheme of cache—management to achieve cache synchronization is presented.This design can avoid Lhe leakage caused by cache while improving the sysLem performance and usability.Meanwhile,a new method for file key management and user validity authentication is also suggested so as Lo make such things easier and safer.
出处
《信息安全与通信保密》
2015年第5期102-106,共5页
Information Security and Communications Privacy
基金
国家自然科学基金项目(No 61271220)
关键词
数据泄露
透明加密
应用审计
缓存管理
密钥管理
合法性认证
data leakage
transparent encryption
application audit
cache management
key management
validity authentication
