安全云存储系统研究

The research of secure cloud storage system

摘要:(摘要内容经过系统自动伪原创处理以避免复制,下载原文正常,内容请直接查看目录。)

云存储是今朝互联网成长最炙手可热的主题。私有云可以便利、高效、平安的存储用户数据,它曾经成为\"弗成或缺的一种数据存储方法。而公有云面向企业和当局,它由于低本钱、操作便利等优势正在被愈来愈多的公司所应用。两种云存储产物都愈来愈被人们所看重。本文起首引见了云存储体系的近况和分歧品种的云存储产物,随后比较了分歧种散布式存储体系和多种客户端技巧的优缺陷。在此基本上,处理了今朝技巧上存在的一些难点,并终究完成了一个具有高机能、平安、灵巧、用户亲和的云存储体系。本文的重要任务以下:(1)对今朝各类云存储完成技巧停止了剖析,提出了这些技巧在完成云存储体系时会碰到的成绩与难点。并在需求剖析的基本上,提出了一个云存储体系的设计计划。(2)对Sector存储体系停止了改良,设计了实用于云存储体系的HTTP网关和机能更好的Master/Slave网关。(3)设计了两套分离实用于不具有和具有文件同享功效存储体系的加密协定。(4)具体引见了Shell extension技巧的道理,论述了应用该技巧在Windows下开辟虚拟驱动器的进程,最初胜利完成该客户端,并将其与Sector存储体系链接,完成全部存储体系的设计开辟。(5)对体系的机能停止了测试,个中包含文件传输机能与稳固性、HTTP网关与Master/Slave网关机能比较、和客户真个机能。测试成果显示,增长了Master/Slave网关的Safecloud机能优越。Safecloud客户真个用户体验优良。愿望本论文的研讨结果能对其他云存储的研讨供给必定的赞助。

Abstract:

Cloud storage is currently the hottest topic of the growth of the internet. Private cloud can be convenient, efficient and safe storage of user data, it has become the "Eph or lack of a data storage method. The public cloud oriented enterprises and the government, because of its low cost, convenient operation and other advantages are being used by more and more companies. Two kinds of cloud storage products are more and more attention. This paper introduces the cloud storage cloud storage system and the status of product variety, then compared the advantages and disadvantages of different distributed storage system and a variety of client skills. This basically, with some difficulty existing techniques, and eventually complete with a high performance, safe, smart, user friendly cloud storage system. The important task of this paper are as follows: (1) to complete at present all kinds of cloud storage techniques are analyzed, put forward the achievements and difficulties of these skills will be met in the cloud storage system is completed. And the analysis of demand basically, puts forward the design plan of a cloud storage system. (2) the Sector storage system has been improved, the design of Master/Slave gateway and HTTP gateway function better applied to cloud storage system. (3) designed two sets of practical separation with and without encryption protocol with file sharing function storage system. (4) detailed introduced the shell extension techniques of truth, discusses the application skills to open up the process of virtual drive in windows, the initial victory completed the client and the sector storage system link to complete the full storage system design and development. (5) on the performance of the system were tested, including the file transfer function and stability, HTTP gateway and Master/Slave network, and can shut down the client's function. The test results showed that the growth of Master/Slave gateway Safecloud superior performance. Safecloud customers really good user experience. The results of this study wishes to other cloud storage research provides certain sponsorship.

目录:

摘要5-7
ABSTRACT7-8
目录9-13
第一章 绪论13-17
    1.1 研究背景与意义13-14
        1.1.1 研究背景13-14
        1.1.2 研究意义14
    1.2 本文贡献14-15
    1.3 论文结构15-17
第二章 云存储系统技术介绍17-41
    2.1 云存储技术现状17-18
    2.2 Sector/sphere 存储系统技术介绍18-21
        2.2.1 Sector/sphere 简介18-19
        2.2.2 Sector 的结构19
        2.2.3 文件系统管理19-20
        2.2.4 系统安全性20-21
        2.2.5 管理和数据传输21
    2.3 HDFS 存储系统简介21-26
        2.3.1 HDFS 架构22-23
        2.3.2 通信协议23
        2.3.3 数据副本与复制23
        2.3.4 数据组织23-24
        2.3.5 数据存储可靠性24-25
        2.3.6 总结25
        2.3.7 Sector 与 HDFS 的对比25-26
    2.4 安全文件系统 Plutus26-34
        2.4.1 Plutus 介绍26-27
        2.4.2 Plutus 功能设计27-33
        2.4.3 操作流程33-34
        2.4.4 总结34
    2.5 客户端技术介绍34-36
        2.5.1 自动同步文件35
        2.5.2 自动同步数据35
        2.5.3 虚拟文件系统35-36
    2.6 Shell extension 技术介绍36-38
        2.6.1 虚拟磁盘技术36-37
        2.6.2 Shell extension 技术介绍37
        2.6.3 Shell extension 与 VFS 技术对比37-38
    2.7 安全云存储关键技术分析38-39
    2.8 本章小结39-41
第三章 存储系统与 HTTP 网关设计41-60
    3.1 Safecloud 系统功能分析与设计41-43
        3.1.1 Safecloud 的功能和特点41-42
        3.1.2 Safecloud 的设计分析42
        3.1.3 Safecloud 整体架构42-43
    3.2 Sector 结构分析43-47
        3.2.1 Sector 服务器结构和接口44
        3.2.2 Sector 接口介绍44-46
        3.2.3 Sector 的文件操作流程和网络访问测试46-47
        3.2.4 Sector 的缺陷47
    3.3 HTTP 网关设计47-55
        3.3.1 HTTP 网关服务器结构47-49
        3.3.2 具有 Master/Slave 结构的 HTTP 网关设计49-51
        3.3.3 Master 网关设计51-52
        3.3.4 Slave 网关与 HTTP 接口设计52-55
    3.4 Security 认证系统改进55-59
        3.4.1 Security 用户认证过程分析55-57
        3.4.2 认证过程改进57-59
    3.5 本章小结59-60
第四章 加密系统设计60-70
    4.1 不具有文件共享功能的加密系统设计60-63
        4.1.1 密钥的产生和存储过程61-62
        4.1.2 用户更改密码时密钥的更新过程62
        4.1.3 文件传输过程分析62
        4.1.4 优缺点分析62-63
    4.2 具有文件共享功能的加密系统设计63-69
        4.2.1 加密系统需求分析63-64
        4.2.2 数据库改进64-65
        4.2.3 加密系统设计65-67
        4.2.4 文件的签名和验证67-68
        4.2.5 权限撤销68
        4.2.6 优缺点分析68-69
    4.3 本章小结69-70
第五章 Windows 下的云存储客户端设计70-86
    5.1 客户端需求分析与功能介绍70-71
    5.2 FSAPI 设计71-72
    5.3 SEVFS 组织方法72-81
        5.3.1 Shell extension handler 接口介绍72-73
        5.3.2 Item 中间类设计73-76
        5.3.3 在系统中注册的组件设计76-78
        5.3.4 模块的功能分析78
        5.3.5 操作时模块的调用关系78-81
    5.4 用户会话设计81-82
    5.5 客户端功能82-84
    5.6 Safecloud 文件读写流程84-85
    5.7 本章小结85-86
第六章 系统测试86-95
    6.1 测试目标及方法86-87
        6.1.1 测试目标86-87
        6.1.2 测试方法87
    6.2 测试环境87-88
        6.2.1 测试环境87-88
        6.2.2 服务器初始状态88
    6.3 文件传输测试88-94
        6.3.1 Sector 性能测试88-90
        6.3.2 HTTP 网关性能测试90-91
        6.3.3 Master/Slave 网关性能测试91-92
        6.3.4 客户端性能测试92-94
    6.4 本章小结94-95
第七章 总结与展望95-97
    7.1 本文总结95
    7.2 研究展望95-97
参考文献97-100
致谢100-101
攻读硕士学位期间已发表或录用的论文101