摘要
云存储将存储资源作为服务通过互联网提供给用户使用,是云计算中基础设施即服务的一种重要形式。云存储可以将众多廉价的存储介质整合为一个存储资源池,用户可以按自己对存储资源的实际需求量向云服务提供商租用池内资源,省去了本地的存储硬件及人员投入。同时,将存储的基础设施交由专业的云服务提供商来维护可以保证更好的系统稳定性。但是由于大部分云存储服务提供商存储在云端的文件是明文状态而且用户丧失了对数据的绝对控制权,因此针对云服务提供商的所有安全隐患都将直接关系到用户数据的安全性。文章全面分析了云服务系统中存在的安全隐患,提出了相应的应对措施,设计实现了一套密文存储与密文检索开放云服务方法和系统,打消了用户选用云方案的顾虑,对于促进云计算的发展、增加信息系统的使用效率都具有十分重要的意义。
Cloud storage provides storage resources as services to users through the Internet. It is an important form of infrastructure as a service in cloud computing. Cloud storage can consolidate many inexpensive storage me-dia into one storage resource pool. Users can rent pool resources to cloud service providers according to their actual demand for storage resources, eliminating local storage hardware and personnel investment. At the same time, maintaining the storage infrastructure with a professional cloud service provider can ensure better system stability. However, since most cloud storage service providers store files in the cloud in plain text and users lose absolute control over the data, all security risks for cloud service providers will directly affect the security of user data. The article comprehensively analyzes the hidden dangers in the cloud service system, proposes corresponding counter-measures, designs and implements a set of cipher text storage and cipher text retrieval open cloud service methods and systems, and dispels the concerns of users using cloud solutions. The development of cloud computing and the increasing efficiency of the use of information systems are of great significance.
作者
孙军
谈鹏图
林文兴
左晋佺
SUN Jun;TAN Peng-tu;LIN Wen-xing;ZUO Jin-quan(Shenzhen Cloudta Information Technology Co.,Ltd.,Shenzhen 518057,China;Jinan University,Guangzhou 510632,China)
出处
《软件》
2018年第10期92-96,共5页
Software
关键词
信息安全
密文存储
密文检索
云服务
Information security
Cipher-text storage
Cipher-text search
Cloud service
