Cloud storage technology is an important research orientation in cloud computing field. Due to privacy leakage and security problems, it is difficult for organizations holding core data (such as innovative enterprise and army) to extensively apply public cloud storage service. In this paper, a secure private cloud storage system VI-PCS based on virtual isolation mechanism is put forward. The system virtualizes physical storage media and public storage service to become virtual storage capacity, and services are provided for the system through centralized life cycle management. The system divides file storage process into metadata management, virtual storage of file and physical storage of file. Secure and reliable data storage is achieved through file renaming, IO transparent encryption and decryption. The system provides security network disk access method based on isolated sandbox technology, and data security, controllability and availability are guaranteed through virtual isolation environment. Besides, the system comes up with file bi-synchronization method based on ordered Hash Tree to achieve efficient data synchronization, and the offline mode also improves system availability and adaptation. The results indicate the system is superior in terms of reliability, security, scalability and adaptation.
[1]
Reza Curtmola,et al.
Provable data possession at untrusted stores
,
2007,
CCS '07.
[2]
Ian Goldberg,et al.
A Secure Environment for Untrusted Helper Applications ( Confining the Wily Hacker )
,
1996
.
[3]
Mary Baker,et al.
Auditing to Keep Online Storage Services Honest
,
2007,
HotOS.
[4]
Ying Zhan,et al.
Cloud Storage Management Technology
,
2009,
2009 Second International Conference on Information and Computing Science.
[5]
Brent Waters,et al.
Ciphertext-Policy Attribute-Based Encryption
,
2007,
2007 IEEE Symposium on Security and Privacy (SP '07).
[6]
Jonathan Katz,et al.
Proofs of Storage from Homomorphic Identification Protocols
,
2009,
ASIACRYPT.