计算机工程 ›› 2011, Vol. 37 ›› Issue (18): 127-130.doi: 10.3969/j.issn.1000-3428.2011.18.042

• 安全技术 • 上一篇    下一篇

一种基于会话的安全Web文件服务模型

陈兰香 a,b   

  1. (福建师范大学 a. 数学与计算机科学学院;b. 网络安全与密码技术重点实验室,福州 350108)
  • 收稿日期:2011-02-15 出版日期:2011-09-20 发布日期:2011-09-20
  • 作者简介:陈兰香(1979-),女,讲师、博士,主研方向:Web文件服务,网络存储,信息安全,计算机体系结构
  • 基金项目:
    福建省教育厅科技基金资助项目(JA10079);福建省高校产学合作科技基金资助重大项目(2010H6007)

Secure Web File Service Model Based on Session

CHEN Lan-xiang a,b   

  1. (a. School of Mathematics and Computer Science; b. Key Lab of Network Security and Cryptology, Fujian Normal University, Fuzhou 350108, China)
  • Received:2011-02-15 Online:2011-09-20 Published:2011-09-20

摘要: 数据中心内的文件服务存在未授权访问等安全威胁。针对该问题,提出一种基于会话的安全Web文件服务模型,通过分离文件资源数据及其原数据,实现计算资源与存储资源的独立计算,并建立相应的安全模型和安全协议。利用BAN逻辑对协议进行安全性分析,结果证明其可以抵御多种常见攻击。基于Apache的性能测试结果表明,该模型具有较高的安全性及实用性。

关键词: Web文件服务, 文件服务模型, 安全模型, 形式化方法

Abstract: Some security threats exist in file services of data center, such as access without authorization. A session-based secure Web file service model is established. It is described and analyzed in formal. To separate computing and storage resources, the idea of separating the meta-data from file resource data is introduced. According to the threats of the model, corresponding security model and protocol are established. Performance test based on Apache show the model has higher security and better practicability.

Key words: Web file service, file service model, secure model, formal methods

中图分类号: