Research And Design Of Enterprise Lan File Security Encryption Technology

Today as the development of the computer and network technology and the increasingof the level of enterprise information, enterprise LAN Security has become a researchhotspot. In fact, many serious security threatens against LAN are inside itself, among thesethreatens, greate amount of loss is caused by confidential information leakage.Greateamount of confidential information due to outflow of employees’ actions to the data,although many companies have made a monitor, it is still very hard to detect the illegalaction. In this case the file encryption can be taken, traditional file encryption methodsalways changes the user’s operating habits, and can not be mandatory encryption, LANtransparent file encryption has thus emerged. The so-called transparent file encryptionmeans that the user is unknown, when users open or edit the specified file, in fact thesystem encrypts and decrypts the files automatically.File in the hard disk is the ciphertextand in the memory is plaintext. Once out of the use environment, the application can not beautomatically opened because of having no the service of automatic decryption, thusleading to the effect of protecting the files.This design of a transparent file encryption system is mainly divided into client andserver, the client is responsible for interacting with the server, authenticating the user’sidentity, taking the file encryption/decryption keys, generating control files, and handlingof client information to the server. The server is mainly recording the user data, assigningthe permissions to users and managing the key information of user files etc. EnterpriseLAN Transparent file encryption system allows each user to log on to the internal LAN, ifthe user is legitimate, to operate the file in the purview without changing habits, butconfidential documents in the local computer’s hard drive is based on the form of ciphertext,and only the user owing permission to manipulate files can see the plaintext message,otherwise will be garbled. When the user by the communication tools sends outconfidential documents, the user without permission will not see the plaintext messagebecause of having no key information.Windows operating system’s file filter driver technology and file encryptiontechnology are focus of our attention, based on the driven programming technology ofkernel moduled，describing the main design module of local area network transparentencryption system carefully, and completing text documents transparent file encryption using the filter driver technology, at the same time comparing the transparent encryptionefficiency in different encryption algorithms based on experiment. The results show thatthe file security encryption technology based on filter driver could ensure security ofconfidential documents effectively.