| With the extensive application of computer and the rapid development o f networktechnology, computer data has become more and more important in our daily life andits security has become an increasingly prominent problem. At the same time, datasecurity technology also has a rapid development. Data encryption softwares, networkfirewalls and other information security products come out one after the other, but theymore or less have various problems. How to make a better and more effectiveprotection of personal computer data security becomes a research focus.Based on the driver layer of Windows, this paper designs and implements acomputer data security protection system in order to effectively monitor and protectcomputer resources. The system mainly consists of two modules: the file systemprotection module and the network protection module. The file system protectionmodule has access control on files and USB storage devices and transparently encryptsand decrypts files based on RBAC model, filter driver technology and virtual disktechnology. The use of these technologies can effectively protect the file security whenthe storage device is lost or stolen, or the administrator password is cracked. Thenetwork protection module filters the network data packets in the application layer andthe kernel layer. This module uses WinSock2SPI technology in the application layerand uses NDIS HOOK and TDI HOOK technology in the kernel layer, which greatlyimproves the safety performance of the system. These two modules both have logfunction, which records file operations and network behaviors and can be used toposition and analysis system intrusion.The system designed in this paper safeguards the confidentiality and integrity ofcomputer data better and offers more reliable protection services for individual users. |
PDF Full Text Request