| With the rapid development of cloud storage, it has shown its great advantage compared with the traditional methods. It is more convenient and it could offer large storage space.Currently the major Internet companies, equipment manufacturing companies are offering their own cloud storage service and also they have a great number of users.But there are still a lot of people who requires a higher level of security.They stalled after that the cloud storage security accident happened.In this paper,The author propose a new cloud storage security solution combined with the existing problems through in-depth study of the storage security incidents happened recently.The author set up a a trusted network gateway node with the data encryption fuction between the client and cloud storage server. The network gateway can enhance information security which is stored on the cloud though Identity authentication based on face recognition technology and data encryption. The user had to pass the Identity authentication before they storage date on the cloud.The gateway encrypt the data when the date crossing the network gateway.This design is designed to achieve an on-chip system framework which can be embedded into the home router, with a wide range of applications.And through the Hardware encryption based on FPGA,it can get a higher efficiency.The design achived on the Xilinx Zynq-7000chip which is a software and hardware fully programmable platform and first integrated ARM’s Cortex-A series core.This design uses Software/Hardware Co-Design method to taking full use of the zynq, taking advantage of hardware accelerated encryption algorithms to improve the throughput. The data encryption average upload speed of the whole process is about4MB/S, downloaded to the client to decrypt an average speed of about2MB/S.The paper’s Specialty work is mainly reflected in:First, cloud storage of user login authentication based on face authentication; Second, system design using software and hardware co-design methed to optimize the system structure and improving the operating efficiency; Third, Encryption algorithms are encapsulated into IP core,it can be remotely re-configured,which can increase security by replacement IP frequently. |
