| With the emergence of all kinds of advanced computer network technology andinformation technology,especially the emergence of cloud computing, informationsharing becomes more common,therefore,the security problem of shared datainformation is becoming more and more attention by people.Information securityhidden danger caused by many factors,mainly has: the relatively easy access devicesin a network;Information data using an encrypted transmission in the network andstorage;The users usually have access to access to a shared information,which willhave a chance to modify and steal share data information;Using computer equipmentinappropriately may also make the leakage of information data.Based on all kinds of problems of the current file sharing system,this paperproposes a shared file storage solutions based on unity authorization and IBE(Identity-based Encryption, Identity Based Encryption),which makes the safety of theshared file must been improved.The scheme can prevent both from externalunauthorized access to a shared file,and to prevent unauthorized access to a sharedfile,from internal especially to prevent the system administrator unauthorized accessto a shared file.This system mainly includes the file sharing client, the file sharingserver, the file decryption server and the identity management system,this thesisfocuses on the file sharing server and the file decryption server.The schemementioned refers to through the different unified access control model,to createdifferent access control strategy,which was carried out on the user’s accesspermissions control.To overcome the shortcoming of the current access control,thescheme of access control policies to create the server side and client strategy ofcombining the way,thus realize the comprehensiveness of access control.In theconcrete implementation process,we design four kinds of access controlpolicy,including the access control policy based on the user,the access control policybased on user groups,the access control policy based on user roles and the accesscontrol policy based on user attributes.The IBE technology the scheme mentioned is akind of identity based encryption technology,the encryption technology can make upfor some deficiencies,the current encryption application to reflect in the system and its advantages,can ensure the safety and convenience of the shared file encryption.Atthe same time,the system of the stored depends on the shared file on the server in theorganizational structure of the enterprise itself,so that ensure the shared file storageorder.In the process of the implementation of this system,the server is based on theJ2EE development,the server is using Tomcat,mainly using the servlet responds to theclient’s request,using XML to the strategy in the development,backgroundmanagement with the help of the relevant technology of the struts2and Spring.Finallythis system in the related technical support and under the joint action of eachcomponent, reach the file security shared purpose. |
PDF Full Text Request