| Modern society has entered the information age, and the information in the network increases exponentially. Cloud storage as a new mode of storage is popular with its strong storage capacity, high reliability, and well scalability. At present, the popularity of social networks such as Web mail, Facebook, MSN, and Ren Ren skyrocket as well as the network backup services of Dropbox, Jinshan network backup and Baidu cloud backup indicates the popularity of public cloud storage services. People are willing to store their data in the cloud and share with others. However, most people have concerned for the privacy of information in the public cloud. As the users' data is stored directly in the cloud in plaintext form, which is very easy to cause the user information leakage, followed by a huge loss to them, so the current cloud storage service has a great security risk. Therefore, a secure cloud storage product is urgently needed to solve the existing problems in cloud storage services, and to achieve the purpose of protecting users' privacy.Aiming at the problem of current cloud storage service, this paper designs and realizes a secure encrypted network backup system. It realizes the protection of users' data and privacy. Our main work and research content is as follows:A key management scheme is proposed. It can hierarchically manage all the keys in the network backup. The key is divided into three layers structure: the first layer is the password key; the second layer includes the primary key and user public-private key pairs; the third layer is file encryption key. Password key encrypts the primary key and user private key; the primary key encrypts file encryption keys; the upper key encrypts the lower keys, which guarantees the security of all the keys. Users only need to remember the login password. The primary key, the private key, and file encryption key are stored in the form of cipher text in the clouds. What's more, the cloud service provider knows nothing of the user key. Hierarchical key management is convenient, safe and efficient.In this paper, a secure network backup system is introduced, which is capable of encrypting before uploading and decrypting after downloading. The file will be encrypted in user's computer before being uploaded to the cloud storage. Each file is given a specific key and is encrypted securely and efficiently through the AES algorithm. Each key will be encrypted by the primary key before being added to the file header to be stored as part of the file. The file is downloaded to user's computer before being decrypted. This process ensures that the data exists as plain text exclusively on user's computer. User's data is stored in the cloud in the form of cipher text, which can prevent it from being disclosed or being accesses by illegal users or suppliers of cloud service. Cipher texts can be shared through public key algorithm, in which the downloaded file is decrypted on user' computer before being encrypted by the other user's public key and unloaded to the cloud. During this process, the key of the file cannot be disclosed.The paper deploys the secure encrypted network backup system using the B/S architecture and analyzes the key security and file security of the system. Then we conduct an experimental evaluation of our proposed techniques. Finally, the experimental results demonstrate the proposed network backup system can meet the demand for internet backup and achieve acceptable security and efficiency. |
PDF Full Text Request