摘要
保护计算机中文件安全的方法有访问控制和加密,越来越多的研究者开始关注基于文件系统内核的控制方法。在分析现有控制文件安全方法的基础上,提出了根据用户信任等级和目录安全级别确定用户访问权限的目录安全控制策略。并简要介绍了文件系统过滤驱动的工作原理;然后从内核控制模块和控制目录设置模块两方面详细介绍了目录安全控制系统的设计过程。目录安全控制系统可有效地保证文件的安全性,同时兼顾了操作的方便性和适用的广泛性。
File sectLrity is protected by access control and encryption, the method based on file system kernel is focused by more and more researchers. After the file security control methods are analyzed, the directory security control strategy which based on user credit level and directory security level is presented and the principle of file system filter driver is introduced firstly. The kernel control module and the control directory setting module are discussed in the design of directory security control system. The experiment shows that the directory security control system can protect file effectively, fit all kinds of memory and operate easily.
出处
《计算机工程与设计》
CSCD
北大核心
2008年第23期5955-5957,5961,共4页
Computer Engineering and Design
关键词
文件系统
过滤驱动
控制目录
目录安全控制策略
加密
file system
filter driver
control directory
directory security control strategy
encryption
