摘要
提出并实现了基于Windows NTFS和FAT32文件系统的关键档案保护系统.该系统采用权限验证、环境可信验证、数据完整性验证和透明加解密等技术手段,对系统的环境信息进行检测并生成环境可信证书保存于USBKEY中.通过权限认证的可信用户只能访问相应权限的档案;木马和病毒无法对关键档案进行访问;脱离可信环境的档案由于无法进行认证将无法使用,从而实现了对关键档案的保护.测试结果表明,该系统能够很好地满足关键档案机密性、完整性以及防泄漏等需求,具有较好的可行性和实用性.
This paper designed and implemented the archive protection system based on Windows NTFS and FAT32 file system.The system used authority verification,environment credibility verification,data integrity verification and transparent encryption to detect environmental information and generate trusted certificates into USBKEY.Trusted users can only access certain archives with corresponding authority,butt Trojans can not.The archives can not be accessed outside the system.The system proves through testing to be able to meet the demands for confidentiality,integrity,anti-divulgence and so on of the important archives through testing.
出处
《武汉大学学报(理学版)》
CAS
CSCD
北大核心
2009年第1期53-56,共4页
Journal of Wuhan University:Natural Science Edition
基金
国家自然科学基金资助项目(90104025)
关键词
环境可信
关键档案保护
环境可信验证
数据完整性
透明加解密
environment trust
archives protection
environment trust confirmation
data integrity
transparent encryption and decryption