摘要
为增强数据的机密性,在对存储读写流程优化的基础上提出一种内核级加密文件系统(KCFS),该内核级加密文件系统能克服加密应用程序的使用不便利性和用户级加密文件系统的低效性,在内核级文件系统层提供加/解密功能,从而保护存储系统中的数据。对比测试结果表明,KCFS比用户级加密文件系统CFS具有更好的读写性能。
In order to strengthen the confidentiality of data,this paper proposes a kind of Kernel-level Cryptographic File System(KCFS) combining the optimized data read/write flow.The kernel-level cryptographic file system can overcome the inconvenience of encryption application and the low efficiency of user-level encryption file system,so as to provide the encryption/decryption function in the kernel-level file system,protecting the data stored in the storage system.The result of comparative experiment shows that KCFS can reach better read/write performance compared to user-level encryption file,such as CFS.
出处
《计算机工程》
CAS
CSCD
北大核心
2010年第15期137-139,共3页
Computer Engineering
基金
国家"863"计划基金资助项目(2009AA01A402)
国家自然科学基金资助项目(60603074
60603075
60933002)
关键词
存储安全性
内核级加密文件系统
加密策略
storage security
Kernel-level Cryptographic File System(KCFS)
encryption policy