CN105407119A - Cloud computing system and method thereof - Google Patents
Cloud computing system and method thereof Download PDFInfo
- Publication number
- CN105407119A CN105407119A CN201410464668.1A CN201410464668A CN105407119A CN 105407119 A CN105407119 A CN 105407119A CN 201410464668 A CN201410464668 A CN 201410464668A CN 105407119 A CN105407119 A CN 105407119A
- Authority
- CN
- China
- Prior art keywords
- server
- storage server
- module
- management
- cloud computing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a cloud computing system, comprising a cloud management server, a plurality of storage servers and a plurality of computing servers. The cloud management server further comprises a storage management module for receiving a storage control command and data to be stored, splitting the data to be stored into a plurality of data blocks based on a variety of splitting rules, and distributing and storing the data blocks into the plurality of storage servers; and a computing management module for receiving and analyzing a computing control command, selecting any one of the plurality of storage servers to extract the data blocks, transmitting the data block to the plurality of computing servers for analysis and processing, and returning the processing result.
Description
Technical field
The present invention relates to a kind of cloud computing system, particularly relate to a kind of cloud computing system improving user information confidentiality degree.
Background technology
Cloud computing is a kind of payment and using forestland of IT infrastructure, refers to obtain resource requirement by network in the mode as required, easily expanded; The core concept of cloud computing, is by a large amount of computational resource unified management of connecting with network and scheduling, forms a computational resource pond to user's on-demand service; Cloud computing is the product that the traditional computers such as grid computing, Distributed Calculation, parallel computation, effectiveness calculating, the network storage, virtual, load balancing and network technical development merge; In fact, many cloud computing deployments depend on computer cluster, also absorb the feature of Autonomic Computing and effectiveness calculating.
By making Computation distribution on a large amount of distributed computers, but not in local computer or remote server, the operation of enterprise data center will be more similar to the Internet, this make enterprise can by resource switch to need application on, access computer and storage system according to demand.In other words, be exactly preserve software in advance in the server such as heart in the data, information etc. that user utilizes, user is enable to utilize this software, information by accessing this server, consequently, free the traditional computer modes of operation such as user buys from software, installation, renewal operation, also need not carry out the management of information.In addition, without the need to the software, the information that enable the Computer Storage operated by user be provided by server, the specification configuration of the computer therefore operated by user can not be high, can be set to required MIN specification; Therefore, for the information that user utilizes, not manage under the computer environment of user self, but manage under the environment of third-party computer, also exist in information the sales information in enterprise, financial information, customer information, new product information etc. according to circumstances and the high information of confidentiality.
Although the broad prospect of application of current cloud computing receives people and more and more payes attention to, the safety encipher problem of cloud computing cannot solve always, seriously hinders further developing of cloud computing.In existing cloud computing system, data to be stored take centralised storage way to manage usually, and, data are without encryption, cause great threat to the personal secrets storing data and user, urgently research and develop a kind of novel cloud computing system, the distributed cryptographic realizing storing data stores, and greatly can improve the fail safe of data.
Summary of the invention
Technical problem to be solved by this invention is to provide a kind of cloud computing system and method thereof, centralised storage way to manage is taked to solve the storage data existed in prior art, and, data, without encryption, cause the problem of great threat to the personal secrets storing data and user.
For reaching above-mentioned purpose, the invention provides a kind of cloud computing system, comprising: cloud management server, multiple storage server and multiple calculation server, described cloud management server also comprises:
Memory management module: store control command and data to be stored for receiving, and described data to be stored are split as multiple block data based on multiple fractionation rule, and by described block data distributed store in described multiple storage server;
Management of computing module: calculate control command after analyzing for receiving, select the described block data of arbitrary extraction in described multiple storage server, and described block data is sent to the process of described multiple calculation server parallel parsing, and return result.
Above-mentioned cloud computing system, described cloud management server also comprises:
Authentication module: carry out authentication for described cloud management server and between described storage server, described calculation server or user;
FDT memory module: for the information of relevant position in storing data files catalogue listing;
Control and management mechanism: for receiving the authentication request that described authentication module sends, and obtain file operation authority from described FDT memory module, and, from described storage server and described calculation server Receipt Validation information, after comparing in the record of described authentication module, described storage server and described calculation server obtain the communication authority with described control and management mechanism.
Above-mentioned cloud computing system, described cloud management server also comprises:
Encrypting module: for taking multiple different cipher mode to be encrypted to described cloud management server and the data transmitted between described authentication module, described storage server or described calculation server.
Above-mentioned cloud computing system, described authentication module also comprises:
User authentication module: for receiving the authentication request of user, and compare according to the described subscriber identity information record preserved and described authentication request, whether certification is passed through to judge described user;
Storage server authentication module: for receiving the authorization information of described storage server, and compare according to the identity information record of described storage server preserved and the authorization information of described storage server, judge described storage server whether pass through by certification;
Calculation server authentication module: for receiving the authorization information of described calculation server, and compare according to the identity information record of described calculation server preserved and the authorization information of described calculation server, judge described calculation server whether pass through by certification.
Above-mentioned cloud computing system, described encrypting module also comprises:
First encrypting module: for being encrypted and decryption processing the block data transmitted between described control and management mechanism and described storage server;
Second encrypting module: for being encrypted and decryption processing the described FDT transmitted between described control and management mechanism and described FDT memory module;
3rd encrypting module: for being encrypted and decryption processing the described subscriber identity information transmitted between described control and management mechanism and described user authentication module;
4th encrypting module: for being encrypted and decryption processing the described server identity information transmitted between described control and management mechanism and described storage server authentication module or described calculation server authentication module.
Above-mentioned cloud computing system, described multiple fractionation rule comprises: split rule in order, compartment splits rule or split rule according to certain algorithm.
The present invention also provides a kind of cloud computing method, be applied to the cloud computing system comprising cloud management server, multiple storage server and multiple calculation server, described cloud computing method also comprises cloud management process, stores service step and calculation services step, and described cloud management process comprises further:
Storage administration step: store control command and data to be stored for receiving, and described data to be stored are split as multiple block data based on multiple fractionation rule, and by described block data distributed store in described multiple storage server;
Management of computing step: calculate control command after analyzing for receiving, select the described block data of arbitrary extraction in described multiple storage server, and described block data is sent to the process of described multiple calculation server parallel parsing, and return result.
Above-mentioned cloud computing method, described cloud management process also comprises:
Authenticating step: carry out certification for described cloud management server and between described storage server, described calculation server or user;
FDT storing step: the information of relevant position in storage file catalogue listing;
Control and management step: for receiving the authentication request that described authentication module sends, and obtain file operation authority from described FDT memory module, and, from described storage server and described calculation server Receipt Validation information, after comparing in the record of described authentication module, described storage server and described calculation server obtain the communication authority with described control and management mechanism.
Above-mentioned cloud computing method, described cloud management process also comprises:
Encrypting step: for taking multiple different cipher mode to be encrypted to described cloud management server and the data transmitted between described authentication module, described storage server or described calculation server.
Above-mentioned cloud computing method, described authenticating step also comprises:
User authentication process: for receiving the authentication request of user, and compare according to the described subscriber identity information record preserved and described authentication request, whether certification is passed through to judge described user;
Storage server authenticating step: for receiving the authorization information of described storage server, and compare according to the identity information record of described storage server preserved and the authorization information of described storage server, judge described storage server whether pass through by certification;
Calculation server authenticating step: for receiving the authorization information of described calculation server, and compare according to the identity information record of described calculation server preserved and the authorization information of described calculation server, judge described calculation server whether pass through by certification.
Above-mentioned cloud computing method, described encrypting step also comprises:
First encrypting step: for being encrypted and decryption processing the block data transmitted between described control and management mechanism and described storage server;
Second encrypting step: for being encrypted and decryption processing the described FDT transmitted between described control and management mechanism and described FDT memory module;
3rd encrypting step: for being encrypted and decryption processing the described subscriber identity information transmitted between described control and management mechanism and described user authentication module;
4th encrypting step: for being encrypted and decryption processing the described server identity information transmitted between described control and management mechanism and described storage server authentication module or described calculation server authentication module.
Above-mentioned cloud computing method, described multiple fractionation rule comprises: split rule in order, compartment splits rule or split rule according to algorithm.
Compared with prior art, beneficial effect of the present invention is: the present invention will be placed in different storage servers from distributed after the Data Division to be stored of user, data can from first to last split by fractionation mode in order successively, also can split by compartment, also can split data according to certain algorithm, such hacker or other illegal personnel obtaining authority, even if obtain a part of data, also be difficult to comprehensively analyze data, the privacy degrees of storage data is improved.
Accompanying drawing explanation
Fig. 1 is cloud computing system structural representation of the present invention;
Fig. 2 A ~ Fig. 2 B is cloud computing system detailed construction schematic diagram of the present invention;
Fig. 3 is cloud computing system specific embodiment structural representation of the present invention;
Fig. 4 is cloud computing method step schematic diagram of the present invention;
Fig. 5 A ~ Fig. 5 B is cloud computing method detailed step schematic diagram of the present invention.
Wherein, Reference numeral:
2 cloud management server 3 storage servers
4 calculation servers
21 memory management module 22 management of computing modules
23 authentication module 24 FDT memory modules
25 control and management mechanism 26 encrypting modules
S11 ~ S16, S131 ~ S133, S161 ~ S164: the administration step of various embodiments of the present invention
Embodiment
Describe the present invention below in conjunction with the drawings and specific embodiments, but not as a limitation of the invention.
The present invention relates to a kind of cloud computing system of effective raising user information confidentiality degree.Comprise cloud management server, storage server and calculation server; Cloud management server for receive the storage control command of user and data to be stored and by Data Division to be stored, be encrypted as block data after distributed storage in multiple storage server, cloud management server also for receive user calculating control command, analyze after select specific storage server and therefrom extract block data, be then sent to the process of multiple calculation server parallel parsing, the operation result of cloud management server after calculation server obtains analyzing and processing, focus on after be sent to user.
A kind of cloud computing system provided by the invention, as shown in Figure 1, comprising: cloud management server 2, multiple storage server 3 and multiple calculation server 4;
Wherein, as shown in Figure 1, cloud management server 2 also comprises: memory management module 21, management of computing module 22, authentication module 23, FDT memory module 24, control and management mechanism 25 and encrypting module 26;
Memory management module 21: store control command and data to be stored for receiving, and data to be stored are split as multiple block data based on multiple fractionation rule, and by block data distributed store in multiple storage server;
Management of computing module 22: calculate control command for receiving and after analyzing, select the arbitrary extraction block data in multiple storage server, and block data is sent to the process of multiple calculation server parallel parsing, and return result;
Memory management module 21 for receive the storage control command of user and data to be stored and by Data Division to be stored, be encrypted as block data after distributed storage in multiple storage server 3; Management of computing module 22 for receive user calculating control command, analyze after select specific storage server 3 and therefrom extract block data, be then sent to the process of multiple calculation server 4 parallel parsing, the operation result of management of computing module 22 after calculation server 4 obtains analyzing and processing, focus on after be sent to user.
Authentication module 23: carry out authentication for cloud management server 2 and between storage server 3, calculation server 4 or user;
Wherein, as shown in Figure 2 A, authentication module 23 also comprises:
User authentication module 231: for receiving the authentication request of user, and compare according to the subscriber identity information record preserved and authentication request, whether certification is passed through to judge user;
Storage server authentication module 232: for receiving the authorization information of storage server 3, and compare according to the identity information record of storage server 3 preserved and the authorization information of storage server 3, judge storage server 3 whether pass through by certification;
Calculation server authentication module 233: for receiving the authorization information of calculation server 4, and compare according to the identity information record of calculation server 4 preserved and the authorization information of calculation server 4, judge calculation server 4 whether pass through by certification.
FDT memory module 24: for the information of relevant position in storing data files catalogue listing;
Control and management mechanism 25: for receiving the authentication request that authentication module 23 sends, and obtain file operation authority from FDT memory module 24, and, from storage server 3 and calculation server 4 Receipt Validation information, after comparing in the record of authentication module 23, storage server 3 and calculation server 4 obtain the communication authority with control and management mechanism 25;
Control and management mechanism 25 is for receiving the subscriber authentication request from user, and the subscriber identity information recorded in itself and user authentication module 231 is compared, with the authority making user obtain relevant position in the FDT stored in FDT memory module 24, control and management mechanism 25 is also for receiving the server authentication information from storage server 3 and calculation server 4, and it is compared with the server identity information that records in storage server authentication module 232 and calculation server authentication module 233 respectively, the communication authority with control and management mechanism 25 is obtained to make storage server 3 and calculation server 4.
Encrypting module 26: for taking multiple different cipher mode to be encrypted to cloud management server 2 and the data transmitted between authentication module 23, storage server 3 or calculation server 4.
Wherein, as shown in Figure 2 B, encrypting module 26 also comprises:
First encrypting module 261: for being encrypted the block data transmitted between control and management mechanism 25 and storage server 3 and decryption processing;
First encrypting module 261 for being encrypted the data to be stored after splitting and being decrypted process to the block data received from storage server 3 between control and management mechanism 25 and storage server 3.
Second encrypting module 262: for being encrypted the FDT transmitted between control and management mechanism 25 and FDT memory module 24 and decryption processing;
Second encrypting module 262 for being encrypted and decryption processing the FDT in FDT memory module 24 between control and management mechanism 25 and FDT memory module 24.
3rd encrypting module 263: for being encrypted the subscriber identity information transmitted between control and management mechanism 25 and user authentication module 231 and decryption processing;
3rd encrypting module 263 is for being encrypted and decryption processing process the subscriber identity information in user authentication module 231 between control and management mechanism 25 and user authentication module 231.
4th encrypting module 264: for being encrypted and decryption processing the server identity information transmitted between control and management mechanism 25 and storage server authentication module 232 or calculation server authentication module 233.
4th encrypting module 264 is encrypted and decryption processing the server identity information in storage server authentication module 232 and calculation server authentication module 233 for control and management mechanism 25 and between storage server authentication module 232 and calculation server authentication module 233.
Above-mentioned explanation is only the general introduction of technical solution of the present invention, in order to better understand technological means of the present invention, and can be implemented according to the content of specification, coordinates accompanying drawing to be described in detail as follows below with preferred embodiment of the present invention.
As shown in Figure 3, a kind of cloud computing system of the specific embodiment of the invention, comprises cloud management server 2, storage server 3 and calculation server 4; Cloud management server 2 for receive the storage control command of user and data to be stored and by Data Division to be stored, be encrypted as block data after distributed storage in multiple storage server 3, cloud management server 2 also for receive user calculating control command, analyze after select specific storage server 3 and therefrom extract block data, be then sent to the process of multiple calculation server 4 parallel parsing, the operation result of cloud management server 2 after calculation server 4 obtains analyzing and processing, focus on after be sent to user 1.
Cloud computing system of the present invention, cloud management server 2 comprises memory management module 21, management of computing module 22, control and management mechanism 25, user authentication module 26, FDT memory module 27, storage server authentication module 23 and calculation server authentication module 24.
Wherein, memory management module 21 will be placed in different storage servers from distributed after the Data Division to be stored of user, data can from first to last split by fractionation mode in order successively, also can split by compartment, also can split data according to certain algorithm, such hacker or other illegal personnel obtaining authority, even if obtain a part of data, also be difficult to comprehensively analyze data, privacy degrees is higher.In addition, management of computing module 22 is when user needs to extract data analysis process, only need according to the record in cloud management server, extract specific data, then be distributed in different calculation servers, owing to there is this process of concurrent operation, calculation server also cannot obtain whole data, confidentiality and fail safe higher.
Wherein, control and management mechanism 25 is for receiving the subscriber authentication request from user, and the subscriber identity information recorded in itself and user authentication module 26 is compared, with the authority making user obtain relevant position in the FDT stored in FDT memory module 27, control and management mechanism 25 is also for receiving the server authentication information from storage server 3 and calculation server 4, and it is compared with the server identity information that records in storage server authentication module 23 and calculation server authentication module 24 respectively, the communication authority with control and management mechanism 25 is obtained to make storage server 3 and calculation server 4.
Further, control and management mechanism 25 is core institutions of whole cloud computing system, although do not bear storage and computing function, but owing to having the function of Data dissemination, unloading and analysis, thus require that there is larger temporary memory space, as internal memory or interim storage hard disk, there is certain high-speed computation core as chip simultaneously, its function can be realized.The position of user data in storage server, record is carried out by the form of FDT, but and namely non-user directly can be extracted, need to verify the identity of user, in like manner, storage server 3 and calculation server 4 also need authentication, otherwise the data of user store and calculate and cannot be guaranteed.
Cloud computing system of the present invention, cloud management server 2 also comprises the first encrypting module 41, first encrypting module 41 for being encrypted the data to be stored after splitting and being decrypted process to the block data received from storage server 3 between control and management mechanism 25 and storage server 3; Like this, even if hacker or other personnel illegally obtaining authority obtain the block data in storage server, even complete integration, as long as no the cryptographic algorithm of acquisition first encrypting module, be still difficult to carry out analyzing and processing.
Cloud computing system of the present invention, cloud management server 2 also comprises the second encrypting module 42, second encrypting module 42 for being encrypted the FDT in FDT memory module 27 between control and management mechanism 25 and FDT memory module 27.
Cloud computing system of the present invention, cloud management server 2 also comprises the 3rd encrypting module the 43, three encrypting module 43 for being encrypted the subscriber identity information in user authentication module 26 between control and management mechanism 25 and user authentication module 26.
Cloud computing system of the present invention, cloud management server 2 also comprises the 4th encrypting module the 44, four encrypting module 44 for being encrypted the server identity information in storage server authentication module 23 and calculation server authentication module 24 in control and management mechanism 25 and between storage server authentication module 23 and calculation server authentication module 24.
For the encryption of different information, first encrypting module 41, second encrypting module 42, the 3rd encrypting module 43, the 4th encrypting module 44 can adopt identical cryptographic algorithm, also different cryptographic algorithm can be adopted, comparatively preferred, first encrypting module 41, second encrypting module 42, the 3rd encrypting module 43, the 4th encrypting module 44 adopt four kinds of dissimilar cryptographic algorithm, to improve its fail safe; Can arrange in strange land due to cloud management server and between storage server and calculation server, connected by network, so only need monitoring cloud management server being carried out to high safety requirements to realize safety management.
The present invention also provides a kind of cloud computing method, be applied to the cloud computing system as above comprising cloud management server, multiple storage server and multiple calculation server, as shown in Figure 4, cloud computing method also comprises cloud management process, stores service step and calculation services step;
Wherein, as shown in Figure 4, cloud management process S1 comprises further:
Storage administration step S11: store control command and data to be stored for receiving, and data to be stored are split as multiple block data based on multiple fractionation rule, and by block data distributed store in multiple storage server;
Management of computing step S12: calculate control command for receiving and after analyzing, select the arbitrary extraction block data in multiple storage server, and block data is sent to the process of multiple calculation server parallel parsing, and return result;
Authenticating step S13: carry out certification for cloud management server 2 and between storage server 3, calculation server 4 or user;
FDT storing step S14: the information of relevant position in storage file catalogue listing;
Control and management step S15: for receiving the authentication request that authentication module 23 sends, and obtain file operation authority from FDT memory module 24, and, from storage server 3 and calculation server 4 Receipt Validation information, after comparing in the record of authentication module 23, storage server 3 and calculation server 4 obtain the communication authority with control and management mechanism 25.
Encrypting step S16: for taking multiple different cipher mode to be encrypted to cloud management server 2 and the data transmitted between authentication module 23, storage server 3 or calculation server 4.
Wherein, as shown in Figure 5A, authenticating step S13 also comprises:
User authentication process S131: for receiving the authentication request of user, and compare according to the subscriber identity information record preserved and authentication request, whether certification is passed through to judge user;
Storage server authenticating step S132: for receiving the authorization information of storage server 3, and compare according to the identity information record of storage server 3 preserved and the authorization information of storage server 3, judge storage server 3 whether pass through by certification;
Calculation server authenticating step S133: for receiving the authorization information of calculation server 4, and compare according to the identity information record of calculation server 4 preserved and the authorization information of calculation server 4, judge calculation server 4 whether pass through by certification.
Wherein, as shown in Figure 5 B, encrypting step S16 also comprises:
First encrypting step S161: for being encrypted the block data transmitted between control and management mechanism 25 and storage server 3 and decryption processing;
Second encrypting step S162: for being encrypted the FDT transmitted between control and management mechanism 25 and FDT memory module 24 and decryption processing;
3rd encrypting step S163: for being encrypted and decryption processing the described subscriber identity information transmitted between control and management mechanism 25 and user authentication module 231;
4th encrypting step S164: for being encrypted and decryption processing the server identity information transmitted between control and management mechanism 25 and storage server authentication module 232 or calculation server authentication module 233.
In sum, cloud computing system provided by the invention and method thereof, the distributed cryptographic realizing storing data stores, and greatly can improve the fail safe of data.
Certainly; the present invention also can have other various embodiments; when not deviating from the present invention's spirit and essence thereof; those of ordinary skill in the art are when making various corresponding change and distortion according to the present invention, but these change accordingly and are out of shape the protection range that all should belong to the claim appended by the present invention.
Claims (12)
1. a cloud computing system, comprising: cloud management server, multiple storage server and multiple calculation server, is characterized in that, described cloud management server also comprises:
Memory management module: store control command and data to be stored for receiving, and described data to be stored are split as multiple block data based on multiple fractionation rule, and by described block data distributed store in described multiple storage server;
Management of computing module: calculate control command after analyzing for receiving, select the described block data of arbitrary extraction in described multiple storage server, and described block data is sent to the process of described multiple calculation server parallel parsing, and return result.
2. cloud computing system according to claim 1, it is characterized in that, described cloud management server also comprises:
Authentication module: carry out authentication for described cloud management server and between described storage server, described calculation server or user;
FDT memory module: for the information of relevant position in storing data files catalogue listing;
Control and management mechanism: for receiving the authentication request that described authentication module sends, and obtain file operation authority from described FDT memory module, and, from described storage server and described calculation server Receipt Validation information, after comparing in the record of described authentication module, described storage server and described calculation server obtain the communication authority with described control and management mechanism.
3. cloud computing system according to claim 2, it is characterized in that, described cloud management server also comprises:
Encrypting module: for taking multiple different cipher mode to be encrypted to described cloud management server and the data transmitted between described authentication module, described storage server or described calculation server.
4. cloud computing system according to claim 2, it is characterized in that, described authentication module also comprises:
User authentication module: for receiving the authentication request of user, and compare according to the described subscriber identity information record preserved and described authentication request, whether certification is passed through to judge described user;
Storage server authentication module: for receiving the authorization information of described storage server, and compare according to the identity information record of described storage server preserved and the authorization information of described storage server, judge described storage server whether pass through by certification;
Calculation server authentication module: for receiving the authorization information of described calculation server, and compare according to the identity information record of described calculation server preserved and the authorization information of described calculation server, judge described calculation server whether pass through by certification.
5. cloud computing system according to claim 3, it is characterized in that, described encrypting module also comprises:
First encrypting module: for being encrypted and decryption processing the block data transmitted between described control and management mechanism and described storage server;
Second encrypting module: for being encrypted and decryption processing the described FDT transmitted between described control and management mechanism and described FDT memory module;
3rd encrypting module: for being encrypted and decryption processing the described subscriber identity information transmitted between described control and management mechanism and described user authentication module;
4th encrypting module: for being encrypted and decryption processing the described server identity information transmitted between described control and management mechanism and described storage server authentication module or described calculation server authentication module.
6. cloud computing system according to claim 1, it is characterized in that, described multiple fractionation rule comprises: split rule in order, compartment splits rule or split rule according to certain algorithm.
7. a cloud computing method, be applied to the described cloud computing system comprising cloud management server, multiple storage server and multiple calculation server, it is characterized in that, described cloud computing method also comprises cloud management process, stores service step and calculation services step, described cloud management process comprises further:
Storage administration step: store control command and data to be stored for receiving, and described data to be stored are split as multiple block data based on multiple fractionation rule, and by described block data distributed store in described multiple storage server;
Management of computing step: calculate control command after analyzing for receiving, select the described block data of arbitrary extraction in described multiple storage server, and described block data is sent to the process of described multiple calculation server parallel parsing, and return result.
8. cloud computing method according to claim 7, it is characterized in that, described cloud management process also comprises:
Authenticating step: carry out certification for described cloud management server and between described storage server, described calculation server or user;
FDT storing step: the information of relevant position in storage file catalogue listing;
Control and management step: for receiving the authentication request that described authentication module sends, and obtain file operation authority from described FDT memory module, and, from described storage server and described calculation server Receipt Validation information, after comparing in the record of described authentication module, described storage server and described calculation server obtain the communication authority with described control and management mechanism.
9. cloud computing method according to claim 8, it is characterized in that, described cloud management process also comprises:
Encrypting step: for taking multiple different cipher mode to be encrypted to described cloud management server and the data transmitted between described authentication module, described storage server or described calculation server.
10. cloud computing method according to claim 8, it is characterized in that, described authenticating step also comprises:
User authentication process: for receiving the authentication request of user, and compare according to the described subscriber identity information record preserved and described authentication request, whether certification is passed through to judge described user;
Storage server authenticating step: for receiving the authorization information of described storage server, and compare according to the identity information record of described storage server preserved and the authorization information of described storage server, judge described storage server whether pass through by certification;
Calculation server authenticating step: for receiving the authorization information of described calculation server, and compare according to the identity information record of described calculation server preserved and the authorization information of described calculation server, judge described calculation server whether pass through by certification.
11. cloud computing methods according to claim 9, it is characterized in that, described encrypting step also comprises:
First encrypting step: for being encrypted and decryption processing the block data transmitted between described control and management mechanism and described storage server;
Second encrypting step: for being encrypted and decryption processing the described FDT transmitted between described control and management mechanism and described FDT memory module;
3rd encrypting step: for being encrypted and decryption processing the described subscriber identity information transmitted between described control and management mechanism and described user authentication module;
4th encrypting step: for being encrypted and decryption processing the described server identity information transmitted between described control and management mechanism and described storage server authentication module or described calculation server authentication module.
12. cloud computing methods according to claim 7, it is characterized in that, described multiple fractionation rule comprises: split rule in order, compartment splits rule or split rule according to algorithm.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410464668.1A CN105407119A (en) | 2014-09-12 | 2014-09-12 | Cloud computing system and method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410464668.1A CN105407119A (en) | 2014-09-12 | 2014-09-12 | Cloud computing system and method thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105407119A true CN105407119A (en) | 2016-03-16 |
Family
ID=55472368
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410464668.1A Pending CN105407119A (en) | 2014-09-12 | 2014-09-12 | Cloud computing system and method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105407119A (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105450387A (en) * | 2014-08-20 | 2016-03-30 | 江苏威盾网络科技有限公司 | Network distributed storage method based on hybrid encryption |
| CN107168655A (en) * | 2017-06-05 | 2017-09-15 | 广西犇云科技有限公司 | A kind of Cloud Server secrecy system |
| CN108289105A (en) * | 2018-03-01 | 2018-07-17 | 郑州云海信息技术有限公司 | Data encryption storage method, device, equipment, system and readable storage medium storing program for executing |
| CN108306876A (en) * | 2018-01-30 | 2018-07-20 | 平安普惠企业管理有限公司 | Client identity verification method, device, computer equipment and storage medium |
| CN108427725A (en) * | 2018-02-11 | 2018-08-21 | 华为技术有限公司 | Data processing method, device and system |
| CN109993250A (en) * | 2019-04-03 | 2019-07-09 | 大陆投资(中国)有限公司 | Elevator maintenance management system |
| CN110138881A (en) * | 2019-06-05 | 2019-08-16 | 安徽三实信息技术服务有限公司 | A kind of distributed memory system and its storage method |
| CN110557361A (en) * | 2019-03-14 | 2019-12-10 | 深圳市丰浩达工程项目管理有限公司 | Method and system for dynamically managing overall process cost |
| CN113037801A (en) * | 2019-12-09 | 2021-06-25 | 通用汽车环球科技运作有限责任公司 | Private cloud processing |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102088491A (en) * | 2011-02-01 | 2011-06-08 | 西安建筑科技大学 | Distributed storage oriented cloud storage security architecture and data access method thereof |
| CN102193877A (en) * | 2011-04-15 | 2011-09-21 | 北京邮电大学 | Data de-clustering and disordering as well as recovering method based on three-dimensional space structure |
| CN102402488A (en) * | 2010-09-16 | 2012-04-04 | 电子科技大学 | Encryption scheme for disk-based deduplication system (ESDS) |
| CN102651825A (en) * | 2011-12-09 | 2012-08-29 | 中兴通讯股份有限公司 | Video on demand method and system based on cloud computing |
| US20120233522A1 (en) * | 2011-03-08 | 2012-09-13 | Rackspace Us, Inc. | Method for handling large object files in an object storage system |
| CN102891876A (en) * | 2011-07-22 | 2013-01-23 | 中兴通讯股份有限公司 | Method and system for distributed data encryption under cloud computing environment |
-
2014
- 2014-09-12 CN CN201410464668.1A patent/CN105407119A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102402488A (en) * | 2010-09-16 | 2012-04-04 | 电子科技大学 | Encryption scheme for disk-based deduplication system (ESDS) |
| CN102088491A (en) * | 2011-02-01 | 2011-06-08 | 西安建筑科技大学 | Distributed storage oriented cloud storage security architecture and data access method thereof |
| US20120233522A1 (en) * | 2011-03-08 | 2012-09-13 | Rackspace Us, Inc. | Method for handling large object files in an object storage system |
| CN102193877A (en) * | 2011-04-15 | 2011-09-21 | 北京邮电大学 | Data de-clustering and disordering as well as recovering method based on three-dimensional space structure |
| CN102891876A (en) * | 2011-07-22 | 2013-01-23 | 中兴通讯股份有限公司 | Method and system for distributed data encryption under cloud computing environment |
| CN102651825A (en) * | 2011-12-09 | 2012-08-29 | 中兴通讯股份有限公司 | Video on demand method and system based on cloud computing |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105450387A (en) * | 2014-08-20 | 2016-03-30 | 江苏威盾网络科技有限公司 | Network distributed storage method based on hybrid encryption |
| CN107168655A (en) * | 2017-06-05 | 2017-09-15 | 广西犇云科技有限公司 | A kind of Cloud Server secrecy system |
| CN108306876A (en) * | 2018-01-30 | 2018-07-20 | 平安普惠企业管理有限公司 | Client identity verification method, device, computer equipment and storage medium |
| CN108427725A (en) * | 2018-02-11 | 2018-08-21 | 华为技术有限公司 | Data processing method, device and system |
| CN108289105A (en) * | 2018-03-01 | 2018-07-17 | 郑州云海信息技术有限公司 | Data encryption storage method, device, equipment, system and readable storage medium storing program for executing |
| CN110557361A (en) * | 2019-03-14 | 2019-12-10 | 深圳市丰浩达工程项目管理有限公司 | Method and system for dynamically managing overall process cost |
| CN110557361B (en) * | 2019-03-14 | 2022-04-26 | 深圳市丰浩达工程项目管理有限公司 | Method and system for dynamically managing overall process cost |
| CN109993250A (en) * | 2019-04-03 | 2019-07-09 | 大陆投资(中国)有限公司 | Elevator maintenance management system |
| CN110138881A (en) * | 2019-06-05 | 2019-08-16 | 安徽三实信息技术服务有限公司 | A kind of distributed memory system and its storage method |
| CN113037801A (en) * | 2019-12-09 | 2021-06-25 | 通用汽车环球科技运作有限责任公司 | Private cloud processing |
| CN113037801B (en) * | 2019-12-09 | 2023-08-22 | 通用汽车环球科技运作有限责任公司 | Private Cloud Processing |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105407119A (en) | Cloud computing system and method thereof | |
| Sun et al. | Data security and privacy in cloud computing | |
| CN110033258B (en) | Service data encryption method and device based on block chain | |
| CN106453384B (en) | Secure cloud disk system and secure encryption method thereof | |
| US9020149B1 (en) | Protected storage for cryptographic materials | |
| CN105981088B (en) | Secret calculation method, secure computing system, registrant's terminal and recording medium | |
| US20140281520A1 (en) | Secure cloud data sharing | |
| CN103607393A (en) | Data safety protection method based on data partitioning | |
| CN103609059A (en) | Systems and methods for secure data sharing | |
| US20130185569A1 (en) | Data protection system and method based on cloud storage | |
| CN102629926A (en) | Encrypting cloud storage method based on intelligent mobile terminal | |
| CN102427447A (en) | Method of sharing identity authentication information among tax cloud computing systems | |
| CN102724215A (en) | Method for storing user key safely and improving data security of cloud platform based on user login password | |
| CN111274599A (en) | Data sharing method based on block chain and related device | |
| KR20110139798A (en) | Control method of data management system with emproved security | |
| Vegesna | Investigations on Different Security Techniques for Data Protection in Cloud Computing using Cryptography Schemes | |
| Fatima et al. | An exhaustive review on security issues in cloud computing | |
| CN109076054A (en) | System and method for managing the encryption key of single-sign-on application program | |
| CN105072134A (en) | Cloud disk system file secure transmission method based on three-level key | |
| CN106326666A (en) | Health record information management service system | |
| CN110708291A (en) | Data authorization access method, device, medium and electronic equipment in distributed network | |
| Yadav et al. | Mobile cloud computing issues and solution framework | |
| CN106991332A (en) | The method and device that a kind of mass data is stored safely | |
| CN104955043B (en) | A kind of intelligent terminal security protection system | |
| CN103841555A (en) | Security and privacy protecting method based on collaborative dynamic confusion of terminal and cloud system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20160316 |
|
| RJ01 | Rejection of invention patent application after publication |