CN107766000A - Data safety method for deleting based on distributed storage in a kind of cloud computing - Google Patents
Data safety method for deleting based on distributed storage in a kind of cloud computing Download PDFInfo
- Publication number
- CN107766000A CN107766000A CN201710961918.6A CN201710961918A CN107766000A CN 107766000 A CN107766000 A CN 107766000A CN 201710961918 A CN201710961918 A CN 201710961918A CN 107766000 A CN107766000 A CN 107766000A
- Authority
- CN
- China
- Prior art keywords
- volume
- ceph
- openstack
- data
- block device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
Abstract
Data safety method for deleting based on distributed storage in a kind of cloud computing, the system volume that the volume for deleting the needs being stored in Ceph before the operation for deleting volume or example or example are performed in OpenStack is mounted to Ceph Monitor nodes, make a block device of this node, data erasing is carried out to this block device, then OpenStack volume or the deletion action of example are performed again, the logic of volume or example is deleted using existing OpenStack, safe erasing is carried out to the data being present in Ceph before volume or example is deleted, raising uses OpenStack, the safety and reliability of Ceph Iaas cloud platforms.
Description
Technical field
This method is related to the method for safety deleting example and volume in cloud computing, and in particular to based on distribution in a kind of cloud computing
The data safety method for deleting of formula storage.
Background technology
OpenStack is the cloud computing increased income a management platform project, there is provided implementation is simple, can on a large scale extend, be rich
Cloud computing management platform rich, standard is unified.
Ceph is a kind of unification, distributed file system designed for outstanding performance, reliability and scalability.
In existing OpenStack technologies, when volume or example is deleted, not to being stored in Ceph distributions
Data in storage system carry out any operation, after the deletion action of volume or example is performed, can still recover in Ceph
Data, serious security breaches be present in this.
The content of the invention
In order to overcome the security breaches of prior art, it is an object of the invention to provide distribution is based in a kind of cloud computing
The data safety method for deleting of storage, it will be stored in before the operation for deleting volume or example is performed in OpenStack in Ceph
Need the system volume for the volume or example deleted to be mounted to Ceph Monitor nodes, make a block device of this node,
Data erasing is carried out to this block device, OpenStack volume is then performed again or the deletion action of example, utilization is existing
OpenStack deletes the logic of volume or example, and safe wiping is carried out to the data being present in Ceph before volume or example is deleted
Remove, improve the safety and reliability of the Iaas cloud platforms using OpenStack, Ceph.
In order to achieve the above object, the technical scheme is that:
The data safety method for deleting based on distributed storage, comprises the following steps in a kind of cloud computing:
Step 1:In Ceph Monitor nodes, the Librados block device carry interfaces provided using Ceph, it would be desirable to delete
Volume or the system volume of example be mounted to Ceph Monitor nodes, be mapped to a block device of this node, there is provided after giving
Continuous erasing instrument erasing;
Step 2:In this Ceph Monitor node, wipe instrument or program using data and data wiping is carried out to this block device
Remove;
Step 3:After wiping end of data, in order that OpenStack smoothly deletes volume or example, it is necessary to utilize Ceph offers
Librados block device carry interfaces solution hangs the volume of institute's carry in step 1;
Step 4:So far, the system volume data of volume or example erasing has been completed, and volume or example are initiated using OpenStack interfaces
Deletion action, perform the original deletion logics of OpenStack.
Beneficial effects of the present invention are:
In OpenStack, Ceph distributed storage when volume or example is deleted, it can't remove and be stored in Ceph distributions
Data in formula storage system, there is very big potential safety hazard, the present invention to solve for this enterprise higher to safety requirements
Data safety erasing in OpenStack, Ceph distributed storage, make the cloud computing Iaas platforms of this type with higher
Safety and reliability.
Brief description of the drawings
Fig. 1 is the flow chart that data safety erasing is carried out when deleting volume or example of the present invention.
Embodiment
The invention will be further described below in conjunction with the accompanying drawings.Data erasing process to example is substantially also to be to it
The data erasing of system volume, therefore only illustrate below by taking the data erasing of volume as an example.
As shown in figure 1, the data safety method for deleting based on distributed storage in a kind of cloud computing, comprises the following steps:
Step 1:Using OpenStack Horizon or OpenStack API are called to initiate volume or example deletion behaviour in user
Before work, in Ceph Monitor nodes, the Librados block device carry interfaces provided using Ceph, it would be desirable to the volume of deletion
Or the system volume of example is mounted to Ceph Monitor nodes, turn into a block device of this node;Detailed process is as follows
It is 1b8cf207-9d71-48c2-b324-ca6977f2de85 1. checking the volume uuid of establishment in OpenStack
2. finding storage pool corresponding to this volume in Ceph, volume id is volume-1b8cf207-9d71-48c2-b324-
Ca6977f2de85, storage pool storages
3. carry this be rolled onto this node(Using librados driver, this is sentenced exemplified by order line)
rbd map volume-1b8cf207-9d71-48c2-b324-ca6977f2de85 –p storages
The block device name of this order meeting return mapping, it is possible to provide give data erasing instrument to carry out erasing operation, mapping relations also may be used
To be checked by rbd showmapped orders
Step 2:In this Ceph Monitor node, wipe instrument or program using data and data wiping is carried out to this block device
Remove, standard erasing generally writes 0 operation;Scrub techniques or erasing instrument using it is existing such as believe work institute storage Jie
Matter information eliminates instrument, calls herein.
Step 3:In this Ceph Monitor node, the Librados block devices solution provided using Ceph is mounted mouth solution and hung
The volume of above-mentioned carry, order are as follows:
rbd unmap /dev/rbd0
Step 4:After three above step is performed both by successfully, so far erasure task has been completed, and it is original to continue executing with OpenStack
Deletion logic.
Claims (1)
1. the data safety method for deleting based on distributed storage in a kind of cloud computing, it is characterised in that comprise the following steps:
Step 1:In Ceph Monitor nodes, the Librados block device carry interfaces provided using Ceph, it would be desirable to delete
Volume(volume)Or example(instance)System volume be mounted to Ceph Monitor nodes, be mapped to the one of this node
Individual block device;
Step 2:In this Ceph Monitor node, wipe instrument or program using data and data wiping is carried out to this block device
Remove;
Step 3:In this Ceph Monitor node, the Librados block devices solution provided using Ceph is mounted mouth solution and hangs step
The volume of carry in one;
Step 4:The deletion action of volume or example is initiated using OpenStack interfaces, performs the original deletions of OpenStack
Logic.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710961918.6A CN107766000A (en) | 2017-10-16 | 2017-10-16 | Data safety method for deleting based on distributed storage in a kind of cloud computing |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710961918.6A CN107766000A (en) | 2017-10-16 | 2017-10-16 | Data safety method for deleting based on distributed storage in a kind of cloud computing |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107766000A true CN107766000A (en) | 2018-03-06 |
Family
ID=61268471
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710961918.6A Withdrawn CN107766000A (en) | 2017-10-16 | 2017-10-16 | Data safety method for deleting based on distributed storage in a kind of cloud computing |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107766000A (en) |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101706822A (en) * | 2009-12-18 | 2010-05-12 | 杭州迪普科技有限公司 | Method and device for improving speed of mounting journal file system |
| CN102622309A (en) * | 2011-01-30 | 2012-08-01 | 成都市华为赛门铁克科技有限公司 | Method and device for erasing data securely |
| CN102713851A (en) * | 2009-12-10 | 2012-10-03 | 国际商业机器公司 | Logical data object reuse in a virtual server |
| CN103631539A (en) * | 2013-12-13 | 2014-03-12 | 百度在线网络技术(北京)有限公司 | Distributed storage system and distributed storage method based on erasure coding mechanism |
| CN103677650A (en) * | 2012-09-12 | 2014-03-26 | 北京百度网讯科技有限公司 | Drive letter drifting preventing and treating method and device |
| CN104767745A (en) * | 2015-03-26 | 2015-07-08 | 浪潮集团有限公司 | Cloud data security protection method |
| CN106201357A (en) * | 2016-07-18 | 2016-12-07 | 浪潮(北京)电子信息产业有限公司 | The construction method of a kind of storage pool and system |
| CN106708430A (en) * | 2016-11-30 | 2017-05-24 | 浪潮软件集团有限公司 | Cloud hard disk implementation method under cloud computing architecture |
| CN106951189A (en) * | 2017-03-17 | 2017-07-14 | 数据通信科学技术研究所 | A kind of method that online depth wipes FLASH files |
-
2017
- 2017-10-16 CN CN201710961918.6A patent/CN107766000A/en not_active Withdrawn
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102713851A (en) * | 2009-12-10 | 2012-10-03 | 国际商业机器公司 | Logical data object reuse in a virtual server |
| CN101706822A (en) * | 2009-12-18 | 2010-05-12 | 杭州迪普科技有限公司 | Method and device for improving speed of mounting journal file system |
| CN102622309A (en) * | 2011-01-30 | 2012-08-01 | 成都市华为赛门铁克科技有限公司 | Method and device for erasing data securely |
| CN103677650A (en) * | 2012-09-12 | 2014-03-26 | 北京百度网讯科技有限公司 | Drive letter drifting preventing and treating method and device |
| CN103631539A (en) * | 2013-12-13 | 2014-03-12 | 百度在线网络技术(北京)有限公司 | Distributed storage system and distributed storage method based on erasure coding mechanism |
| CN104767745A (en) * | 2015-03-26 | 2015-07-08 | 浪潮集团有限公司 | Cloud data security protection method |
| CN106201357A (en) * | 2016-07-18 | 2016-12-07 | 浪潮(北京)电子信息产业有限公司 | The construction method of a kind of storage pool and system |
| CN106708430A (en) * | 2016-11-30 | 2017-05-24 | 浪潮软件集团有限公司 | Cloud hard disk implementation method under cloud computing architecture |
| CN106951189A (en) * | 2017-03-17 | 2017-07-14 | 数据通信科学技术研究所 | A kind of method that online depth wipes FLASH files |
Non-Patent Citations (1)
| Title |
|---|
| 林雪峰: "基于oVirt/Qemu/Kvm云平台系统分析与安全加固设计", 《中国优秀硕士学位论文全文数据库 信息科技辑》 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11741048B2 (en) | Distributed write journals that support fast snapshotting for a distributed file system | |
| US20200150890A1 (en) | Data Deduplication Method and Apparatus | |
| CN106201659B (en) | A kind of method and host of live migration of virtual machine | |
| US10509701B2 (en) | Performing data backups using snapshots | |
| US10241681B2 (en) | Management of physical extents for space efficient storage volumes | |
| US10001926B2 (en) | Management of extents for space efficient storage volumes by reusing previously allocated extents | |
| US20130080397A1 (en) | Database restore using incremental backups in reverse order | |
| US20170075764A1 (en) | System and Method for Time Parameter Based Database Restoration | |
| US9785641B2 (en) | Reducing a backup time of a backup of data files | |
| US9658799B2 (en) | Data storage device deferred secure delete | |
| CN112346647B (en) | Data storage method, device, equipment and medium | |
| US11543985B2 (en) | Zone segment drive management | |
| CN103677674A (en) | Data processing method and device | |
| CN112540731B (en) | Data append writing method, device, equipment, medium and program product | |
| US8903804B2 (en) | Data existence judging device and data existence judging method | |
| US10209905B2 (en) | Reusing storage blocks of a file system | |
| US20150074368A1 (en) | Thin provisioning storage devices in connection with secure delete operations | |
| US10606489B2 (en) | Sidefiles for management of data written via a bus interface to a storage controller during consistent copying of data | |
| CN107766000A (en) | Data safety method for deleting based on distributed storage in a kind of cloud computing | |
| KR101643278B1 (en) | Method, apparatus, and computer program stored in computer readable medium for managing storage server in database system | |
| CN106202262A (en) | A kind of information processing method and electronic equipment | |
| US9747250B2 (en) | Effective memory management for host objects in a runtime environment with embedded garbage-collected based dynamic language | |
| US11106588B2 (en) | Deferred method of allocating disk space for lightning segments | |
| US11194760B1 (en) | Fast object snapshot via background processing | |
| CN116301633A (en) | Data writing method, device and medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WW01 | Invention patent application withdrawn after publication |
Application publication date: 20180306 |
|
| WW01 | Invention patent application withdrawn after publication |