CN108985076A - A kind of disk encryption system towards shared file - Google Patents
A kind of disk encryption system towards shared file Download PDFInfo
- Publication number
- CN108985076A CN108985076A CN201710406168.6A CN201710406168A CN108985076A CN 108985076 A CN108985076 A CN 108985076A CN 201710406168 A CN201710406168 A CN 201710406168A CN 108985076 A CN108985076 A CN 108985076A
- Authority
- CN
- China
- Prior art keywords
- unit
- key
- client
- matching
- shared file
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/78—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
Abstract
The disk encryption system towards shared file that the invention discloses a kind of, including management end, memory module, client and security protection module, the management end, client passes through telecommunication network with memory module between each other and connects, the management end includes that management end logs in unit, key display unit and feedback reception unit, the memory module includes registration information storage unit, log-on message storage unit, key database and shared file, the client includes client registers unit, client logs in unit, facial acquisition unit, key transmission unit and Key input unit, the security protection module includes cipher key match unit, match counting unit, Key generating unit and matching feedback unit.Disk encryption system proposed by the present invention safely, effectively, is not limited the protection of shared file by region and time, can be started warning device with automatic or manual, be carried out storage registration to the information of user, be easy to quickly calling to account for responsibility.
Description
Technical field
The present invention relates to field of information security technology more particularly to a kind of disk encryption systems towards shared file.
Background technique
Shared file is a kind of emerging file-sharing means, and user can make different server by the shared of file
People enjoy same shared file, keep resource utilization higher.At us, the frequency of use of shared file is very also in daily life
Height, such as the middle company that works transmit intra-company's file, data etc. using shared file, pass through shared file teacher in school
As the resources such as student's sharing video frequency, courseware, paper can also be uploaded to shared file by graduate, for learn younger brother lower-grade female schoolmate lookup,
Study etc..These are all the applications of shared file, and it is convenient that shared file has been brought, and are allowed by user in the unlimited time, no
Limit region uses the resource in shared file.
With the increasing of shared file frequency of use and use scope, it is difficult that file information security problem becomes a big emphasis
Topic.With increasing for user, manager is more and more difficult to the management of shared file, and the information in shared file is caused to be let out
The case where revealing, distorting frequency has generation.For the safety problem of shared file, people develop can be by encrypting to shared file
Method protect shared file, management conducive to manager to file.But because the encryption of this file, needs to obtain key
It can just check shared file, this allows for the use scope of shared file and the range shorter by user.What is encrypted at present is shared
File is only being closer, for example the user in same local area network uses, and use scope is small, needs special manager couple
Encryption file and the user for encrypting file are managed, it is necessary to which the permission of manager can just enjoy the shared text of encryption
Part, and the workload of manager is increased, and also there is certain limitation using the time.
Summary of the invention
The purpose of the present invention is to solve disadvantage existing in the prior art, and propose a kind of towards shared file
Disk encryption system.
A kind of disk encryption system towards shared file, including management end, memory module, client and safeguard protection mould
Block, the management end, client and memory module pass through telecommunication network between each other and connect, and the management end is for managing and supervising
The real-time running state of whole system is controlled, the management end includes that management end logs in unit, key display unit and feedback reception
Unit, the memory module include registration information storage unit, log-on message storage unit, key database and shared file,
The client includes that client registers unit, client login unit, facial acquisition unit, key transmission unit and key are defeated
Enter unit, the registration information storage unit is connected with client registers unit, whole letters when for storing user's registered
Breath, the log-on message storage unit logs in unit with client respectively and facial acquisition unit is connected, for storing client
The log-on message at end, the security protection module include cipher key match unit, matching counting unit, Key generating unit and matching
Feedback unit, the cipher key match unit respectively with Key input unit, Key generating unit, match counting unit and matching is anti-
Feedback unit is connected, for the password inputted in Key input unit to be verified and is matched, the Key generating unit
Be connected respectively with key database and key display unit, the matching feedback unit respectively with cipher key match unit, match
Counting unit is connected with feedback reception unit, for the input condition of client key to be fed back to client.
Preferably, preset matching errors number in the matching counting unit, and matching error number is more than or equal to 3 times.
Preferably, the matching feedback unit and feedback reception unit are connected with warning device respectively, when matching is fed back
When unit receives the key input number super upper limit of matching counting unit, information is fed back into feedback reception unit, management end
Manager can be handled according to the received information of feedback reception unit, if the information in feedback reception unit not everywhere
Reason, and when matching counting unit and issuing the information alert key input super upper limit of number again, the alarm that matching feedback unit connects
Alarm operation is completed in device starting.
Preferably, when the log-on message for the client that the log-on message storage unit is stored includes IP address, logs in
Between, login account, log in when face acquisition data.
Preferably, the form that the key transmission unit selects password to send for client, and key transmission unit and note
Volume information memory cell is connected with management end.
Preferably, the form that the password is sent includes registration mailbox, registration SMS and management end.
Disk encryption system proposed by the present invention, safely, effectively to the protection of shared file, client, memory module with
Management end passes through network connection between each other, expands the use scope of system, makes the use of system not by the limitation of region, and
When manager is in busy, the user of client can choose the mode that other obtain password and carry out logging in encryption file, allow
User enjoys shared file not by time restriction, and disk encryption system proposed by the present invention, the protection to shared file
Effect is good, and the behavior for multiple input error password carries out feedback prompts, and manager can preferentially select processing mode, work as pipe
When reason person is handled not in time, security protection module voluntarily starts warning device, and when user double-clicks encryption file, system
Storage registration just is carried out to the information used, the quick of responsibility is called to account when being conducive to post-processing, and the information of storage also contributes to
The detection of police's case.
Detailed description of the invention
Fig. 1 is a kind of block diagram of the disk encryption system towards shared file proposed by the present invention.
Specific embodiment
Combined with specific embodiments below the present invention is made further to explain.
A kind of disk encryption system towards shared file proposed by the present invention, including management end, memory module, client
And security protection module, the management end, client and memory module pass through telecommunication network between each other and connect, the management end
For managing and monitoring the real-time running state of whole system, the management end includes that management end logs in unit, key display list
Member and feedback reception unit, the memory module include registration information storage unit, log-on message storage unit, key database
And shared file, the client include client registers unit, client login unit, facial acquisition unit, key transmission
Unit and Key input unit, the registration information storage unit are connected with client registers unit, for storing user's note
All information when volume, the log-on message storage unit logs in unit with client respectively and facial acquisition unit is connected,
For storing the log-on message of client, the security protection module includes cipher key match unit, matching counting unit, key life
At unit and matching feedback unit, the cipher key match unit respectively with Key input unit, Key generating unit, match counting
Unit is connected with matching feedback unit, described for the password inputted in Key input unit to be verified and matched
Matching feedback unit and feedback reception unit be connected respectively with warning device, the Key generating unit respectively with key data
Library is connected with key display unit, the matching feedback unit respectively with cipher key match unit, match counting unit and feedback
Receiving unit is connected, for the input condition of client key to be fed back to client.
System when in use, registers essential information in the present client registers unit of client, including Real Name, gender,
Telephone number, mailbox, ID card No., logon name and login password, then according to the logon name of registration and login password
Client is logged in, the shared file of needs is found, double-clicks shared file, log-on message storage unit records lander's letter at once
Breath, including IP address, login time, login account, log in when face acquisition data, Key generating unit is from close at the same time
Password is generated in key database at random, while Client-Prompt selection key sending method, including registration mailbox, registration mobile phone are short
Letter and management end, and it is recorded in key transmission unit, encryption file password is obtained according to the key sending method that client is chosen,
And password, the password and Key generating unit that cipher key match unit records Key input unit are inputted by Key input unit
The password of generation is matched, and after matching, matched result is fed back to matching feedback unit, matching feedback unit again will
Information is sent to feedback reception unit, and when the received information of feedback reception unit indicates that matching is correct, shared file is beaten automatically
It opens, when the received information of feedback reception unit indicates matching error, shared file is remained turned-off, close when password match error
Code matching unit sends once command into matching counting unit, and matching counting unit records a data, when matching count it is single
When the number recorded in member is greater than matching counting unit preset maximum number of times, matching counting unit will feed back corresponding confidence
To matching feedback unit, the information that matching feedback unit will input password by mistake the super upper limit of number at this time feeds back to feedback reception list
The manager of member, management end can be handled according to the received information of feedback reception unit, including alarm and be not necessarily to processing, if
Information in feedback reception unit is not handled, and match counting unit issue again information alert key input by mistake number it is super on
In limited time, the alarm activation of matching feedback unit connection is completed alarm operation, and will be recorded in log-on message storage unit
Lander's information locking.
The foregoing is only a preferred embodiment of the present invention, but scope of protection of the present invention is not limited thereto,
Anyone skilled in the art in the technical scope disclosed by the present invention, according to the technique and scheme of the present invention and its
Inventive concept is subject to equivalent substitution or change, should be covered by the protection scope of the present invention.
Claims (6)
1. a kind of disk encryption system towards shared file, which is characterized in that including management end, memory module, client and
Security protection module, the management end, client and memory module pass through telecommunication network between each other and connect, and the management end is used
In the real-time running state for managing and monitoring whole system, the management end includes that management end logs in unit, key display unit
And feedback reception unit, the memory module include registration information storage unit, log-on message storage unit, key database and
Shared file, the client include client registers unit, client login unit, facial acquisition unit, key transmission list
Member and Key input unit, the registration information storage unit are connected with client registers unit, are used for storing user's registered
When all information, unit is logged in client respectively for the log-on message storage unit and facial acquisition unit is connected, use
In the log-on message of storage client, the security protection module includes cipher key match unit, matching counting unit, key generation
Unit and matching feedback unit, the cipher key match unit respectively with Key input unit, Key generating unit, match counting singly
Member is connected with matching feedback unit, described close for the password inputted in Key input unit to be verified and matched
Key generation unit is connected with key database and key display unit respectively, the matching feedback unit respectively with cipher key match
Unit, matching counting unit are connected with feedback reception unit, for the input condition of client key to be fed back to client.
2. a kind of disk encryption system towards shared file according to claim 1, which is characterized in that the matching meter
Preset matching errors number in counting unit, and matching error number is more than or equal to 3 times.
3. a kind of disk encryption system towards shared file according to claim 2, which is characterized in that the matching is anti-
Feedback unit and feedback reception unit are connected with warning device respectively, when matching feedback unit receives the close of matching counting unit
When key inputs the number super upper limit, information is fed back into feedback reception unit, the manager of management end can be according to feedback reception list
The received information of member is handled, if the information in feedback reception unit is not handled, and is matched counting unit and is issued again
When information alert key inputs the number super upper limit, the alarm activation of matching feedback unit connection is completed alarm and is operated.
4. a kind of disk encryption system towards shared file according to claim 1, which is characterized in that the login letter
The face when log-on message for the client that breath storage unit is stored includes IP address, login time, login account, login is adopted
Collect data.
5. a kind of disk encryption system towards shared file according to claim 1, which is characterized in that the key hair
Send unit for the form that client selects password to send, and key transmission unit is connected with registration information storage unit and management end
It connects.
6. a kind of disk encryption system towards shared file according to claim 5, which is characterized in that the password hair
The form sent includes registration mailbox, registration SMS and management end.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710406168.6A CN108985076A (en) | 2017-06-02 | 2017-06-02 | A kind of disk encryption system towards shared file |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710406168.6A CN108985076A (en) | 2017-06-02 | 2017-06-02 | A kind of disk encryption system towards shared file |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN108985076A true CN108985076A (en) | 2018-12-11 |
Family
ID=64502408
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710406168.6A Pending CN108985076A (en) | 2017-06-02 | 2017-06-02 | A kind of disk encryption system towards shared file |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108985076A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110895600A (en) * | 2019-04-22 | 2020-03-20 | 马铁军 | Shared big data field protection method |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2015022513A (en) * | 2013-07-18 | 2015-02-02 | サクサ株式会社 | Document sharing system |
| CN104809407A (en) * | 2015-05-05 | 2015-07-29 | 南京信息工程大学 | Method and system for encrypting, decrypting and verifying cloud storage front end data |
| US20150310188A1 (en) * | 2014-04-23 | 2015-10-29 | Intralinks, Inc. | Systems and methods of secure data exchange |
| CN105740717A (en) * | 2016-01-29 | 2016-07-06 | 四川效率源信息安全技术股份有限公司 | Method and apparatus for performing electronic data file protection based on encrypted partition |
| CN105956496A (en) * | 2016-06-21 | 2016-09-21 | 新昌县七星街道明盛模具厂 | Security and secrecy method for sharing storage files |
| CN106302411A (en) * | 2016-08-03 | 2017-01-04 | 西安邮电大学 | The secure cloud storage method and system of support file encryption based on windows platform |
| CN106534324A (en) * | 2016-11-18 | 2017-03-22 | 广东欧珀移动通信有限公司 | Data sharing method and cloud server |
-
2017
- 2017-06-02 CN CN201710406168.6A patent/CN108985076A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2015022513A (en) * | 2013-07-18 | 2015-02-02 | サクサ株式会社 | Document sharing system |
| US20150310188A1 (en) * | 2014-04-23 | 2015-10-29 | Intralinks, Inc. | Systems and methods of secure data exchange |
| CN104809407A (en) * | 2015-05-05 | 2015-07-29 | 南京信息工程大学 | Method and system for encrypting, decrypting and verifying cloud storage front end data |
| CN105740717A (en) * | 2016-01-29 | 2016-07-06 | 四川效率源信息安全技术股份有限公司 | Method and apparatus for performing electronic data file protection based on encrypted partition |
| CN105956496A (en) * | 2016-06-21 | 2016-09-21 | 新昌县七星街道明盛模具厂 | Security and secrecy method for sharing storage files |
| CN106302411A (en) * | 2016-08-03 | 2017-01-04 | 西安邮电大学 | The secure cloud storage method and system of support file encryption based on windows platform |
| CN106534324A (en) * | 2016-11-18 | 2017-03-22 | 广东欧珀移动通信有限公司 | Data sharing method and cloud server |
Non-Patent Citations (1)
| Title |
|---|
| 何连跃 等: "KSEFS :支持加密共享的服务器加密文件系统", 《计算机工程与科学》 * |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110895600A (en) * | 2019-04-22 | 2020-03-20 | 马铁军 | Shared big data field protection method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9794761B2 (en) | Intelligent formation and management of dynamic talk groups | |
| CN102546601B (en) | The servicing unit of cloud computing terminal for accessing virtual machine | |
| US5056140A (en) | Communication security accessing system and process | |
| US20070250914A1 (en) | Method and system for resetting secure passwords | |
| CN103401949B (en) | A kind of system and method shared for the personal data safety of mobile phone | |
| CN105490872B (en) | A kind of network instant communication data information real-time monitoring system and monitoring method | |
| CN109450777B (en) | Session information extraction method, device, equipment and medium | |
| US20150149784A1 (en) | Communication method utilizing fingerprint information authentication | |
| CN105162757A (en) | External network log-in method for multi-authentication government virtual office platform | |
| CN103812651A (en) | Password authentication method, device and system | |
| CN106385506A (en) | Information notification management method and device | |
| CN109326025A (en) | The method for unlocking and device of intelligent door lock | |
| CN105744468A (en) | Attendance monitoring method and system based on Bluetooth communication technology | |
| CN105656907B (en) | A kind of router administration password recovery method and recovery system | |
| CN109410397B (en) | Unlocking method, unlocking system, intelligent terminal and intelligent terminal storage medium | |
| CN106921677A (en) | A kind of multiple encryption system of block chain houseclearing | |
| CN106302539A (en) | A kind of embedded type WEB safety certifying method | |
| HUE029848T2 (en) | Method and equipment for establishing secure connection on a communication network | |
| CN108985076A (en) | A kind of disk encryption system towards shared file | |
| CN106059767A (en) | Terminal private data protection system and method based on Internet | |
| CN106485100A (en) | A kind of method of internet computer software lock and its service system | |
| CN100477581C (en) | Method and server for providing remote help | |
| CN110737705A (en) | Data acquisition system for forwarding behaviors | |
| CN109274690A (en) | Group's data ciphering method | |
| CN115455480A (en) | Information management system based on big data |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20181211 |