CN109558451B - Data management method and system and storage medium - Google Patents
Data management method and system and storage medium Download PDFInfo
- Publication number
- CN109558451B CN109558451B CN201811363009.3A CN201811363009A CN109558451B CN 109558451 B CN109558451 B CN 109558451B CN 201811363009 A CN201811363009 A CN 201811363009A CN 109558451 B CN109558451 B CN 109558451B
- Authority
- CN
- China
- Prior art keywords
- identity
- user
- management
- user side
- storage
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000013523 data management Methods 0.000 title claims abstract description 83
- 238000000034 method Methods 0.000 title claims abstract description 48
- 238000007726 management method Methods 0.000 claims abstract description 216
- 238000012795 verification Methods 0.000 claims abstract description 126
- 238000004590 computer program Methods 0.000 claims description 4
- 238000007792 addition Methods 0.000 description 3
- 238000012217 deletion Methods 0.000 description 3
- 230000037430 deletion Effects 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000011084 recovery Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Landscapes
- Telephonic Communication Services (AREA)
- Storage Device Security (AREA)
Abstract
The embodiment of the invention discloses a data management method, a system and a storage medium, wherein the system comprises: a management platform in a service network; the local distributed storage equipment is connected with the management platform and is positioned in the user network, and the local distributed storage equipment is the storage equipment which deploys the local storage equipment in the user network according to a preset distributed deployment strategy; the management platform is used for sending an identity verification instruction to the identity verification module when receiving a cloud storage file sent by a user side; the identity authentication module is used for authenticating the identity of the user side according to the identity authentication instruction and transmitting an identity authentication result to the management platform; and the management platform is also used for storing the cloud storage file to the local distributed storage equipment when the identity verification result is judged to be that the identity verification passes.
Description
Technical Field
The invention relates to a big data processing technology in the technical field of internet information, in particular to a data management method and system and a storage medium.
Background
In order to meet the storage function requirements of users, service providers such as Baidu cloud and Alice cloud deploy distributed storage systems, specifically, all hardware storage devices are provided by the service providers, the service providers deploy the hardware storage devices into a complete distributed storage system by using Ceph, GlusterFS and other modes, and finally the service providers provide packaged storage interfaces for the users to perform a data storage process and support the users to perform operations of adding, deleting, modifying and checking on databases.
However, in the existing distributed storage system, the user data is stored in the hardware storage device provided by the service provider, and the service provider can also monitor the sensitive data which is not desired to be viewed by the third party, which results in low security of storing the user data.
Disclosure of Invention
In order to solve the foregoing technical problems, embodiments of the present invention are intended to provide a data management method, a data management system, and a storage medium, which can improve security of stored user data.
An embodiment of the present invention provides a data management system, where the system includes:
a management platform;
the local distributed storage equipment and the identity authentication module are connected with the management platform and are positioned in a user network, and the local distributed storage equipment is the storage equipment which deploys the local storage equipment in the user network according to a preset distributed deployment strategy;
Wherein,
the management platform is used for sending an identity verification instruction to the identity verification module when receiving a cloud storage file sent by a user side;
the identity authentication module is used for authenticating the identity of the user side according to the identity authentication instruction and transmitting an identity authentication result to the management platform;
the management platform is further configured to store the cloud storage file to the local distributed storage device when it is determined that the authentication result is that authentication is passed.
In the above system, the management platform includes: a storage management server; the storage management server is provided with an operation interface corresponding to the local distributed storage equipment and an identity verification interface corresponding to the identity verification module;
the storage management server is used for connecting the management platform and the local distributed storage equipment through the operation interface; and connecting the management platform and the identity authentication module through the identity authentication interface.
In the above system, the management platform further includes: a management interface and a storage management client;
the management interface is used for receiving the cloud storage file sent by the user side in the service network and transmitting the cloud storage file to the storage management client side;
And the storage management client is used for sending the cloud storage file to the storage management server.
In the system, the storage management server is specifically configured to instruct, when receiving the cloud storage file, the identity authentication module to perform identity authentication through the identity authentication interface, and store the cloud storage file in the local distributed storage device by using the operation interface when the identity authentication passes.
In the system, the management platform is further configured to send an authentication instruction to the authentication module when receiving an operation instruction sent by the user side; and according to the identity verification result responding to the identity verification instruction, when the identity verification is judged to pass, executing the operation corresponding to the operation instruction on the cloud storage file stored in the local distributed storage equipment.
In the system, the operation instruction comprises a data adding instruction, a data deleting instruction, a data modifying instruction and a data inquiring instruction.
In the system, the identity authentication module is specifically configured to perform identity authentication on the user side according to the identity authentication instruction by using a preset authentication policy, and send an identity authentication result to the storage management server.
In the system, the preset verification strategy is short message random password verification;
the identity verification module is specifically used for determining a user identity corresponding to the user side according to the identity verification instruction; generating a preset short message password corresponding to the user identity, and sending the preset short message password to the user identity; and when a first short message password sent by the user identity is received, comparing the first short message password with the preset short message password so as to authenticate the identity of the user side.
In the system, the management platform is further configured to provide a link address and a login account of the local distributed storage device, so that the user side enters a management interface of the local distributed storage device according to the link address and the login account and uploads the cloud storage file on the management interface.
The embodiment of the invention provides a data management method, which comprises the following steps:
receiving a cloud storage file sent by a user side through a management platform;
the method comprises the steps that through an identity authentication module in a user network, a preset authentication strategy is used for authenticating the identity of a user side;
And when the identity authentication is passed, storing the cloud storage file into local distributed storage equipment in the user network, wherein the local distributed storage equipment is storage equipment which deploys the local storage equipment in the user network according to a preset distributed deployment strategy.
In the above method, the receiving, by the management platform, the cloud storage file sent by the user side includes:
providing a link address and a login account of the local distributed storage equipment at the management platform;
and when the user side is detected to enter the management interface of the local distributed storage equipment according to the link address and the login account, receiving the cloud storage file at the management interface.
In the above method, the preset authentication policy is short message random password authentication, and the authentication of the user side by the authentication module in the user network using the preset authentication policy includes:
determining a user identity corresponding to the user side through the identity authentication module;
generating a preset short message password corresponding to the user identity;
sending the preset short message password to the user identity;
And when a first short message password sent by the user identity is received, comparing the first short message password with the preset short message password so as to authenticate the identity of the user side.
In the above method, after storing the cloud storage file in a local distributed storage device in the user network, the method further includes:
when an operation instruction sent by the user side is received, the user side is authenticated through the authentication module;
receiving an authentication result responding to the authentication instruction;
and when the identity authentication is judged to pass according to the identity authentication result, executing the operation corresponding to the operation instruction on the cloud storage file.
In the method, the operation instruction comprises a data adding instruction, a data deleting instruction, a data modifying instruction and a data inquiring instruction.
An embodiment of the present invention provides a storage medium, on which a computer program is stored, and is applied to a data management system, where the computer program is executed by a processor to implement the method for data management as described in any one of the above.
The embodiment of the invention provides a data management method, a system and a storage medium, wherein the system comprises the following steps: a management platform; the local distributed storage equipment is connected with the management platform and is positioned in the user network, and the local distributed storage equipment is the storage equipment which deploys the local storage equipment in the user network according to a preset distributed deployment strategy; the management platform is used for sending an identity verification instruction to the identity verification module when receiving a cloud storage file sent by a user side; the identity authentication module is used for performing identity authentication on the user side according to the identity authentication instruction and transmitting an identity authentication result to the management platform; and the management platform is also used for storing the cloud storage file to the local distributed storage equipment when the identity verification result is judged to be that the identity verification passes. By adopting the system implementation scheme, the local storage equipment of the user side is deployed into the local distributed storage equipment of the system and is in different networks with the management platform of the system, so that the management platform and the local distributed storage equipment are independent; when the user side needs to store the cloud storage file to the local distributed storage equipment, the system firstly verifies the identity information of the user side through the user-defined identity verification module of the user side, and only stores the cloud storage file to the local distributed storage equipment when the identity verification is passed, so that the safety of storing user data is improved.
Drawings
Fig. 1 is a schematic structural diagram of a data management system according to an embodiment of the present invention;
FIG. 2 is a block diagram of an exemplary data management system according to an embodiment of the present invention;
fig. 3 is a first flowchart of a data management method according to an embodiment of the present invention;
fig. 4 is a second flowchart of a data management method according to an embodiment of the present invention.
Detailed Description
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be obtained by a person skilled in the art without any inventive step based on the embodiments of the present invention, are within the scope of the present invention.
Example one
An embodiment of the present invention provides a data management system 1, as shown in fig. 1, the system may include:
a management platform 10;
the local distributed storage device 11 and the identity verification module 12 are connected with the management platform 10 and are in a user network, and the local distributed storage device 11 is a storage device which deploys a local storage device in the user network according to a preset distributed deployment strategy;
Wherein,
the management platform 10 is configured to send an authentication instruction to the authentication module 12 when receiving a cloud storage file sent by a user side;
the identity authentication module 12 is configured to perform identity authentication on the user side according to the identity authentication instruction, and transmit an identity authentication result to the management platform 10;
the management platform 10 is further configured to store the cloud storage file to the local distributed storage device 11 when it is determined that the authentication result is that the authentication passes.
The data management system provided by the embodiment of the invention is suitable for storing data in a scene of local distributed storage equipment.
In the embodiment of the invention, the data management system comprises a management platform, local distributed storage equipment and an identity authentication module, wherein the local distributed storage equipment and the identity authentication module are both deployed in a user network; the management platform is deployed in a service network provided by a server and is connected with the local distributed storage equipment and the identity verification module through an interface.
In the embodiment of the present invention, a client provides a local storage device and an identity verification module in a plug-in manner, and a process of a server performing distributed deployment on the local storage device according to a preset distributed deployment policy is as follows: installing GlusterFS, Ceph, or other distributed storage applications on the local storage devices to deploy these local storage devices as local distributed storage devices.
It should be noted that the "preset distributed deployment policy" in the embodiment of the present invention refers to that multiple local storage devices are deployed to be a whole of a space size that provides a space of several hundred T levels at a user side, so that the file reading and writing speed can be increased, and since the multiple local storage devices are deployed in a distributed manner, the problem of data loss caused by damage to one of the local storage devices can be avoided, and meanwhile, data recovery is ensured.
In the embodiment of the invention, the local distributed storage equipment is a distributed storage cluster.
In the embodiment of the invention, when a user side needs to store a cloud storage file into the local distributed storage equipment, the user side sends the cloud storage file to the management platform, at the moment, the management platform sends an identity verification instruction to the identity verification module according to the cloud storage file received from the user side, the identity verification module performs identity verification on the user side through a preset identity verification strategy according to the identity verification instruction and transmits an identity verification result back to the management platform, and when the management platform judges that the identity verification result is that the identity verification passes, the management platform stores the cloud storage file into the local distributed storage equipment.
In the embodiment of the present invention, the preset authentication policy includes short message random code authentication, biometric authentication, and the like, and is specifically selected according to an actual situation, which is not specifically limited in the embodiment of the present invention.
Optionally, the management platform 10 includes: a storage management server 100; the storage management server 100 is provided with an operation interface corresponding to the local distributed storage device 11 and an authentication interface corresponding to the authentication module 12;
the storage management server 100 is configured to connect the management platform 10 and the local distributed storage device 11 through the identity authentication interface; the management platform 10 and the authentication module 12 are connected through the operation interface.
In the embodiment of the invention, the management platform provided by the server comprises a storage management server, wherein the storage management server is used for connecting the management platform, the local distributed storage equipment in the user network and the identity authentication module in the storage user network.
In the embodiment of the invention, the storage management server is provided with an operation interface corresponding to the local distributed storage equipment and an identity verification interface corresponding to the identity verification module. Specifically, the storage management server connects the management platform with the local distributed storage device through the operation interface, and connects the management platform with the authentication module through the authentication interface.
It should be noted that, since the storage management server interfaces the local distributed storage device and the authentication module in the user network, the storage management server is located in the user network.
Optionally, the management platform 10 further includes: a management interface 101 and a storage management client 102;
the management interface 101 is configured to receive a cloud storage file sent by the user side in the service network, and transmit the cloud storage file to the storage management client 102;
the storage management client 102 is configured to send the cloud storage file to the storage management server 100.
In the embodiment of the invention, the management platform also comprises a management interface and a storage management client in the service network, wherein the management interface is used for displaying the local distributed storage equipment and providing various operation buttons for the client; the storage management client is used for realizing conversion between the service network and the user network, and is connected with the storage management server.
In the embodiment of the invention, the user side uploads the cloud storage file in the management interface, and the management interface sends the received cloud storage file to the storage management server side in the user network through the storage management client side.
In the embodiment of the present invention, the operation buttons include an add button, a delete button, a modify button, and a query button, which are specifically selected according to actual situations, and the embodiment of the present invention is not specifically limited.
Illustratively, a user at a user side clicks an add button on a management interface, and adds a cloud storage file, at this time, the management platform stores the cloud storage file to the local distributed storage device.
Optionally, the storage management server 100 is specifically configured to instruct, when receiving the cloud storage file, the identity authentication module 12 to perform identity authentication through the identity authentication interface, and store the cloud storage file in the local distributed storage device 11 by using the operation interface when the identity authentication passes.
In the embodiment of the invention, when a storage management server receives a cloud storage file sent by a storage management client, an identity verification instruction is sent to an identity verification module through an identity verification interface to indicate the identity verification module to verify the identity of a user side, when the identity verification module completes verification, an identity verification result is sent to the storage management server, and when the storage management server judges that the user side passes the identity verification according to the identity verification result, the cloud storage file is stored into local distributed storage equipment through an operation interface.
Optionally, the management platform 10 is further configured to send an authentication instruction to the authentication module 12 when receiving an operation instruction sent by the user side; and according to the identity verification result responding to the identity verification instruction, when the identity verification is judged to pass, executing the operation corresponding to the operation instruction on the cloud storage file stored in the local distributed storage device 11.
In the embodiment of the invention, the user side can also perform operations such as addition, deletion, modification, check and the like on the cloud storage file stored in the local distributed storage equipment through the management platform.
In the embodiment of the invention, when the user terminal needs to perform operations such as adding, deleting, modifying, checking and the like on the cloud storage file stored in the local distributed storage equipment, the user end clicks the corresponding operation button on the management interface, at this time, the management interface receives the operation instruction sent by the user end, and the operation instruction is sent to the storage management server through the storage management client, at the moment, the storage management server sends an identity verification instruction to the identity verification module, when the storage management server receives the authentication result sent by the authentication module and responding to the authentication instruction, the storage management server judges whether the authentication of the user side passes according to the authentication result, and when the identity verification is judged to be passed, determining the cloud storage file and the specific operation type corresponding to the operation instruction, and according to the operation type, performing corresponding operation on the cloud storage file instruction stored in the local distributed storage equipment.
Optionally, the operation instruction includes a data adding instruction, a data deleting instruction, a data modifying instruction, and a data querying instruction.
Optionally, the identity authentication module 12 is specifically configured to perform identity authentication on the user side according to the identity authentication instruction by using a preset authentication policy, and send an identity authentication result to the storage management server side.
In the embodiment of the invention, when an identity authentication module receives an identity authentication instruction sent by a storage management server, the identity authentication module carries out identity authentication on a user side by using a preset authentication strategy and sends an identity authentication result to the storage management server.
Optionally, the preset verification strategy is short message random password verification;
the identity verification module 12 is specifically configured to determine, according to the identity verification instruction, a user identity corresponding to the user side; generating a preset short message password corresponding to the user identity, and sending the preset short message password to the user identity; and when a first short message password sent by the user identity is received, comparing the first short message password with the preset short message password so as to authenticate the identity of the user side.
In the embodiment of the present invention, the preset authentication policy may be short message random password authentication, and the specific process of the identity authentication module performing identity authentication according to the short message random password is as follows: when the identity verification module receives an identity verification instruction sent by the storage management server, the identity verification module determines a user identity corresponding to the user side and generates a preset short message password corresponding to the user identity, then the preset short message password is sent to the user identity, when the user side inputs the first short message password at a corresponding position of the management interface, the identity verification module compares the first short message password with the preset short message password, and when the first short message password is the same as the preset short message password, the identity verification of the user side is represented to be passed; when the first short message password is different from the preset short message password, the user side identity authentication is not passed.
In the embodiment of the invention, when the user side fails to perform the identity authentication, the management platform indicates the user side to perform the identity authentication again, and reminds the user side that the access right does not exist when the authentication fails for the preset times.
Optionally, the management platform 10 is further configured to provide a link address and a login account of the local distributed storage device, so that the user enters a management interface of the local distributed storage device 11 according to the link address and the login account, and uploads the cloud storage file on the management interface.
In the embodiment of the invention, the management platform further provides a connection address and a login account of the local distributed storage equipment, and the user side can enter a management interface of the distributed storage equipment according to the connection address and the login account and upload a cloud storage file on the management interface.
Illustratively, as shown in fig. 2, the data management system includes a management interface, a storage management client deployed in a service network, a storage management server deployed in a user network, a local storage device, and an authentication module. The management interface, the storage management client and the storage management server are provided by a server, the local storage device and the identity verification module are provided by a client in a plug-in mode, and the local storage device is deployed into a distributed storage cluster according to a distributed deployment strategy.
It can be understood that the local storage device of the user side is deployed as the local distributed storage device of the system, and is in different networks with the management platform of the system, so that the management platform and the local distributed storage device are independent from each other; when the user side needs to store the cloud storage file to the local distributed storage equipment, the system firstly verifies the identity information of the user side through the user-defined identity verification module of the user side, and only stores the cloud storage file to the local distributed storage equipment when the identity verification is passed, so that the safety of storing user data is improved.
Example two
An embodiment of the present invention provides a data management method, as shown in fig. 3, the method may include:
s101, receiving a cloud storage file sent by a user side through a management platform.
The data management method provided by the embodiment of the invention is suitable for storing data in a scene of local distributed storage equipment.
The data management method provided by the embodiment of the invention is applied to a data management system, wherein the data management system comprises a management platform, local distributed storage equipment and an identity verification module, wherein the local distributed storage equipment and the identity verification module are both deployed in a user network; the management platform is deployed in a service network provided by a server side and is connected with the local distributed storage equipment and the identity authentication module through an interface.
In the embodiment of the invention, when a user needs to store the cloud storage file into the local distributed storage equipment, the user side uploads the cloud storage file on the management platform, and at the moment, the management platform stores the cloud storage file according to the cloud storage file received from the user side.
Specifically, the management platform provides a link address and a login account of the local distributed storage device, and the user enters a management interface of the local distributed storage device according to the link address and the login account and uploads the cloud storage file on the management interface.
S102, the identity of the user side is verified through an identity verification module in the user network by using a preset verification strategy.
After the data management system receives the cloud storage file sent by the user side through the management platform, the data management system carries out identity verification on the user side through an identity verification module in a user network by using a preset verification strategy.
In the embodiment of the invention, after the management platform receives the cloud storage file uploaded by the user side, the management platform sends an identity verification instruction to the identity verification module so as to verify the identity of the user side.
Optionally, the preset identity authentication policy includes short message random code authentication, biometric authentication, and the like, which is specifically selected according to an actual situation, and the embodiment of the present invention is not specifically limited.
In the embodiment of the invention, when the preset verification strategy is short message random password verification, the data management system determines the user identity corresponding to the user side through the identity verification module; generating a preset short message password corresponding to the user identity; sending a preset short message password to the user identity; when a first short message password sent by the user identity is received, the first short message password is compared with a preset short message password so as to carry out identity authentication on the user side.
S103, when the identity verification is passed, storing the cloud storage file into a local distributed storage device in the user network, wherein the local distributed storage device is a storage device which deploys the local storage device in the user network according to a preset distributed deployment strategy.
And after the data management system passes the identity authentication of the user side through the identity authentication module, the data management system stores the cloud storage file into local distributed storage equipment in a user network when the data management system passes the identity authentication.
In the embodiment of the invention, the identity authentication module sends the identity authentication result to the management platform, and when the identity authentication is passed, the management platform stores the cloud storage file into the local distributed storage equipment, wherein the local distributed storage equipment is obtained by deploying the local storage equipment of the user side by the server side according to a preset distributed deployment strategy.
Further, after the data management system stores the cloud storage file in the local distributed storage device, the user side may further perform operations such as adding, deleting, modifying, checking and the like on the cloud storage file stored in the local distributed storage device through the management platform.
Specifically, when the data management system receives an operation instruction sent by the user side through the management platform, the data management system performs identity verification on the user side through the identity verification module; the data management system receives an identity verification result responding to the identity verification instruction; and when the data management system judges that the identity authentication passes according to the identity authentication result, the data management system executes the operation corresponding to the operation instruction on the cloud storage file. The operation instructions comprise a data adding instruction, a data deleting instruction, a data modifying instruction and a data inquiring instruction.
It can be understood that the local storage device of the user side is deployed as the local distributed storage device of the system, and is in different networks with the management platform of the system, so that the management platform and the local distributed storage device are independent from each other; when the user side needs to store the cloud storage file to the local distributed storage equipment, the system firstly verifies the identity information of the user side through the user-defined identity verification module of the user side, and only stores the cloud storage file to the local distributed storage equipment when the identity verification is passed, so that the safety of storing user data is improved.
EXAMPLE III
An embodiment of the present invention provides a data management method, as shown in fig. 4, the method may include:
s201, the data management system provides a link address and a login account of the local distributed storage device on a management platform.
The data management method provided by the embodiment of the invention is suitable for storing data in a scene of local distributed storage equipment.
In the embodiment of the invention, the data management system comprises a management platform, local distributed storage equipment and an identity authentication module, wherein the local distributed storage equipment and the identity authentication module are both deployed in a user network; the management platform is deployed in a service network provided by a server side and is connected with the local distributed storage equipment and the identity authentication module through an interface.
In the embodiment of the invention, the data management system provides the link address and the login account of the local distributed storage device to the user side on the management platform.
S202, when the data management system detects that the user side enters a management interface of the local distributed storage equipment according to the link address and the login account, the data management system receives the cloud storage file on the management interface.
When the data management system provides the login account and the link address of the local distributed storage device on the management platform, the user side enters a management interface of the local distributed storage device according to the link address and the login account, at the moment, the data management system detects that the user side enters the management interface of the local distributed storage device according to the link address and the login account, and after the user side uploads the cloud storage file on the management interface, the data management system receives the cloud storage file on the management interface.
In the embodiment of the invention, a user side inputs a link address and a login account, a management platform enters a management interface of local distributed storage equipment according to the link address and the login account, the management interface provides various operation buttons for the user side, the user side clicks an upload button on the management interface and uploads a cloud storage file on the management interface, and at the moment, a data management system receives the cloud storage file on the management interface.
S203, the data management system determines the user identity corresponding to the user side through the identity verification module.
After the data management system receives the cloud storage file uploaded by the user side on the management interface, the data management system determines the user identity corresponding to the user side through the identity verification module.
In the embodiment of the invention, after receiving the cloud storage file, the management platform sends an identity verification instruction to the identity verification module, and the identity verification module determines the user identity corresponding to the user side according to the identity verification instruction.
In the embodiment of the invention, the management platform indicates the user side to upload the user identity, and carries the user identity in the identity verification instruction to be sent to the identity verification module.
S204, the data management system generates a preset short message password corresponding to the user identity.
And after the data management system determines the user identity corresponding to the user side, the data management system applies a preset short message password corresponding to the user identity.
S205, the data management system sends a preset short message password to the user identity.
And after the data management system generates a preset short message password corresponding to the user identity, the data management system sends the preset short message password to the user identity.
In the embodiment of the invention, the data management system generates the preset short message password and sends the preset short message password to the user identity.
S206, when the data management system receives a first short message password sent by the user identity, the data management system compares the first short message password with a preset short message password so as to verify the identity of the user side.
And after the data management system sends a preset short message password to the user identity, the data management system receives a first short message password sent by the user identity and compares the first short message password with the preset short message password so as to carry out the identity verification process on the user side.
In the embodiment of the invention, when the user inputs the first short message password on the management interface, the data management system receives the first short message password sent by the user identity and sends the first short message password to the identity verification module, and at the moment, the identity verification module compares the first short message password with the preset short message password so as to verify the identity of the user.
In the embodiment of the invention, when the first short message password is the same as the preset short message password, the user side identity authentication is passed; when the first short message password is different from the preset short message password, the user side identity authentication is not passed.
And S207, when the identity verification is passed, the data management system stores the cloud storage file into local distributed storage equipment in the user network, and the local distributed storage equipment deploys the local storage equipment in the user network according to a preset distributed deployment strategy.
And after the data management system randomly verifies the identity of the user side according to the short message, the data management system stores the cloud storage file into local distributed storage equipment in a user network when the identity verification is passed.
In the embodiment of the invention, the server deploys the local storage equipment into the local distributed storage equipment according to the preset distributed deployment strategy, and when the identity verification is passed, the data management system stores the cloud storage file into the local distributed storage equipment in the user network.
In particular, a GlusterFS, Ceph, or other distributed storage application is installed on the local storage devices to deploy these local storage devices as local distributed storage devices.
And S208, when the data management system receives an operation instruction sent by the user side, the data management system performs identity verification on the user side through the identity verification module, wherein the operation instruction comprises a data adding instruction, a data deleting instruction, a data modifying instruction and a data inquiring instruction.
After the data management system stores the cloud storage file in the local distributed storage device, the data management system receives an operation instruction sent by the user side and performs identity verification on the user side through an identity verification module, wherein the operation instruction is used for performing operations such as addition, deletion, modification and the like on the cloud storage file stored in the local distributed storage device.
In the embodiment of the invention, the user side can also perform operations such as addition, deletion, modification, check and the like on the cloud storage file stored in the local distributed storage equipment through the management platform.
In the embodiment of the invention, when a user side needs to perform operations such as adding, deleting, modifying, checking and the like on the cloud storage file stored in the local distributed storage device, the user side clicks the corresponding operation button on the management interface, at the moment, the management interface receives an operation instruction sent by the user side and sends an authentication instruction to the authentication module according to the operation instruction, and the authentication module authenticates the identity of the user side according to the authentication instruction.
S209, the data management system receives the authentication result responding to the authentication instruction.
And after the data management system authenticates the user side through the authentication module, the data management system receives an authentication result responding to the authentication instruction.
In the embodiment of the invention, the management platform receives the identity verification result which is sent by the identity verification module and responds to the identity verification instruction.
S210, when the data management system judges that the identity authentication is passed according to the identity authentication result, the data management system executes operation corresponding to the operation instruction on the cloud storage file.
And after the data management system receives the identity verification result responding to the identity verification instruction, when the data management system judges that the identity verification is passed according to the identity verification result, the data management system executes the operation corresponding to the operation instruction on the cloud storage file.
In the embodiment of the invention, when the data management system judges that the identity verification is passed, the cloud storage file and the specific operation type corresponding to the operation instruction are determined, and the cloud storage file stored in the local distributed storage equipment is operated correspondingly according to the operation type.
Further, when the user side fails to perform identity authentication, the management platform indicates the user side to perform identity authentication again, and reminds the user side that the user side does not have access right when the authentication fails for a preset number of times.
It can be understood that the local storage device of the user side is deployed as the local distributed storage device of the system, and is in different networks with the management platform of the system, so that the management platform and the local distributed storage device are independent from each other; when the user side needs to store the cloud storage file to the local distributed storage equipment, the system firstly verifies the identity information of the user side through the user-defined identity verification module of the user side, and only stores the cloud storage file to the local distributed storage equipment when the identity verification is passed, so that the safety of storing user data is improved.
Example four
The embodiment of the present invention provides a storage medium, where the storage medium stores one or more programs, the one or more programs are executable by one or more processors and applied to a data management system, and when the programs are executed by the processors, the method according to the third embodiment is implemented.
Specifically, the program instructions corresponding to a data management method in the embodiment are read or executed by an electronic device, and include the following steps:
receiving a cloud storage file sent by a user side through a management platform;
The method comprises the steps that through an identity authentication module in a user network, a preset authentication strategy is used for authenticating the identity of a user side;
and when the identity authentication is passed, storing the cloud storage file into local distributed storage equipment in the user network, wherein the local distributed storage equipment is storage equipment which deploys the local storage equipment in the user network according to a preset distributed deployment strategy.
In this embodiment of the present invention, further, the cloud storage file sent by the user side is received through the management platform, and the one or more programs are executed by the one or more processors, so that the following steps are specifically implemented:
providing a link address and a login account of the local distributed storage equipment at the management platform;
and when the user side is detected to enter the management interface of the local distributed storage equipment according to the link address and the login account, receiving the cloud storage file at the management interface.
In the embodiment of the present invention, further, the preset authentication policy is short message random password verification, the authentication module in the user network authenticates the user terminal by using the preset authentication policy, the one or more programs are executed by the one or more processors, and the following steps are specifically implemented:
Determining a user identity corresponding to the user side through the identity authentication module;
generating a preset short message password corresponding to the user identity;
sending the preset short message password to the user identity;
and when a first short message password sent by the user identity is received, comparing the first short message password with the preset short message password so as to authenticate the identity of the user side.
In an embodiment of the present invention, further, after storing the cloud storage file in a local distributed storage device in the user network, the one or more programs are executed by the one or more processors, and the following steps are further implemented:
when an operation instruction sent by the user side is received, the user side is authenticated through the authentication module;
receiving an authentication result responding to the authentication instruction;
and when the identity authentication is judged to pass according to the identity authentication result, executing the operation corresponding to the operation instruction on the cloud storage file.
In the embodiment of the invention, further, the operation instruction comprises a data adding instruction, a data deleting instruction, a data modifying instruction and a data inquiring instruction.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element identified by the phrase "comprising an … …" does not exclude the presence of other identical elements in the process, method, article, or apparatus that comprises the element.
The above-mentioned serial numbers of the embodiments of the present invention are only for description, and do not represent the advantages and disadvantages of the embodiments.
Through the above description of the embodiments, those skilled in the art will clearly understand that the method of the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but in many cases, the former is a better implementation manner. Based on such understanding, the technical solutions of the present invention may be embodied in the form of a software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal (such as a mobile phone, a computer, a server, an air conditioner, or a network device) to execute the method according to the embodiments of the present invention.
The above description is only for the specific embodiment of the present invention, but the scope of the present invention is not limited thereto, and any changes or substitutions that can be easily conceived by those skilled in the art within the technical scope of the present invention are included in the scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (14)
1. A data management system, characterized in that the system comprises:
a management platform;
the local distributed storage equipment and the identity authentication module are connected with the management platform and are positioned in a user network, and the local distributed storage equipment is the storage equipment which deploys the local storage equipment in the user network according to a preset distributed deployment strategy;
wherein,
the management platform is used for sending an identity verification instruction to the identity verification module when receiving a cloud storage file sent by a user side;
the identity authentication module is used for authenticating the identity of the user side according to the identity authentication instruction and transmitting an identity authentication result to the management platform;
the management platform is further used for storing the cloud storage file to the local distributed storage device when the identity authentication result is judged to be that the identity authentication is passed;
Wherein the management platform comprises: the system comprises a management interface, a storage management client and a storage management server; the management interface and the storage management client are deployed in a service network, and the storage management server is deployed in the user network;
the storage management server is provided with an operation interface corresponding to the local distributed storage equipment and an identity verification interface corresponding to the identity verification module;
the storage management server is specifically configured to instruct, when receiving the cloud storage file, the identity authentication module to perform identity authentication through the identity authentication interface, and store the cloud storage file in the local distributed storage device by using the operation interface when the identity authentication is passed.
2. The system of claim 1,
the storage management server is further configured to connect the management platform and the local distributed storage device through the operation interface; and connecting the management platform and the identity authentication module through the identity authentication interface.
3. The system of claim 2, wherein the management platform further comprises: a management interface and a storage management client;
The management interface is used for receiving the cloud storage file sent by the user side in the service network and transmitting the cloud storage file to the storage management client side;
and the storage management client is used for sending the cloud storage file to the storage management server.
4. The system of claim 1,
the management platform is further used for sending an identity verification instruction to the identity verification module when receiving an operation instruction sent by the user side; and according to the identity verification result responding to the identity verification instruction, when the identity verification is judged to pass, executing the operation corresponding to the operation instruction on the cloud storage file stored in the local distributed storage equipment.
5. The system of claim 4, wherein the operation instructions comprise data add instructions, data delete instructions, data modify instructions, and data query instructions.
6. The system of claim 2,
the identity authentication module is specifically configured to perform identity authentication on the user side according to the identity authentication instruction by using a preset authentication policy, and send an identity authentication result to the storage management server side.
7. The system of claim 6, wherein the predetermined authentication policy is short message random password verification;
the identity verification module is specifically used for determining a user identity corresponding to the user side according to the identity verification instruction; generating a preset short message password corresponding to the user identity, and sending the preset short message password to the user identity; and when a first short message password sent by the user identity is received, comparing the first short message password with the preset short message password so as to authenticate the identity of the user side.
8. The system of claim 1,
the management platform is further used for providing a link address and a login account of the local distributed storage device, so that the user side can enter a management interface of the local distributed storage device according to the link address and the login account and upload the cloud storage file on the management interface.
9. A method for managing data, the method comprising:
receiving a cloud storage file sent by a user side through a management platform;
the method comprises the steps that through an identity authentication module in a user network, a preset authentication strategy is used for authenticating the identity of a user side;
When the identity authentication is passed, storing the cloud storage file into local distributed storage equipment in the user network, wherein the local distributed storage equipment is storage equipment which deploys the local storage equipment in the user network according to a preset distributed deployment strategy;
wherein the management platform comprises: the system comprises a management interface, a storage management client and a storage management server; the management interface and the storage management client are deployed in a service network, and the storage management server is deployed in the user network;
the storage management server is provided with an operation interface corresponding to the local distributed storage equipment and an identity verification interface corresponding to the identity verification module;
the method further comprises the following steps:
through the storage management server, when the cloud storage file is received, the identity authentication module is indicated to perform identity authentication through the identity authentication interface, and when the identity authentication passes, the cloud storage file is stored in the local distributed storage equipment through the operation interface.
10. The method according to claim 9, wherein the receiving, by the management platform, the cloud storage file sent by the user side includes:
Providing a link address and a login account number of the local distributed storage equipment at the management platform;
and when detecting that the user side enters a management interface of the local distributed storage equipment according to the link address and the login account, receiving the cloud storage file at the management interface.
11. The method of claim 9, wherein the predetermined authentication policy is short message random password authentication, and the authenticating the user terminal by the authentication module in the user network using the predetermined authentication policy comprises:
determining a user identity corresponding to the user side through the identity authentication module;
generating a preset short message password corresponding to the user identity;
sending the preset short message password to the user identity;
and when a first short message password sent by the user identity is received, comparing the first short message password with the preset short message password so as to authenticate the identity of the user side.
12. The method of claim 9, wherein after storing the cloud-stored file in a local distributed storage device on the user network, the method further comprises:
When an operation instruction sent by the user side is received, an identity verification instruction is sent to the identity verification module through the storage management server side;
the identity authentication module authenticates the identity of the user side;
receiving an authentication result responding to the authentication instruction;
and when the identity authentication is judged to pass according to the identity authentication result, executing the operation corresponding to the operation instruction on the cloud storage file.
13. The method of claim 12, wherein the operation instructions include a data add instruction, a data delete instruction, a data modify instruction, and a data query instruction.
14. A storage medium on which a computer program is stored for use in a data management system, characterized in that the computer program, when being executed by a processor, carries out the method according to any one of claims 9-13.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811363009.3A CN109558451B (en) | 2018-11-14 | 2018-11-14 | Data management method and system and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811363009.3A CN109558451B (en) | 2018-11-14 | 2018-11-14 | Data management method and system and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109558451A CN109558451A (en) | 2019-04-02 |
| CN109558451B true CN109558451B (en) | 2022-06-10 |
Family
ID=65866574
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811363009.3A Active CN109558451B (en) | 2018-11-14 | 2018-11-14 | Data management method and system and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109558451B (en) |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101729550A (en) * | 2009-11-09 | 2010-06-09 | 西北大学 | Digital content safeguard system based on transparent encryption and decryption method thereof |
| CN102821096A (en) * | 2012-07-17 | 2012-12-12 | 华中科技大学 | Distributed storage system and file sharing method thereof |
| CN103916404A (en) * | 2014-04-23 | 2014-07-09 | 北京淦蓝润和信息技术有限公司 | Data management method and system |
| CN105320775A (en) * | 2015-11-11 | 2016-02-10 | 中科曙光信息技术无锡有限公司 | Data access method and apparatus |
| EP2993864A4 (en) * | 2013-06-08 | 2016-05-04 | Beijing Gupanchuangshi Science And Technology Dev Co Ltd | Public and private hybrid distributed cloud storage system and cloud storage method |
| CN106453390A (en) * | 2016-11-11 | 2017-02-22 | 北京邮电大学 | Cloud storage system |
| CN106462544A (en) * | 2014-03-31 | 2017-02-22 | 亚马逊科技公司 | Session management in distributed storage systems |
| CN108596496A (en) * | 2018-04-25 | 2018-09-28 | 哈尔滨电气股份有限公司 | A kind of modularization mixing cloud service system for generating equipment data analysis |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP3613929B2 (en) * | 1997-05-07 | 2005-01-26 | 富士ゼロックス株式会社 | Access credential authentication apparatus and method |
| US7379990B2 (en) * | 2002-08-12 | 2008-05-27 | Tsao Sheng Ted Tai | Distributed virtual SAN |
| CN105656837A (en) * | 2014-11-11 | 2016-06-08 | 江苏威盾网络科技有限公司 | Secure and controllable data protection system and method |
| EP3440823B1 (en) * | 2016-04-05 | 2020-09-02 | Zamna Technologies Limited | Method and system for managing personal information within independent computer systems and digital networks |
-
2018
- 2018-11-14 CN CN201811363009.3A patent/CN109558451B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101729550A (en) * | 2009-11-09 | 2010-06-09 | 西北大学 | Digital content safeguard system based on transparent encryption and decryption method thereof |
| CN102821096A (en) * | 2012-07-17 | 2012-12-12 | 华中科技大学 | Distributed storage system and file sharing method thereof |
| EP2993864A4 (en) * | 2013-06-08 | 2016-05-04 | Beijing Gupanchuangshi Science And Technology Dev Co Ltd | Public and private hybrid distributed cloud storage system and cloud storage method |
| CN106462544A (en) * | 2014-03-31 | 2017-02-22 | 亚马逊科技公司 | Session management in distributed storage systems |
| CN103916404A (en) * | 2014-04-23 | 2014-07-09 | 北京淦蓝润和信息技术有限公司 | Data management method and system |
| CN105320775A (en) * | 2015-11-11 | 2016-02-10 | 中科曙光信息技术无锡有限公司 | Data access method and apparatus |
| CN106453390A (en) * | 2016-11-11 | 2017-02-22 | 北京邮电大学 | Cloud storage system |
| CN108596496A (en) * | 2018-04-25 | 2018-09-28 | 哈尔滨电气股份有限公司 | A kind of modularization mixing cloud service system for generating equipment data analysis |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109558451A (en) | 2019-04-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108737418B (en) | Identity authentication method and system based on block chain | |
| CN104092542B (en) | A kind of account login method, Apparatus and system | |
| CN108462710B (en) | Authentication and authorization method, device, authentication server and machine-readable storage medium | |
| CN108734018B (en) | Authentication method, device, system and computer readable storage medium | |
| CN108965250B (en) | Digital certificate installation method and system | |
| US11030286B2 (en) | Authentication apparatus, method, system and program, and server apparatus | |
| CN113472716B (en) | System access method, gateway device, server, electronic device and storage medium | |
| CN108777691B (en) | Network security protection method and device | |
| CN113225324A (en) | Block chain anonymous account creation method, system, device and storage medium | |
| CN105871556A (en) | Information processing method and system, electronic equipment and server | |
| JP6122924B2 (en) | Providing device, terminal device, providing method, providing program, and authentication processing system | |
| CN109889410B (en) | Method, system, device, proxy equipment and storage medium for testing service function | |
| CN111966422A (en) | Localized plug-in service method and device, electronic equipment and storage medium | |
| CN107645474B (en) | Method and device for logging in open platform | |
| CN111431957B (en) | File processing method, device, equipment and system | |
| CN113297559B (en) | Single sign-on method and device, computer equipment and storage medium | |
| CN111698204A (en) | Bidirectional identity authentication method and device | |
| CN108574658B (en) | Application login method and device | |
| CN108228280A (en) | The configuration method and device of browser parameters, storage medium, electronic equipment | |
| CN112437071A (en) | Method, system, device and storage medium for device control | |
| CN109558451B (en) | Data management method and system and storage medium | |
| CN104917737B (en) | User account protection method and device | |
| US9143510B2 (en) | Secure identification of intranet network | |
| CN115499120A (en) | Data storage method and data storage platform based on cloud computing | |
| CN110048864B (en) | Method and apparatus for authenticating an administrator of a device-specific message group |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |