CN1588838A - Network central back-up system - Google Patents
Network central back-up system Download PDFInfo
- Publication number
- CN1588838A CN1588838A CN200410060739.8A CN200410060739A CN1588838A CN 1588838 A CN1588838 A CN 1588838A CN 200410060739 A CN200410060739 A CN 200410060739A CN 1588838 A CN1588838 A CN 1588838A
- Authority
- CN
- China
- Prior art keywords
- network
- client
- safety cabinet
- file
- storage
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
This invention discloses a network concentration backup system composed of a network file safe, a core operation system, a management customer end and a special or WEB way customer end, among which, the large volume storage medium with disk array of the safe is separated into multiple file storing spaces in different sizes, mutually independent and data-ciphered, no super manager is set here, the technical manager and administration manager are mutually restricted, the system and data storage medium are strongly ciphered.
Description
Technical fieldThe present invention relates to a kind of network centralized backup system, particularly relate to a kind of network centralized backup system that can the secure access data.
Background technologyUnder the promotion of computer network, the computer user is in order to realize sharing and storage of data, often with storage or the backup in server, because the super keeper of server has maximum System Privileges, therefore the safety of the data of depositing can't be guaranteed with maintaining secrecy, also may so pressing for a cover, the computer user can realize that the storage of data and backup can guarantee the safety of data and the solution of not divulged a secret again simultaneously because super keeper's misoperation causes loss of data.
Summary of the inventionThe objective of the invention is to provides the safe and reliable network centralized backup of cover system for the computer user.
For achieving the above object, technical solution of the present invention is:
A kind of network centralized backup system is provided, constitute by network file safety cabinet, kernel operating system, administrative client, special use or WEB mode client, the keeper manages and safeguards the network file safety cabinet by administrative client, storage and recovery that the network user carries out data by the client or the WEB mode of special use, it is characterized in that: the storage medium of network file safety cabinet is the large-capacity storage media of band disk array, be divided into a plurality of file storage that differ in size, each space is separate carries out data encryption; Described kernel operating system adopts no super keeper's mechanism, shield super keeper, technology and administrative or other keepers are only arranged, technical management person only has the authority of user profile of checking and storage medium operating position, the client password is revised and the key operations such as deletion of client by just carrying out after the authentication simultaneously for technology and administration or other keepers, but still can not check client's data information; The mode of encrypting is adopted in internal system communication.
Above-mentioned network centralized backup system, its feature also is: system adopts the high strength encrypting controling mechanism, can adopt system from controling mechanisms such as customization, flight data recorders as the network file safety cabinet, the mode of storage medium employing high strength encrypting etc.
Above-mentioned network centralized backup system, its feature also is: the storage of described network file safety cabinet adopts the AES cryptographic algorithm to encrypt, the network file safety cabinet adopts JFS, can't start after the power down can not appear in this system, need carry out faults such as file system maintenance, adopt file system to start simultaneously and repair the file chain of losing voluntarily, to guarantee the robustness of file system.
After adopting such scheme, because having network, the present invention concentrates the safe storage function, by management software the network file safety cabinet is managed, disposes, monitors, the terminal use can be by the storing on the network file safety cabinet important data timing or not timing of the client on its computer.The present invention will be divided into a plurality of file storage that differ in size with the large-capacity storage media of disk array, each space is separate carries out data encryption simultaneously, this control method makes kernel operating system of the present invention not have super keeper, adopt the mutual check-and-balance system of many keepers, technical management person only has the authority of user profile of checking and storage medium operating position, system and data storage medium all adopt controling mechanisms such as high strength encrypting, have guaranteed the inherently safe and the storage personal secrets of network file safety cabinet.Thereby whole system is safe aspects such as communication, storage, management, for the distributed client data provide a safety, concentrated storage management technique scheme.
The present invention is further illustrated below in conjunction with accompanying drawing and instantiation.
Description of drawingsFig. 1 forms structure chart for network centralized backup of the present invention system.
Fig. 2 is a security mechanism schematic diagram of the present invention.
EmbodimentAs shown in Figure 1, network centralized backup of the present invention system comprises: the client of network file safety cabinet, kernel operating system, administrative client, special use or WEB mode.The network file safety cabinet adopts the mode of encrypting to be connected with the client of administrative client, special use or WEB mode.The client can be client, file server, also can be a working group.
As shown in Figure 2, whole network file safety cabinet is made up of client and two parts of service end, and the security mechanism of client is controlled by client access and realized security control,
Service end is a hardware device, views other staff's data in order to prevent super keeper, adopts flight data recorder (industrial control equipment of band storage array), does not have the configuration of general machine such as display and keyboard, is made up of software and hardware.
Hardware components mainly adopts hardware safety measures such as monitoring temperature, disk array, mainboard monitoring, power supply redundancy to realize security protection.The large-capacity storage media of the band disk array of network file safety cabinet is divided into a plurality of file storage that differ in size, and each space is separate carries out data encryption simultaneously.
Software section is that framework is on the basis of a security kernel (being also referred to as kernel operating system), cooperate service software to realize the safety of storing, these service softwares have mainly adopted access control (guaranteeing that the client must just can enter memory space through authentication), many keepers check-and-balance system, storage control (guaranteeing the storage area of each user job at oneself), cooperate disk encryption to realize that the data that are kept on the hard disk are safe simultaneously.
The fail safe of encrypting the process that guarantees transfer of data is adopted in the direct communication of service end and client.
Storage and recovery that the network user carries out data by the client or the WEB mode of special use, its communication encryption adopt international SSL3.0 128 bit encryption algorithms to communicate, and the The data AES cryptographic algorithm of the storage of its network file safety cabinet is encrypted.
The network file safety cabinet adopts the Linux JFS, and can't start after the power down can not appear in this system, need carry out faults such as file system maintenance.Adopt file system to start in addition and repaired the file chain of losing voluntarily, guaranteed the robustness of file system.
Claims (7)
1, a kind of network centralized backup system, constitute by network file safety cabinet, kernel operating system, administrative client, special use or WEB mode client, the keeper manages and safeguards the network file safety cabinet by administrative client, storage and recovery that the network user carries out data by the client or the WEB mode of special use is characterized in that:
(a) storage medium of described network file safety cabinet is divided into a plurality of file storage that differ in size for the large-capacity storage media of band disk array, and each space is separate carries out data encryption;
(b) described kernel operating system adopts no super keeper's mechanism, shield super keeper, technology and administrative or other keepers are only arranged, technical management person only has the authority of user profile of checking and storage medium operating position, the client password is revised and the key operations such as deletion of client by just carrying out after the authentication simultaneously for technical management person and Administrative Manager or other keepers, but still can not check client's data information;
(C) mode of encrypting is adopted in internal system communication;
2, network centralized backup according to claim 1 system is characterized in that: system adopts the high strength encrypting controling mechanism;
3, network centralized backup according to claim 2 system is characterized in that: described network file safety cabinet adopts system from controling mechanisms such as customization, flight data recorders;
4, network centralized backup according to claim 1 system is characterized in that: the storage medium of described network file safety cabinet adopts the mode of high strength encrypting;
5, network centralized backup according to claim 1 system is characterized in that: the storage of described network file safety cabinet adopts the AES cryptographic algorithm to encrypt;
6, network centralized backup according to claim 1 system is characterized in that: described network file safety cabinet adopts JFS, and can't start after the power down can not appear in this system, need carry out faults such as file system maintenance;
7, network centralized backup according to claim 1 system is characterized in that: described network file safety cabinet adopts file system to start and repairs the file chain of losing voluntarily, to guarantee the robustness of file system.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200410060739.8A CN1588838A (en) | 2004-08-17 | 2004-08-17 | Network central back-up system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200410060739.8A CN1588838A (en) | 2004-08-17 | 2004-08-17 | Network central back-up system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1588838A true CN1588838A (en) | 2005-03-02 |
Family
ID=34603558
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200410060739.8A Pending CN1588838A (en) | 2004-08-17 | 2004-08-17 | Network central back-up system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1588838A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101599835B (en) * | 2009-07-14 | 2011-12-28 | 北京坚石诚信科技有限公司 | Signature equipment and method for executing operating instructions thereof |
| CN102768716A (en) * | 2011-05-04 | 2012-11-07 | 杨建纲 | Memory card and reading, data encryption, key generation and password changing method thereof |
-
2004
- 2004-08-17 CN CN200410060739.8A patent/CN1588838A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101599835B (en) * | 2009-07-14 | 2011-12-28 | 北京坚石诚信科技有限公司 | Signature equipment and method for executing operating instructions thereof |
| CN102768716A (en) * | 2011-05-04 | 2012-11-07 | 杨建纲 | Memory card and reading, data encryption, key generation and password changing method thereof |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106330868B (en) | A kind of high speed network encryption storage key management system and method | |
| CN103530570B (en) | A kind of electronic document safety management system and method | |
| CN102761521B (en) | Cloud security storage and sharing service platform | |
| TWI388183B (en) | System and method for dis-identifying sensitive information and associated records | |
| CN101808095B (en) | Encryption copy organization method under distributed storage environment | |
| CN100592313C (en) | Electric document anti-disclosure system and its implementing method | |
| CN101098224B (en) | Method for encrypting/deciphering dynamically data file | |
| CN105426775B (en) | A kind of method and system for protecting smart mobile phone information security | |
| CN103679050A (en) | Security management method for enterprise-level electronic documents | |
| CN102422590A (en) | Protection of encryption keys in a database | |
| CN101017525A (en) | Divulging secrets prevention system of USB storage device date based on certificate and transparent encryption technology | |
| CN101237353B (en) | A method and system for monitoring mobile storage device based on USBKEY | |
| CN101082883A (en) | Storage apparatus having multiple layer encrypting protection | |
| CN105027498A (en) | A method, system and device for securely storing data files at a remote location by splitting and reassembling said files | |
| CN103413088A (en) | Computer document operational safety audit system | |
| CN103198263A (en) | Method for establishing encrypted/decrypted storage space by virtue of personnel computer external secrete key | |
| CN109936580A (en) | Password management services platform towards intelligent terminal and application system | |
| CN112134899A (en) | Factory terminal control double identity authentication method based on vision and network security | |
| CN1588838A (en) | Network central back-up system | |
| CN115913560B (en) | System for authorizing and using secret piece | |
| CN100550735C (en) | The method of multifunction intelligent key equipment and security control thereof | |
| CN109756333A (en) | key management system | |
| CN114003919A (en) | Computing device, security management method thereof and system supporting private computing | |
| CN116432193A (en) | Financial database data protection transformation method and financial data protection system thereof | |
| CN101826964A (en) | Outgoing document security management system supporting collaboration |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C57 | Notification of unclear or unknown address | ||
| DD01 | Delivery of document by public notice |
Addressee: Zhang Zhiliang Document name: Notice of publication of application for patent for invention |
|
| C57 | Notification of unclear or unknown address | ||
| DD01 | Delivery of document by public notice |
Addressee: Zhang Zhiliang Document name: Notification before expiration of term |
|
| C57 | Notification of unclear or unknown address | ||
| DD01 | Delivery of document by public notice |
Addressee: Zhang Zhiliang Document name: Deemed as a notice of withdrawal |
|
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |