WO2014101186A1 - Data erasure method, device and system - Google Patents

Data erasure method, device and system Download PDF

Info

Publication number
WO2014101186A1
WO2014101186A1 PCT/CN2012/088049 CN2012088049W WO2014101186A1 WO 2014101186 A1 WO2014101186 A1 WO 2014101186A1 CN 2012088049 W CN2012088049 W CN 2012088049W WO 2014101186 A1 WO2014101186 A1 WO 2014101186A1
Authority
WO
WIPO (PCT)
Prior art keywords
data
user
information
storage device
network storage
Prior art date
Application number
PCT/CN2012/088049
Other languages
French (fr)
Chinese (zh)
Inventor
程华
张迅蕾
常薇
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to CN201280003366.3A priority Critical patent/CN103443757B/en
Priority to PCT/CN2012/088049 priority patent/WO2014101186A1/en
Publication of WO2014101186A1 publication Critical patent/WO2014101186A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0646Horizontal data movement in storage systems, i.e. moving data in between storage devices or systems
    • G06F3/0652Erasing, e.g. deleting, data cleaning, moving of data to a wastebasket
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0602Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
    • G06F3/062Securing storage systems
    • G06F3/0623Securing storage systems in relation to content
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/067Distributed or networked storage systems, e.g. storage area networks [SAN], network attached storage [NAS]

Definitions

  • the present invention relates to the field of communications, and in particular, to a data erasing method, apparatus, and system. Background technique
  • the deletion method is generally: When the user no longer needs to reserve a certain data object, the operation of deleting the data object can be initiated to the network storage system through the application program interface, and the network storage system only returns the result of the deletion operation succeeding or failing, but does not return about Delete additional information about the operation.
  • the network storage system after the network storage system receives the user-initiated deletion data object request, the network storage system does not immediately delete the content of the data object, the data of the restored data object content, and the description data of the data object content, but The data object plus the delete flag, the content of the data object is still the original content, and has not been deleted or overwritten.
  • the network storage system returns information that the data object does not exist.
  • the present invention provides a data erasing method, apparatus and system that solves the problem that the user cannot ensure that the network storage device actually deletes the data object or its related information.
  • the present invention provides a data erasing method, the method comprising: a network storage device receiving an erasure request, the erasure request carrying identification information of data; determining identification information of the data First data; erasing the first data.
  • the manner of erasing the first data includes one or more of the following methods: destroying content of the first data; deleting content of the first data; The content of the first data.
  • the present invention provides a data erasing method, the method comprising: receiving an erasure request sent by the user, the erasure request carrying identification information of data; and sending write data to a network storage device The request, the write data request carries the identification information of the data, so that the network storage device determines the first data related to the identification information of the data, and rewrites the first data.
  • the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes the following information.
  • the present invention provides a network storage device, where the device includes: a first receiving unit, configured to receive an erasure request, the erasure request carries identification information of data, and the data is Transmitting the identification information to the first determining unit, the first determining unit, configured to receive the identification information of the data from the first receiving unit, determine the first data related to the identification information of the data, and transmit the first data And the erasing unit is configured to receive the first data from the first determining unit, and erase the first data.
  • the erasing unit is used for one or more of the following ways: destroying content of the first data; deleting content of the first data; overlaying the first data content.
  • the present invention provides a user terminal, where the terminal includes: a first sending unit, configured to send an erasure request to a network storage device, where the erasure request carries identification information of data
  • the identifier information of the data includes the indication information of the data object stored by the user, or the identifier information of the data of the user includes an identifier of the related information of the data object stored by the user, where the network storage device determines the The identification information of the data is related to the first data, and the first data is erased.
  • the erasure request further carries an erasure request identifier, where the erasure request identifier is used to notify the network storage device user that the related data is to be erased.
  • the present invention provides a user agent, where the agent further includes: a receiving unit, configured to receive an erasure request sent by a user, where the erasure request carries identification information of data, and Transmitting the erasure request to the sending unit, where the identifier information of the data includes indication information of a data object stored by the user, or the identifier information of the data of the user includes an identifier of related information of the data object stored by the user; a sending unit, configured to receive the erasure request from the receiving unit, and send the erasure request to a network storage device, where the erasure request carries identification information of data, where the network storage device determines the The identification information of the data is related to the first data, and the first data is erased.
  • a receiving unit configured to receive an erasure request sent by a user, where the erasure request carries identification information of data, and Transmitting the erasure request to the sending unit, where the identifier information of the data includes indication information of a data object stored by the user
  • the receiving unit is configured to receive a request for querying user data related information, where the request for querying user data related information carries identification information of data; and the sending unit is configured to use the network
  • the storage device sends a request for querying the user data related information; and the receiving unit is further configured to receive the query response message that is sent by the network storage device and that carries the second data; the sending unit is configured to send the carrying device to the user The query response message of the second data.
  • the present invention provides a user agent, wherein the agent includes: a receiving unit, configured to receive an erasure request sent by the user, where the erasure request carries identification information of data; a sending unit, configured to send a write data request to the network storage device, where the write data request carries the data
  • the identification information is such that the network storage device determines the first data related to the identification information of the data, and rewrites the first data.
  • the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes the following information.
  • the present invention provides a data erasing system, characterized in that the system comprises the network storage device provided in the third aspect and the user terminal provided in the fourth aspect; or provided in the third aspect a network storage device, a user terminal provided in the fourth aspect, and a user agent provided in the fifth aspect; or the network storage device provided in the third aspect and the user agent provided in the sixth aspect.
  • the present invention provides a network storage device, characterized in that the device comprises: a network interface; a processor; a memory; an application physically stored in the memory, the application comprising And causing the processor and the apparatus to execute an instruction of: receiving an erase request, the erase request carrying identification information of data; determining first data related to identification information of the data; erasing the first One data.
  • the manner of erasing the first data includes one or more of the following methods: destroying content of the first data; deleting content of the first data; The content of the first data.
  • the present invention provides a user agent, characterized in that: the agent comprises: a network interface; a processor; a memory; an application physically stored in the memory, the application comprising The processor and the agent execute instructions of: receiving the An erasure request sent by the user, the erasure request carrying the identification information of the data; sending a write data request to the network storage device, where the write data request carries the identification information of the data, so that the network storage device determines Decoding the first data with the first data related to the identification information of the data.
  • the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes the following information.
  • the data erasing method, apparatus and system disclosed by the present invention receive an erasure request sent by a user terminal or a user agent, and the erasure request carries identification information of the data; and the identifier of the data is determined according to the identification information of the data.
  • the data object or related information is virtually deleted, further enhancing the security of the data object of the user in the network storage device.
  • FIG. 1 is a flowchart of a data erasing method according to Embodiment 1 of the present invention.
  • FIG. 2 is an information interaction diagram of a data erasing method according to Embodiment 2 of the present invention.
  • FIG. 3 is an information interaction diagram of a data erasing method according to Embodiment 3 of the present invention.
  • Embodiment 4 is an information interaction diagram of a data erasing method according to Embodiment 4 of the present invention.
  • FIG. 5 is an information interaction diagram of a data erasing method according to Embodiment 5 of the present invention.
  • FIG. 6 is an information interaction diagram of a query method according to Embodiment 6 of the present invention.
  • FIG. 7 is an information interaction diagram of a data erasing method according to Embodiment 7 of the present invention.
  • Embodiment 8 is an information interaction diagram of a data erasing method according to Embodiment 8 of the present invention.
  • FIG. 9 is an information interaction diagram of a data erasing method according to Embodiment 9 of the present invention
  • 10 is an information interaction diagram of a data erasing method according to Embodiment 10 of the present invention
  • FIG. 11 is an information interaction diagram of a data erasing method according to Embodiment 11 of the present invention
  • FIG. 12 is a schematic diagram of a network storage device according to Embodiment 12 of the present invention.
  • FIG. 13 is a schematic diagram of a user terminal according to Embodiment 13 of the present invention.
  • FIG. 14 is a schematic diagram of a user agent according to Embodiment 14 of the present invention.
  • Embodiment 15 is a schematic diagram of a user agent according to Embodiment 15 of the present invention.
  • FIG. 16 is a schematic diagram of a network storage device according to Embodiment 16 of the present invention.
  • FIG. 17 is a schematic diagram of a user agent according to Embodiment 17 of the present invention. detailed description
  • the network storage device receives the erasure request sent by the user terminal or the user agent, the erasure request carries the identification information of the data; and determines the data according to the identification information of the data.
  • the first data related to the identification information erasing the first data, realizing the information related to the data object or the data object in the network storage device initiated by the user or initiated by the proxy, so that the user can learn the network storage device Whether the data object and related information are actually deleted, further enhances the security of the data object of the user in the network storage device.
  • Network storage which is a data storage service provided over a network.
  • users access and process stored data objects through the application interface, rather than being accessed and processed through a common operating system.
  • These data objects are identified as URIs (Universal Resource Identifiers) as Internet resources.
  • URIs Universal Resource Identifiers
  • Cloud storage is a form of network storage. In addition to networking, it also has the characteristics of cloud technology such as virtualization and on-demand provisioning.
  • An application interface which can be an AP I, a command line, and a user-friendly graphical interface.
  • the user which may be a user device or an application, stores the data object in the storage system through the application interface, or accesses through the application interface, or processes the data object in the network storage device.
  • Network storage device a system used to provide network storage services.
  • a data object which is data stored in a network storage device.
  • the data objects can be: document, picture, video, audio, application generated data, compressed file, backup data, archived data, etc.
  • Data object related information includes the following information:
  • Data objects such as: 1-1) a copy of the data object; or 1-2) a snapshot/mirror of the data object; or 1-3) a historical version of the data object;
  • the privacy information of the data object such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
  • the data object content is erased, and the content of the data object is erased as follows:
  • the method for erasing the content of the data object solves the problem that the data object itself in the prior art is still present after being erased, and the Uniform Resource Ident If ier (URI) still exists, and can still be operated through the application program interface. problem.
  • URI Uniform Resource Ident If ier
  • the data object related information is erased, and the related information of the data object is erased as follows:
  • FIG. 1 is a flowchart of a data erasing method according to Embodiment 1 of the present invention. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
  • Step 101 The network storage device receives an erasure request, where the erasure request carries identification information of the data.
  • the network storage device may receive an erasure request sent by the user, may also receive an erasure request sent by the user agent, or may be an erasure request sent by the regulatory authority.
  • the identification information of the data may include the indication information of the data object stored by the user; the identification information of the data of the user may be included, and the identification information of the data of the user includes the identifier of the related information of the data object stored by the user; An indication of the indication information of the data object and the related information of the data object stored by the user.
  • the erase request can also carry an erase request identifier that is used to notify the network storage device user that it wishes to erase the relevant data.
  • network storage is a data storage service provided through a network.
  • users access and process stored data objects through the application interface, rather than being accessed and processed through a common operating system.
  • These data objects are identified as Internet resources by universal resource identification URIs.
  • cloud storage is a form of network storage.
  • it also has virtualization, providing on-demand features such as cloud technology.
  • the application interface can be an Application Programming Interface (API), a command line, and a graphical user interface that is user-friendly.
  • API Application Programming Interface
  • the user can store the data object in the network storage device through the application program interface, or access the data object saved in the network storage device through the application program interface or process the data object.
  • the user can be a terminal device or an application.
  • Step 102 The network storage device determines first data related to the identification information of the data.
  • the determined first data is data related to the identification information of the data object; when the identification information of the data is the identification information of the data object related information, the determined The data is data related to the identification information of the data object related information; when the identification information of the data is the identification information of the data object and the identification information of the data object related information, the determined first data is the identification information and data of the data object. Data related to the identification information of the object related information.
  • the erasure mode corresponding to the identification information of the data can also be determined. .
  • Step 103 The network storage device erases the first data related to the identification information of the data.
  • the method for erasing the first data includes one or more of the following methods: the network storage device destroys the content of the first data; or the network storage device deletes the content of the first data; or the network storage device covers the first data. Content.
  • the process of storing the content of the first data in the network storage may be to write all the bits of the content of the first data to a specific value, for example, 0 or 1; the content of the first data may also be written as random data; The content of the first data is written as user-specified data.
  • FIG. 2 is an information interaction diagram of a data erasing method according to Embodiment 2 of the present invention.
  • the data erasing method provided by this embodiment enables the user to request to erase the data object, and the network storage device erases the data object according to the user request.
  • the erasure request is specifically an erasure data object request
  • the first data is specifically a data object.
  • the embodiment of the present invention specifically includes the following steps: Step 201:
  • the network storage device receives the number of erasures of the identifier information carried by the user and carries the data.
  • the identification information of the data includes indication information of the data object stored by the user.
  • the indication information of the data object stored by the user includes one or more of the following information: an identifier of the data object, an identifier of the folder, and an identifier of the user account. .
  • the indication information of the data object stored by the user includes one or more of the following information: 1) an identifier of the data object; wherein the data object may be a document, a picture, a video, an audio, an application generated data, a compressed file , backup data, archive data, etc., the identifier of the data object can be a URL that uniquely specifies the data object; or
  • the erasure request sent by the user may also carry an erasure request identifier for informing the network storage device user that the data object related to the indication information of the data object stored by the user is to be erased.
  • the erasure request identifier may be: 4-1) a message name, for example: using an Era se message name to represent an erasure request identifier; 4-2) a field in the message, for example: adding an indication to an existing message header Erase the header field, or add a parameter to the existing message command line; 4-3) A parameter in the message, for example: Add an indicator to the existing message body to indicate the erase parameter.
  • the user who sends the erasure request and the user in the indication information of the data object stored by the user may be the same or different. When the same, it indicates that the user who sent the request is to delete the data object stored in the network storage device; when not, the user who sent the erase request wants to delete the data object stored by the other user in the network storage device.
  • Step 202 The network storage device determines, according to the indication information of the data object stored by the user, the data object that is stored in the network storage device by the user, that is, the first data.
  • the indication information of the data object stored by the user is the identifier of the data object
  • the data object stored by the user in the network storage device that is, the first data is a data object corresponding to the identifier of the data object.
  • the data object stored by the user in the network storage device that is, the first data is the data in the folder corresponding to the folder identifier.
  • the indication information of the data object stored by the user is the identifier of the user account
  • the data object stored by the user in the network storage device, that is, the first data is the data object in the user account corresponding to the user account identifier.
  • Step 203 The network storage device erases the data object stored by the user in the network storage device.
  • the manner of erasing the data object can be:
  • Step 204 The network storage device sends an erase data object response to the user.
  • the erase data object response includes one or more of the following information:
  • the network storage device may further send an erasure progress notification of the data object to the user, and the erasure progress notification of the data object includes one of the following information. Or a variety of: 1) actions that have been completed, such as: Erase data object operations have been completed; 2) ongoing actions, such as: erasing data objects; 3) erasing data object operation completion percentage; 4) finishing rubbing In addition to the time required for data object operations.
  • the network storage device may record one or more of the following information in the log: 1) receiving a data object erasure request; or 2) erasing the data object; or 3) wiping The time of the data object; or 4) the result of erasing the data object.
  • FIG. 3 is an information interaction diagram of a data erasing method according to Embodiment 3 of the present invention.
  • the data erasing method provided by this embodiment realizes that the user requests to erase the data object related information, and the network storage device erases the data object related information according to the user request.
  • the erasure request is specifically a request for erasing related information of the data object
  • the first data is specifically related information of the data object.
  • the embodiment of the present invention specifically includes the following steps:
  • Step 301 The user sends a request for erasing related information of the data object by using the identifier information of the data object of the user to the network storage device, where the identifier information of the data object of the user includes the identifier of the related information of the data object stored by the user.
  • the information related to the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror, or version information of the data object used to restore the user stored in the network storage device; Information of the content of the data object in the network storage device; or privacy information of the data object stored by the user in the network storage device.
  • the identifier of the related information of the user who sends the erasure request and the data object stored by the user may be the same or different. When the same, it indicates that the user who sent the request is to delete the data object stored in the network storage device; when not, the user who sent the erase request wants to delete the data object stored by the other user on the network storage device.
  • Step 302 The network storage device determines, according to the identifier of the related information of the data object stored by the user, related information of the data object stored by the user.
  • the network storage device searches for related information of the data object related to the identifier according to the identifier of the related information of the data object stored by the user carried by the erasure request, and determines the related information of the data object as the data object stored by the user.
  • the related information of the data object stored by the user may be:
  • Information that can be used to recover data objects such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object; 2) information describing the content of the data object, such as a description tag of the content of the data object; or
  • the privacy information of the data object such as: 3-1) the privacy information of the user to whom the data object belongs; or 3-2) the privacy information of the user involved in the data object.
  • the identifier of the related information of the data object stored by the user may be
  • Step 303 The network storage device erases related information of the stored data object of the user.
  • the network storage device performs an erase operation on the related information of the found data object, that is, the first data.
  • the method for erasing information related to the data object may be one or more of the following methods:
  • Step 304 The network storage device sends a related information response of the erased data object to the user.
  • the related information response of the erased data object includes one or more of the following information: 1) the number of pieces of related information of the erased data object, for example: the number of metadata of the erased data object, the number of copies/mirrors of the erased data object;
  • the creation time of the related information of the erased data object for example: the erased data object history version time creation time;
  • identification of the relevant information of the erased data object for example: the erased data object copy identifier, the erased data object image identifier, the erased data object history version identifier;
  • the network storage device may further send an erasure data object related information progress notification to the user, and the erasure data object related information progress notification includes one or more of the following information: 1) Completed actions, such as: Erase data object related information operation has been completed; 2) ongoing actions, such as: erasing data object related information; 3) erasing data object related information operation completion percentage; 4) erasing completion The time required for data object related information operations.
  • the network storage device may record one or more of the following information in the log: 1) receiving a data object related information erasure request; 2) erasing the data object related information; 3 The time at which the data object related information is erased; 4) the result of erasing the data object related information.
  • FIG. 4 is an information interaction diagram of a data erasing method according to Embodiment 4 of the present invention.
  • the data erasing method provided by this embodiment enables the user to request to erase the data object, and the network storage device erases the related information of the data object and the data object according to the user request.
  • the erasure request is specifically an erasure data object request
  • the first data is specifically a data object, and related information of the data object.
  • the embodiment of the present invention specifically includes the following steps:
  • Step 401 The network storage device receives the erasure request of the identifier information carried by the user and carries the data.
  • the identification information of the data includes indication information of a data object stored by the user. For the specific form of the indication information of the data object stored by the user, refer to the description in step 201, which is not described here.
  • Step 402 The network storage device determines, according to the indication information of the data object stored by the user, the data object stored by the user in the network storage device.
  • the process of determining the data object stored by the user in the network storage device may be referred to in step 202, and details are not described herein.
  • Step 403 The network storage device network storage device erases the data object stored by the user in the network storage device.
  • Step 404 The network storage device determines related information of the data object stored by the user according to the indication information of the data object stored by the user in the network storage device.
  • the information related to the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror, or a version information of the data object used to restore the user stored in the network storage device; or, used to describe the user Information of the content of the data object stored in the network storage device; or privacy information of the data object stored by the user in the network storage device.
  • the method for determining, by the network storage device, the related information of the data object stored by the user according to the indication information of the data object stored by the user in the network storage device may be one or more of the following methods:
  • the network storage device determines the related information of the data object related to the data object identifier as the first data
  • the network storage device network determines the related information of the data object related to the folder identifier as the first data
  • the network storage device determines the related information of the data object related to the user account identifier as the first data
  • Step 405 The network storage device erases related information of the data object stored by the user.
  • the related information of the data object includes one or more of the following information:
  • Data objects such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object;
  • the privacy information of the data object such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
  • the method of erasing related information of the data object may be one or more of the following methods:
  • the first data determined in the above step 402 is a data object
  • the step 403 is to erase the data object
  • the first data determined in the step 404 is related information of the data object
  • the step 403 is to erase the related information of the data object.
  • step 402 and step 403 are performed, and steps 404 and 405 are performed without time limit, and may be performed in any order or simultaneously.
  • Step 406 The network storage device sends an erase data object response to the user.
  • the erase data object response may include one or more of the following information:
  • the erase data object response may also include one or more of the following information:
  • the number of data object related information being erased for example: the number of metadata of the erased data object, the number of copies/mirrors of the erased data object;
  • the creation time of the data object related information to be erased for example: the erased data object history version time creation time;
  • identification of the information related to the erased data object for example: the erased data object copy identification, the erased data object image identifier, the erased data object history version identifier;
  • the network storage device may further send an erasure data object progress notification to the user, the erasure data object progress notification including one or more of the following information: 1) Completed Actions, such as: data objects that have been erased, information about data objects that have been erased; 2) ongoing actions, such as: data objects being erased, data object related information being erased; 3) erasing The percentage of data object operation completion; 4) the percentage of operations completed to erase data object related information; 5) the time required to complete the operation of erasing data objects; 6) the time required to complete the operation of erasing data object related information.
  • Completed Actions such as: data objects that have been erased, information about data objects that have been erased
  • ongoing actions such as: data objects being erased, data object related information being erased
  • 4) the percentage of operations completed to erase data object related information 5) the time required to complete the operation of erasing data objects; 6) the time required to complete the operation of erasing
  • the network storage device may record one or more of the following information in the log: 1) receiving a data object erasure request; 2) erasing the data object; 3) erasing the data The action of the object related information; 4) the time of erasing the data object; 5) the time of erasing the data object related information; 6) the result of erasing the data object; 7) the result of erasing the data object related information.
  • FIG. 5 is an information interaction diagram of a data erasing method according to Embodiment 5 of the present invention.
  • the provided data erasing method implements the user requesting to erase the data object and the user-specified data object related information, and the network storage device erases the data object and the user-specified data object related information according to the user request.
  • the erasure request is specifically an erasure data object request
  • the first data is specifically a data object, and related information of the data object specified by the user.
  • the embodiment of the present invention specifically includes the following steps:
  • Step 501 The network storage device receives an erase data object request that is sent by the user and carries the identifier information of the data, where the identifier information of the data includes the indication information of the data object stored by the user and the identifier of the related information of the data object stored by the user.
  • the identifier of the related information of the data object stored by the user is specified by the user in advance.
  • the indication information of the data object stored by the user includes one or more of the following information:
  • the identifier of the data object wherein the data object may be a document, a picture, a video, an audio, an application generated data, a compressed file, a backup data, an archive data, etc., and the identifier of the data object may be a URL specifying the data object; or
  • An erase request identifier for instructing the network storage device user to desire to erase the data object.
  • the erasure request identifier may be: 4-1) a message name, for example: using an Era se message name to represent an erasure request identifier; 4-2) a field in the message, for example: adding an indication to an existing message header Erase the header field, or add a parameter to the existing message command line; 4-3) A parameter in the message, for example: Add an indicator to the existing message body to indicate the erase parameter.
  • Step 502 The network storage device determines, according to the indication information of the data object stored by the user, the data object stored by the user in the network storage device, and determines the data object stored by the user according to the identifier of the related information of the data object stored by the user. Related Information.
  • the indication information of the data object stored by the user is the identifier of the data object
  • the data object stored by the user in the network storage device that is, the first data is a data object corresponding to the identifier of the data object. If the indication information of the data object stored by the user is the identifier of the folder, the user saves The data object stored in the network storage device, that is, the first data is a data object in the folder corresponding to the folder identifier. If the indication information of the data object stored by the user is the identifier of the user account, the data object stored by the user in the network storage device, that is, the first data is the data object in the user account corresponding to the user account identifier.
  • the foregoing first data further includes related information of the data object stored by the user according to the identifier of the related information of the data object stored by the user, and the related information of the data object stored by the user is related to the data object specified by the user. information.
  • the related information of the data object stored by the user may be:
  • Data objects such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object;
  • the privacy information of the data object such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
  • the data object related information identifier to be erased may be:
  • Step 503 The network storage device erases the data object stored by the user in the network storage device.
  • Step 504 The network storage device erases related information of the data object of the user stored in the network storage device.
  • the related information of the stored data object of the user is related information of the data object specified by the user.
  • the specific method for the related information of the stored data object of the network storage device user may be one or more of the following methods:
  • steps 503 and 504 have no time limit, and can be executed in any order, or simultaneously.
  • Step 505 The network storage device sends an erase data object response to the user. The steps and steps
  • the network storage device may further send an erasure data object progress notification to the user, the erasure data object progress notification including one or more of the following information: 1) Completed Actions, such as: data objects that have been erased, information about data objects that have been erased; 2) ongoing actions, such as: data objects being erased, data object related information being erased; 3) erasing The percentage of data object operation completion; 4) the percentage of operations completed to erase data object related information; 5) the time required to complete the operation of erasing data objects; 6) the time required to complete the operation of erasing data object related information.
  • Completed Actions such as: data objects that have been erased, information about data objects that have been erased
  • ongoing actions such as: data objects being erased, data object related information being erased
  • 4) the percentage of operations completed to erase data object related information 5) the time required to complete the operation of erasing data objects; 6) the time required to complete the operation of erasing
  • the network storage device may record one or more of the following information in the log: 1) receiving a data object erasure request; 2) erasing the data object; 3) erasing the data The action of the object related information; 4) the time of erasing the data object; 5) the time of erasing the data object related information; 6) the result of erasing the data object; 7) the result of erasing the data object related information.
  • FIG. 6 is an information interaction diagram of a query method according to Embodiment 6 of the present invention.
  • the data erasing method provided by this embodiment enables the user to query data object related information.
  • the embodiment of the present invention specifically includes the following steps:
  • Step 601 The network storage device receives a request sent by the user to query related information of the user data.
  • the request for querying the user data related information carries the identification information of the data.
  • the identification information of the data may include the identification information of the data object, the identification information of the data object related information, and the identification information of the data object and the identification information of the data object related information.
  • Step 602 The network storage device determines, according to the identifier information of the data, second data related to the identifier information of the data, where the second data includes indication information of the data object stored by the user and/or identifier of related information of the data object stored by the user.
  • the indication information of the data object stored by the user includes one or more of the following information: an identifier of the data object, an identifier of the folder, and an identifier of the user account.
  • the related information of the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror or a version information of the data object used to restore the user stored in the network storage device; used to describe the user stored in the network storage Information about the content of the data object in the device; or user save Privacy information of data objects stored in a network storage device.
  • the related information of the data object stored by the user includes one or more of the following information:
  • Step 603 The network storage device sends a query response message carrying the second data to the user.
  • the query response message carries one or more pieces of information including a copy, including:
  • Step 604 The network storage device receives an erasure request that is sent by the user and carries the second data.
  • the second data includes indication information of the data object stored by the user and/or an identifier of the related information of the data object stored by the user.
  • the query method provided in the sixth embodiment can be applied before or after the data erasing method shown in the first embodiment to the fifth embodiment.
  • FIG. 7 is an information interaction diagram of a data erasing method according to Embodiment 7 of the present invention.
  • the data erasing method provided by this embodiment enables the user to request to erase the data object, and the network storage device erases the data object after the user confirms. Since the data object and the data object related information may not be recovered after the erase operation, the network storage device may send a confirmation request to the user after receiving the erase request sent by the user, and the user is required to confirm whether the data needs to be erased again.
  • Object and data object related information As shown in the figure, the embodiment of the present invention specifically includes the following steps:
  • Step 701 The network storage device receives an erasure request, where the erasure request carries identification information of the data.
  • the network storage device may receive an erase request sent by the user, may also receive an erase request sent by the user agent, and may also receive an erase request sent by the regulatory authority.
  • the identification information of the data may include the indication information of the data object stored by the user; the identification information of the data of the user may be included, and the identification information of the data object of the user includes the identifier of the related information of the data object stored by the user; Information about the data object and related information stored by the user Identification of interest.
  • the erasure request may also carry an erasure request identifier for notifying the network storage device user that the relevant data is desired to be erased.
  • the indication information of the data object stored by the user includes one or more of the following information:
  • the identifier of the data object wherein the data object may be a document, a picture, a video, an audio, an application generated data, a compressed file, a backup data, an archive data, etc., and the identifier of the data object may be a URL specifying the data object; or
  • the erasure request identifier may be: 4-1) a message name, for example: using an Era se message name to represent the erasure request identifier; 4-2) a field in the message, for example: adding one to the existing message header Indicates the header field of the erasure, or adds a parameter to the existing message command line; 4-3) A parameter in the message, for example: Add an indicator to the existing message body to indicate the erasure parameter.
  • Step 702 The network storage device determines first data related to the identification information of the data.
  • the determined first data is data related to the identification information of the data object; when the identification information of the data is the identification information of the data object related information, the determined The data is data related to the identification information of the data object related information; when the identification information of the data is the identification information of the data object and the identification information of the data object related information, the determined first data is the identification information and data of the data object. Data related to the identification information of the object related information.
  • the network storage device determines the related information of the data object stored by the user, that is, the first data, according to the identifier of the related information of the data object stored by the user.
  • the related information of the data object includes one or more of the following information:
  • Data objects such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object;
  • the privacy information of the data object such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
  • Step 703 The network storage device sends a confirmation request for erasing the first data to the user, where the confirmation request is used to remind the user to learn to erase the first data.
  • the acknowledgement request for erasing the first data further includes presence information of the first data, where the presence information is used to indicate a data object, a data content, or a data range included in the first data.
  • the confirmation request for erasing the first data may include related information of the data object, and may further include reminding information to remind the user that after the user learns to confirm the request to erase the data object, the content and data of the data object are erased.
  • the object related information please confirm whether to continue to erase the data object operation.
  • the related information of the data object includes one or more of the following information:
  • Data objects such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object;
  • the privacy information of the data object such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
  • Step 704 The network storage device receives a response message of the confirmation request sent by the user, and determines, according to the response message, whether to perform the operation of erasing the first data.
  • the response message of the confirmation request in this step corresponds to the confirmation request of step 703, and the response message of the confirmation request further includes the data object, the data content or the data range of the first data selected by the user according to the presentation information of the first data.
  • the response message of the confirmation request includes: continuing to erase the data object operation identifier; and the response message confirming the request may further include a data object related information identifier for specifying data object related information that the user wishes to erase.
  • Step 705 The network storage device erases the data object in the first data.
  • the method of erasing the data object can be:
  • Step 706 The network storage device erases data object related information in the first data.
  • the method for erasing related information of the data object may be:
  • Step 707 The network storage device sends an erase data object response to the user.
  • the information carried in the erasing data object response may include one or more of the following information:
  • the erased data object for example: 3-1) the number of metadata of the data object being erased; or 3-2) the number of copies/mirrors of the erased data object; or 3-3 a copy/mirror identifier of the erased data object; or 3-4) a historical version identifier of the erased data object; Or 3-5) the historical version time creation time of the erased data object; or 3-6) other information that the system believes can help the user to understand the erase work more clearly;
  • Step 708 The network storage device receives a request for the user to send a query data object.
  • the step is to confirm that the data object content is indeed erased, and the user can send a query data object request to the network storage device, the query data object request carrying the data object identifier.
  • Step 709 The network storage device sends a query data object response to the user.
  • the query data object response carries the following information about one or more data objects including the copy:
  • steps 705 and 706 have no time limit, and may be executed in any order or simultaneously.
  • the network storage device may further send an erasure data object progress notification to the user, the erasure data object progress notification including one or more of the following information: 1) Completed Actions, such as: data objects that have been erased, information about data objects that have been erased; 2) ongoing actions, such as: data objects being erased, data object related information being erased; 3) erasing The percentage of data object operation completion; 4) the percentage of operations completed to erase data object related information; 5) the time required to complete the operation of erasing data objects; 6) the time required to complete the operation of erasing data object related information.
  • Completed Actions such as: data objects that have been erased, information about data objects that have been erased
  • ongoing actions such as: data objects being erased, data object related information being erased
  • 4) the percentage of operations completed to erase data object related information 5) the time required to complete the operation of erasing data objects; 6) the time required to complete the operation of erasing
  • the network storage device may record one or more of the following information in the log: 1) receiving a data object erasure request; 2) erasing the data object; 3) erasing the data The action of the object related information; 4) the time of erasing the data object; 5) the time of erasing the data object related information; 6) the result of erasing the data object; 7) the result of erasing the data object related information.
  • FIG. 8 is an information interaction diagram of a data erasing method according to Embodiment 8 of the present invention.
  • This embodiment implements the user requesting the agent to erase the data object, and the agent sends an erase data object request to the network storage device after the user confirms, thereby causing the network storage device to erase the data object.
  • the embodiment of the present invention specifically includes the following steps:
  • Step 801 The user sends an erasure request carrying the identification information of the data to the proxy, where the identifier information of the data includes indication information of the data object stored by the user.
  • the indication information of the data object stored by the user in this step includes the same information as step 701, and details are not described herein again.
  • Step 802 The proxy sends a request for querying user data related information to the network storage device, where the request for querying the user data related information carries the identification information of the data.
  • Step 803 The network storage device determines, according to the identification information of the data, the first data related to the identification information of the data and the second data related to the identification information of the data.
  • the first data includes a label of the data Information related to the data object, and/or related information of the data object:
  • the second data includes indication information of the data object stored by the user and/or an identifier of the related information of the data object stored by the user. .
  • the data object related information in this step includes the same information as the data object related information in step 602, and details are not described herein again.
  • Step 804 The network storage device sends a query response message carrying the second data to the proxy.
  • the query response message carries information about one or more data objects including the copy.
  • the data object related information in the step is the same as the step 603, and is not described here.
  • Step 805 The proxy sends an erasure confirmation request carrying the second data to the user.
  • the confirmation request includes data object related information, and may further include reminding information to remind the user that after the user learns to confirm the erase data object request, the data object content and the data object related information are erased, and the user is asked to confirm whether to continue. Erase data object operations.
  • the information about the data object in this step includes the same information as step 703, and details are not described herein.
  • Step 806 After the user determines that the network storage device is allowed to perform the erasure, the user sends an erasure confirmation response carrying the second data to the proxy.
  • the erase confirmation response includes: continuing to erase the data object operation identifier; the erase data object confirmation response may further include a data object related information identifier for specifying data object related information that the user desires to erase.
  • Step 807 The proxy sends an erasure request carrying the second data to the network storage device.
  • Step 808 The network storage device erases the data object related to the second data.
  • the method of erasing the data object in this step is the same as step 705, and will not be described here.
  • Step 809 The network storage device erases related information of the data object related to the second data.
  • Step 81 0 The network storage device sends an erase data object response to the proxy.
  • the information carried in the response of the erased data object in this step is the same as that in step 707, and will not be described again here.
  • Step 81 1 The proxy forwards the erased data object response to the user.
  • the information carried in the data object response in this step is the same as that in step 707, and will not be described here.
  • Step 812 The user sends a query data object request to the proxy. This step is to confirm the data pair If the content is indeed erased, the user can send a query data object request to the network storage device through the proxy, the query data object request carrying the data object identifier.
  • Step 81 3 The proxy forwards the query data object request to the network storage device.
  • Step 814 The network storage device sends a query data object response to the proxy.
  • the information carried in the query data object response in this step is the same as that in step 709, and will not be described here.
  • Step 815 The proxy forwards the response to the query data object to the user.
  • the information carried in the query data object response in this step is the same as that in step 709, and is not described here.
  • steps 808 and 809 have no time limit, and can be executed in any order or simultaneously.
  • the network storage device may further send an erasure data object progress notification to the proxy, and the proxy transparently transmits the erasure data object progress notification to the user.
  • the erase data object progress notification includes one or more of the following information:
  • Actions that have been completed such as: Erase data object operations have been completed, data objects that have been erased;
  • the network storage device can record one or more of the following information in the log:
  • FIG. 9 is a flowchart of an information interaction diagram of a data erasing method according to Embodiment 9 of the present invention. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
  • Steps 901 to 906 are the same as steps 801 to 806 and will not be described in detail herein.
  • Step 907 The proxy sends a write data request to the network storage device.
  • the write data request carries the identification information of the data, so that the network storage device determines the first data related to the identification information of the data, and rewrites the first data. Additionally, the write data request carries the third data to cause the network storage device to rewrite the first data to the third data.
  • the first data includes: information about the data objects stored by the user and/or the data objects stored by the user.
  • the information related to the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror, or version information of the data object used to restore the user stored in the network storage device; Information of content of a data object stored in the network storage device; or privacy information of a data object stored by the user in the network storage device.
  • the first data is rewritten into the third data. For example, all bytes of the first data are all rewritten to 0; all bytes of the first data are all rewritten to 1; all bytes of the first data are all rewritten into random data; all bytes of the first data are All rewritten to other invalid data.
  • the write data request may specifically be:
  • the write data object request may include one or more of the following information: 1) a data object identifier;
  • Data object content wherein the data object content can be: 1) all bytes are 0; 2) all bytes are 1; 3) random data; 4) other invalid data.
  • Step 908 The network storage device writes the data object content.
  • the network storage device writes the data object content as the data object content carried in the write data object request.
  • Step 909 The network storage device sends a write data object response to the proxy, and the write data object response carries With descriptive information including success or failure.
  • Step 910 The proxy sends a request for writing a data object related information to the network storage device.
  • the data object related information request may include one or more of the following information:
  • the data object related information may be:
  • the data content related to the data object can be:
  • Step 911 The network storage device writes related information content of the data object.
  • the network storage device writes the related information content of the data object into the data object related information content carried in the write data object related information request.
  • Step 912 The network storage device sends a write data object related information response to the proxy, and the write data object related information response carries the description information including success or failure.
  • Steps 913 to 917 are the same as steps 811 to 815 and will not be described in detail herein.
  • step 907, step 908, step 909 can be repeatedly executed multiple times
  • step 910, step 911, and step 912 can also be repeatedly executed multiple times.
  • the network storage device may also send an erase data object progress notification to the proxy, and the proxy transparently transmits the erase data object progress notification to the user.
  • the erase data object progress notification includes one or more of the following information:
  • Actions that have been completed such as: Erase data object operations have been completed, data objects that have been erased;
  • the network storage device can record one or more of the following information in the log:
  • the data object erasure method in any one of the data erasure methods of Embodiments 1 to 9 provided by the present invention may further carry a data object erasure time.
  • This embodiment enables the user to set the data object deletion time when requesting data object erasure.
  • the time of deleting the data object may be one or more of the following information:
  • Time interval indicating that the data object is deleted after too much time, for example: timer time.
  • the network storage device deletes the data object.
  • the network storage device can also set the default deletion time of the data object. In this case, the following rules can be processed:
  • the user sends a delete data object request to the network storage device before the time of deleting the data object expires, and the network storage device immediately deletes the data object.
  • the network storage device may delete the data object immediately after erasing the data object and/or erasing the data object related information.
  • the network storage device records one or more of the following information in the log:
  • the method includes: Step a: The user agent receives an erasure request sent by the user, and the erasure request carries identification information of the data.
  • the identification information of the data may include the indication information of the data object stored by the user; the identification information of the data of the user may be included, and the identification information of the data of the user includes the identifier of the related information of the data object stored by the user; An indication of the indication information of the data object and the related information of the data object stored by the user.
  • the erasure request may also carry an erase request identifier that is used to notify the network storage device user that it wishes to erase the relevant data. .
  • Step b the user agent sends a write data request to the network storage device, where the write data request carries the identification information of the data, so that the network storage device determines the first data related to the identification information of the data, and rewrites the First data.
  • the write data request carries the identification information of the data, so that the network storage device determines the first data related to the identification information of the data, and rewrites the first data. Additionally, the write data request also carries third data to cause the network storage device to rewrite the first data to the third data.
  • the first data includes: information about the data objects stored by the user and/or the data objects stored by the user.
  • the information related to the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror, or version information of the data object used to restore the user stored in the network storage device; Information of content of a data object stored in the network storage device; or privacy information of a data object stored by the user in the network storage device.
  • the first data is rewritten into the third data. For example, all bytes of the first data are all rewritten to 0; all bytes of the first data are all rewritten to 1; all bytes of the first data are all rewritten into random data; all bytes of the first data are All rewritten to other invalid data.
  • FIG. 10 is an information interaction diagram of a data erasing method according to Embodiment 10 of the present invention.
  • the method is for the regulatory agency to require the network storage device to erase the data object, and the application background is that the national regulatory agency requires the network storage device to erase the data object for security, legal, and regulatory considerations, for example: the regulatory agency discovers that the user is in the network storage device.
  • the erasure request is specifically an erasure data object request
  • the first data is specifically a data object.
  • the embodiment of the present invention specifically includes the following steps:
  • Step 1001 The network storage device receives an erase data object request sent by a regulatory authority, where the erase data object request carries the indication information of the data object to be erased.
  • the information included in the indication information of the to-be-erased data object is the same as that in step 201, and details are not described herein again.
  • Step 1002 The network storage device erases the data object according to the indication information of the data object to be erased.
  • the data object and the method of erasing the data object are the same as those in step 202, and are not described herein again.
  • Step 1003 The network storage device sends an erase data object response to the regulatory authority.
  • the information included in the response of the erased data object is the same as that in step 203, and details are not described herein again.
  • the network storage device may further send an erasure progress notification of the data object to the regulatory authority, and the erasure progress notification of the data object includes the following information.
  • the supervisory authority may also carry the data object related information in the erasing data object request, and the step is the same as that in step 501, and details are not described herein again.
  • the network storage device After receiving the erasure data object request, the network storage device erases the data object related information specified by the data object related information identifier in the erasure data object request, and the step is the same as in step 503, and at the same time, in order to avoid For disputes or filings, the network storage device may record one or more of the following information in the log: 1) receiving a data object erase request; or 2) erasing the data object; or 3) erasing the data object Time; or 4) the result of erasing the data object.
  • FIG. 11 is a flowchart of a data erasing method according to Embodiment 11 of the present invention.
  • the network storage device can actively erase the data object.
  • the application background is that the network storage device checks the content of the data object when uploading the data object, updating the data object, or periodically scanning the data object content, if the content of the data object violates the law, endangers the national security, has a bad influence on the society, or has Other content that adversely affects security, law, health, public ethics, etc., the network storage device erases the data object, and can also erase the data object related information.
  • the embodiment of the present invention specifically includes the following steps:
  • Step 1101 The network storage system actively erases the data object under specific conditions.
  • the method of erasing the data object may be:
  • Step 1102 the network storage device erases data object related information.
  • the data object related information may be:
  • data object information such as: 1-1) data object copy; or 1-2) data object snapshot; or 1-3) data object image; or 1-4) data object history version identifier;
  • the privacy information of the data object such as: 3-1) the privacy information of the user to whom the data object belongs; or 3-2) the privacy information of the user involved in the data object.
  • the method of erasing data object related information may be one or more of the following methods:
  • the network storage device may record the following information in the records: 1) the reason for erasing the data object; or 2) the action of erasing the data object; or 3) the time of erasing the data object; Or 4) the result of erasing the data object.
  • the data erasing method receives the erasure request of the user terminal or the user agent or the regulatory agency, and the erasure request carries the identification information of the data; and determines the data according to the identification information of the data. Identifying the first data related to the information; erasing the first data, realizing the data object or data initiated by the user, or initiated by the proxy to erase the network storage device The related information of the object, so that the user can know whether the network storage device actually deletes the data object and the related information, thereby further enhancing the security of the data object of the user in the network storage device.
  • FIG. 12 is a schematic diagram of a network storage device according to Embodiment 12 of the present invention.
  • the apparatus is for performing the data erasing method provided by the first to eleventh embodiments of the present invention.
  • the network storage device provided by the embodiment of the present invention specifically includes: a first receiving unit 121, a first determining unit 122, and an erasing unit 123.
  • the first receiving unit 121 is configured to receive an erasure request, where the erasure request carries identification information of the data, and transmit the identification information of the data to the first determining unit 122; the first determining unit is configured to receive from the receiving The unit 121 receives the identification information of the data, determines the first data related to the identification information of the data, and transmits the first data to the erasing unit 123; the erasing unit 123 is configured to use the first determining unit
  • the first data is received 122 and the first data is erased.
  • the erasure request further carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device user that the related data is to be erased.
  • the erasing unit 123 performs erasing using one or more of the following methods: destroying the content of the first data; deleting the content of the first data; and overwriting the content of the first data.
  • the content of the first data is specifically written to write all the bits of the content of the first data into a specific value, such as 0 or 1, or random data or user-specified data.
  • the identification information of the data includes indication information of a data object stored by the user, where the indication information of the data object stored by the user includes one or more of the following information: an identifier of the data object, a file The identifier of the folder, the identifier of the user account.
  • the first determining unit 122 is configured to determine, according to the indication information of the data object stored by the user, a data object stored by the user in the network storage device; and the erasing unit 123 is configured to erase the user.
  • the first determining unit 122 is further configured to determine, according to the indication information of the data object stored in the network storage device, related information of a data object stored by the user, where the data object of the user stores Related information includes one or more of the following: a copy, snapshot, mirror, or version information of a data object stored by the complex user in the network storage device; or information describing a content of a data object stored by the user in the network storage device; or, the user is stored in The privacy information of the data object in the network storage device; and the erasing unit 123 is configured to erase related information of the data object stored by the user.
  • the first determining unit 122 is configured to determine, according to the identifier of the related information of the data object stored by the user, related information of the data object stored by the user;
  • the erasing unit 123 is configured to erase related information of the stored data object of the user.
  • the identification information of the data of the user includes an identifier of related information of the data object stored by the user
  • the related information of the data object stored by the user includes one or more of the following information: Recovering a copy, snapshot, mirror or version information of a data object stored by the user in the network storage device; information for describing content of a data object stored by the user in the network storage device; or storing the user in the network Privacy information of data objects in the storage device
  • the network storage device provided by the embodiment of the present invention further includes: a second receiving unit, a second determining unit, a first sending unit, and a third receiving unit.
  • the second receiving unit is configured to receive a request for querying the user data related information, where the request for querying the user data related information carries the identification information of the data, and transmits the identification information of the data to the second determining unit; And determining, by the second receiving unit, the identification information of the data, determining, according to the identification information of the data, second data related to the identification information of the data, where the second data includes a data object stored by the user.
  • the first sending unit is configured to receive the second data from the second determining unit, The user sends the query response information carrying the second data;
  • the third receiving unit is configured to receive the erasure request carrying the second data.
  • the network storage device provided by the embodiment of the present invention further includes: Unit and fourth receiving unit.
  • the second sending unit is configured to send, by the network storage device, a confirmation request for erasing the first data, where the confirmation request is used to remind the user to learn an operation of erasing the first data; And a response message for receiving the confirmation request; and determining, according to the response message, whether to perform the operation of erasing the first data.
  • the confirmation request further includes presence information of the first data, where the presentation information is used to indicate a data object, a data content, or a data range included in the first data; and correspondingly, the response message of the confirmation request A data object, a data content, or a data range of the first data selected by the user according to the presentation information of the first data is further included.
  • the erasure request received by the network storage device is from the user or the agent or regulatory authority of the user.
  • the network storage device provided by the embodiment of the present invention further includes: a second sending unit.
  • the second transmitting unit is configured to send data erasure response information, the erasure response information being used to notify the user that the first data has been erased.
  • the network storage device provided by the embodiment of the present invention further includes: a third sending unit.
  • the third transmitting unit is configured to transmit data erasure progress information for notifying the user that the first data is being erased or the percentage of the erasing operation is completed or the remaining time of the erasing operation.
  • the network storage device provided by the embodiment of the present invention further includes: a saving unit.
  • the saving unit is configured to save the data erasure request information and/or the data erasure response information.
  • the network storage device receives the erasure request sent by the user terminal or the user agent or the supervisory authority, and the erasure request carries the identification information of the data; and determines the identifier of the data according to the identification information of the data.
  • the first data related to the information; the first data is erased, and the information related to the data object or the data object in the network storage device initiated by the user or initiated by the proxy is implemented, so that the user can know whether the network storage device will data
  • the object and related information are virtually deleted, further enhancing the security of the data objects of the users in the network storage device.
  • FIG. 13 is a schematic diagram of a user terminal according to Embodiment 13 of the present invention.
  • the apparatus is for performing the data erasing method provided by Embodiments 1 to 11 of the present invention.
  • the user terminal provided by the embodiment of the present invention specifically includes: a first sending unit 1 31.
  • the first sending unit 1 31 is configured to send an erasure request to the network storage device, where the erasure request carries the identification information of the data, where the identifier information of the data includes indication information of the data object stored by the user, or the The identification information of the data of the user includes an identifier of the related information of the data object stored by the user, and the network storage device determines the first data related to the identification information of the data, and erases the first data.
  • the erasure request further carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device user that the related data is to be erased.
  • the user terminal provided by the embodiment of the present invention further includes: a second sending unit, a first receiving unit, and a third sending unit.
  • the second sending unit is configured to send a request for querying the user data related information to the network storage device, where the request for querying the user data related information carries the identification information of the data;
  • the first receiving unit is configured to receive the network storage device to send The query response message carrying the second data;
  • the third sending unit is configured to: when it is determined to perform the erasing, send an erasure request carrying the second data to the network storage device.
  • the user terminal provided by the embodiment of the present invention further includes: a second receiving unit and a fourth sending unit.
  • the second receiving unit is configured to receive an acknowledgement request sent by the network storage device to erase the first data, where the confirmation request is used to remind the user to learn to erase the first data;
  • the unit is configured to send a response message to the network storage device to the network storage device when it is determined to perform the erasure.
  • the user terminal provided by the embodiment of the present invention further includes: a third receiving unit.
  • the third receiving unit is configured to receive data erasure response information sent by the network storage device, where the erasure response information is used to notify the user that the first data has been erased; and is further configured to receive the network
  • the erasure progress information sent by the network storage device the erasure progress information is used to notify the user that the first data is being erased or the percentage of the erasing operation is completed or the remaining time of the erasing operation.
  • the user terminal provided by the embodiment of the present invention sends an erasure request through the network storage device, and the network storage device determines the first data related to the identification information of the data, and erases the first data, thereby implementing User-initiated or related information of a data object or a data object in a network storage device initiated by a user agent, so that the user can know whether the network storage device actually deletes the data object and related information, thereby further enhancing the network storage device.
  • the security of the user's data object is a Wi-Fi Protected Access (WPA)
  • the network storage device determines the first data related to the identification information of the data, and erases the first data, thereby implementing User-initiated or related information of a data object or a data object in a network storage device initiated by a user agent, so that the user can know whether the network storage device actually deletes the data object and related information, thereby further enhancing the network storage device.
  • FIG. 14 is a schematic diagram of a user agent according to Embodiment 14 of the present invention.
  • the agent is used to perform the data erasing method provided by Embodiments 1 through 11 of the present invention.
  • the user agent provided by the embodiment of the present invention specifically includes: a receiving unit 141 and a sending unit 142.
  • the receiving unit 141 is configured to receive an erasure request sent by the user, where the erasure request carries the identification information of the data, and transmit the erasure request to the sending unit, where the identifier information of the data includes the data stored by the user.
  • the indication information of the object, or the identification information of the data of the user includes an identifier of the related information of the data object stored by the user;
  • the sending unit 142 is configured to receive the erasure request from the receiving unit, and send the identifier to the network storage device.
  • the receiving unit 141 is configured to receive a request for querying user data related information, where the request for querying user data related information carries identification information of data; and the sending unit is configured to use the network storage device Sending a request for querying the user data related information; and the receiving unit 142 is further configured to receive the query response message that is sent by the network storage device and that carries the second data, where the sending unit is configured to send the carrying The second data query response message.
  • the user agent by receiving an erasure request sent by the user, and sending the erasure request to the network storage device, is initiated by the user, or is generated by the user.
  • the information about the data object or the data object in the network storage device is erased, so that the user can know whether the network storage device actually deletes the data object and the related information, thereby further enhancing the security of the data object of the user in the network storage device.
  • FIG. 15 is a schematic diagram of a user agent according to Embodiment 15 of the present invention.
  • the agent is used to perform the data erasing method provided by Embodiments 1 through 11 of the present invention.
  • the user agent provided by the embodiment of the present invention specifically includes: a receiving unit 151 and a sending unit 152.
  • the receiving unit 151 is configured to receive an erasure request sent by the user, where the erasure request carries identifier information of the data; the sending unit 152 is configured to send a write data request to the network storage device, where the write data request carries the data
  • the identification information is such that the network storage device determines the first data related to the identification information of the data, and rewrites the first data.
  • the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes one of the following information or Several: a copy, a snapshot, a mirror or version information for restoring a data object stored by the user in the network storage device; information for describing a content of a data object stored by the user in the network storage device; or a user Privacy information of data objects stored in the network storage device.
  • the write data request further carries third data to cause the network storage device to rewrite the first data into the third data.
  • the embodiment of the present invention further provides a data erasing system, which includes the network storage device provided in Embodiment 12 of the present invention and the user terminal provided in Embodiment 13 of the present invention; or the network provided in Embodiment 12 of the present invention.
  • FIG. 16 is a schematic diagram of a network storage device according to Embodiment 16 of the present invention.
  • the apparatus is for performing the data erasing method provided by Embodiments 1 to 11 of the present invention.
  • the network storage device provided by the embodiment of the present invention specifically includes: a network interface 161, The processor 162 and the memory 163.
  • Device bus 164 is used to connect network interface 161, processor 162, and memory 163.
  • the network interface 161 is used to connect a user terminal or a user agent.
  • the memory 163 may be a persistent storage such as a hard disk drive and a flash memory having a software module and a device driver therein.
  • the software modules are capable of performing the various functional modules of the above described methods of the present invention; the device drivers can be network and interface drivers.
  • the manner of erasing the first data includes one or more of the following methods: destroying content of the first data; deleting content of the first data; and overwriting content of the first data.
  • the application may be used by the processor and the apparatus to execute an instruction that covers a content process of the first data, including: the first data All bits of the content are written as specific values or random data or user-specified data.
  • the erasure request further carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device user that the related data is to be erased.
  • the identification information of the data includes indication information of a data object stored by the user, where the indication information of the data object stored by the user includes one or more of the following information: an identifier of the data object, a file The identifier of the folder, the identifier of the user account.
  • the application is operable to cause the processor and the device to perform first data related to determining identification information of the data, erasing the first data process
  • the instructions include: determining, according to the indication information of the data object stored by the user, a data object stored by the user in the network storage device; erasing the data object stored by the user in the network storage device.
  • the application includes means for causing the processor and the device to perform the following process
  • the instruction determining, according to the indication information of the data object stored in the network storage device, related information of a data object stored by the user, where the related information of the data object stored by the user includes one of the following information: Or a plurality of: copying, snapshot, mirroring or version information of a data object stored by the user in the network storage device; or information for describing content of a data object stored by the user in the network storage device Or, the user stores the privacy information of the data object in the network storage device; and erases related information of the data object stored by the user.
  • the identification information of the data of the user includes an identifier of related information of the data object stored by the user
  • the related information of the data object stored by the user includes one or more of the following information: Recovering a copy, snapshot, mirror or version information of a data object stored by the user in the network storage device; information for describing content of a data object stored by the user in the network storage device; or storing the user in the network The private information of the data object in the storage device.
  • the application is operable to cause the processor and the device to perform first data related to determining identification information of the data, erasing the first data process
  • the instructions include: determining, according to the identifier of the related information of the data object stored by the user, related information of the data object stored by the user; and erasing related information of the stored data object of the user.
  • the application includes instructions operable to cause the processor and the apparatus to: the network storage device receive information related to querying user data The request, wherein the request for querying the user data related information carries the identification information of the data; determining, according to the identification information of the data, second data related to the identification information of the data, where the second data includes data stored by the user An indication of the indication information of the object and/or related information of the data object stored by the user; returning a query response message carrying the second data; receiving an erase request carrying the second data.
  • the instructions operable by the processor and the apparatus to perform the erasing of the first data process include: transmitting a confirmation request to erase the first data, wherein the confirmation request is for alerting the user Obtaining an operation of erasing the first data; receiving a response message of the confirmation request; and determining, according to the response message, whether to perform the operation of erasing the first data.
  • the confirmation request further includes the presence information of the first data, where the presentation information is used to indicate a data object, a data content, or a data range that is included in the first data.
  • the response message of the confirmation request further includes a data object, a data content, or a data range of the first data selected by the user according to the presentation information of the first data.
  • the erasure request received by the network storage device is from the user or the agent or regulatory authority of the user.
  • the application includes instructions operable to cause the processor and the apparatus to: transmit data erase response information, The erasure response information is used to notify the user that the first data has been erased.
  • the erasure progress information is used to notify the user that the first data is being erased or erased. The percentage completed or the remaining time of the erase operation.
  • the application includes instructions operable to cause the processor and the apparatus to: save the data erase request information and/or the data erase response information.
  • the network storage device receives the erasure request sent by the user terminal or the user agent or the supervisory authority, and the erasure request carries the identification information of the data; and determines the identifier of the data according to the identification information of the data.
  • the first data related to the information; the first data is erased, and the information related to the data object or the data object in the network storage device initiated by the user or initiated by the proxy is implemented, so that the user can know whether the network storage device will data
  • the object and related information are virtually deleted, further enhancing the security of the data objects of the users in the network storage device.
  • FIG. 17 is a schematic diagram of a user agent according to Embodiment 17 of the present invention.
  • the apparatus is for performing the data erasing method provided by Embodiments 1 to 11 of the present invention.
  • the embodiment of the present invention The user agent provided specifically includes: a network interface 171, a processor 172, and a memory 173.
  • Device bus 174 is used to connect network interface 171, processor 172, and memory 173.
  • the network interface 171 is used to connect the user terminal and the network storage device.
  • the memory 173 may be a persistent storage such as a hard disk drive and a flash memory having a software module and a device driver.
  • the software modules are capable of executing the various functional modules of the above described method of the present invention; the device drivers can be network and interface drivers.
  • the erasure request carrying identification information of data; sending a write data request to the network storage device, where the write data request carries the identification information of the data, so that the network storage
  • the device determines first data related to the identification information of the data, and rewrites the first data.
  • the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes one or more of the following information: a copy, snapshot, mirror or version information for restoring a data object stored by the user in the network storage device; information for describing content of a data object stored by the user in the network storage device; or storing the user in the The private information of the data object in the network storage device.
  • the write data request further carries third data, so that the network storage device rewrites the first data into the third data.
  • the network storage device receives the erasure request sent by the user, and the erasure request carries the identification information of the data; sends a write data request to the network storage device, and the write data request carries the identification information of the data.
  • Rewriting the first data by causing the network storage device to determine the first data related to the identification information of the data, realizing the data object or data initiated by the user or initiated by the proxy to erase the network storage device Object related information, from The user can know whether the network storage device actually deletes the data object and related information, thereby further enhancing the security of the data object of the user in the network storage device.
  • the embodiment of the present invention further provides a data erasing system, which includes the network storage device and the user terminal provided by the embodiment 16 of the present invention; or the user agent and the network storage device provided in Embodiment 17 of the present invention.
  • a data erasing system which includes the network storage device and the user terminal provided by the embodiment 16 of the present invention; or the user agent and the network storage device provided in Embodiment 17 of the present invention.
  • RAM random access memory
  • ROM read-only memory
  • EEPROM electrically programmable ROM
  • EEPROM electrically erasable programmable ROM
  • registers hard disk, removable disk, CD-ROM, or technical field Any other form of storage medium known.

Abstract

The present invention relates to an erasure method, device and system. The method comprises: a network storage device receiving an erasure request, with the erasure request carrying identity information about data; determining first data related to the identity information about the data; and erasing the first data. Therefore, the present invention achieves the method of erasing a data object and relevant information about the data object in the network storage device initiated by a user, and obtains erasure result information after the erasure at the same time, thereby enabling the user to learn whether the network storage device has really deleted the data object and the relevant information, and further enhancing the security of the data object of the user in the network storage device.

Description

说 明 书 数据擦除方法、 装置和系统 技术领域  Description Data erasing method, device and system
本发明涉及通信领域, 尤其涉及一种数据擦除方法、 装置和系统。 背景技术  The present invention relates to the field of communications, and in particular, to a data erasing method, apparatus, and system. Background technique
目前, 在网络存储, 或云存储中, 提供了对数据对象的删除方法。 该删 除方法通常是: 当用户不再需要保留某个数据对象时, 可以通过应用程序接 口向网络存储系统发起删除数据对象的操作, 网络存储系统只返回删除操作 结果成功或者失败, 但不返回关于删除操作的其他信息。  Currently, in the network storage, or cloud storage, a method of deleting data objects is provided. The deletion method is generally: When the user no longer needs to reserve a certain data object, the operation of deleting the data object can be initiated to the network storage system through the application program interface, and the network storage system only returns the result of the deletion operation succeeding or failing, but does not return about Delete additional information about the operation.
在网络存储系统中, 网络存储系统接收到用户发起的删除数据对象请求 之后, 网络存储系统没有将数据对象的内容、 恢复数据对象内容的数据、 以 及数据对象内容的描述数据立即删除, 只是将该数据对象加上删除标志, 此 时数据对象的内容仍然是原来的内容, 并没有被删除, 也没有被覆盖。 当用 户发起访问该数据对象的访问操作时, 网络存储系统返回数据对象不存在的 信息。  In the network storage system, after the network storage system receives the user-initiated deletion data object request, the network storage system does not immediately delete the content of the data object, the data of the restored data object content, and the description data of the data object content, but The data object plus the delete flag, the content of the data object is still the original content, and has not been deleted or overwritten. When the user initiates an access operation to access the data object, the network storage system returns information that the data object does not exist.
但是, 用户收到 "数据对象不存在" 的信息后, 认为数据对象的内容已 经被删除了, 但是此时用户的数据对象的内容仍然存在于网络存储系统中, 仍然存在被非法读取的风险, 对于用户的隐私和保密信息来说, 仍然存在用 户的隐私和保密信息被泄露的风险。  However, after receiving the information that the "data object does not exist", the user thinks that the content of the data object has been deleted, but at this time, the content of the user's data object still exists in the network storage system, and there is still the risk of being illegally read. For the user's privacy and confidential information, there is still a risk that the user's privacy and confidential information will be leaked.
因此, 用户只能对数据对象进行删除操作, 但网络存储系统是否将数据 对象以及相关信息真正删除, 用户是不能获知的。 网络存储系统是否将用户 存储的数据对象或者其相关信息是否真正删除, 在现有技术中是做不到的。 发明内容 Therefore, the user can only delete the data object, but whether the network storage system actually deletes the data object and related information is not known to the user. Whether the network storage system actually deletes the data object stored by the user or its related information is not available in the prior art. Summary of the invention
本发明提供了一种数据擦除方法、 装置和系统, 解决了用户不能够确保 网络存储装置是否将数据对象或者其相关信息真正删除的问题。  The present invention provides a data erasing method, apparatus and system that solves the problem that the user cannot ensure that the network storage device actually deletes the data object or its related information.
在第一方面, 本发明提供了一种数据擦除方法, 所述方法包括: 网络存 储装置接收擦除请求, 所述擦除请求携带有数据的标识信息; 确定所述数据 的标识信息相关的第一数据; 擦除所述第一数据。  In a first aspect, the present invention provides a data erasing method, the method comprising: a network storage device receiving an erasure request, the erasure request carrying identification information of data; determining identification information of the data First data; erasing the first data.
在第一种可能的实施方式中, 所述擦除所述第一数据的方式包括下列方 式的一种或多种: 破坏所述第一数据的内容; 删除所述第一数据的内容; 覆 盖所述第一数据的内容。  In a first possible implementation manner, the manner of erasing the first data includes one or more of the following methods: destroying content of the first data; deleting content of the first data; The content of the first data.
在第二方面, 本发明提供了一种数据擦除方法, 所述方法包括: 接收所 述用户发送的擦除请求, 所述擦除请求携带有数据的标识信息; 向网络存储 装置发送写数据请求, 所述写数据请求携带所述数据的标识信息, 以使得所 述网络存储装置确定所述数据的标识信息相关的第一数据, 改写所述第一数 据。  In a second aspect, the present invention provides a data erasing method, the method comprising: receiving an erasure request sent by the user, the erasure request carrying identification information of data; and sending write data to a network storage device The request, the write data request carries the identification information of the data, so that the network storage device determines the first data related to the identification information of the data, and rewrites the first data.
第一种可能的实施方式中, 所述第一数据包括: 用户存储的数据对象和 / 或用户存储的数据对象的相关信息, 其中, 所述用户存储的数据对象的相关 信息包括以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装 置中的数据对象的副本、 快照、 镜像或者版本信息; 用于描述用户存储在所 述网络存储装置中的数据对象的内容的信息; 或者用户存储在所述网络存储 装置中的数据对象的隐私信息。  In a first possible implementation, the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes the following information. One or more: a copy, a snapshot, a mirror, or version information for restoring a data object stored by the user in the network storage device; information for describing content of a data object stored by the user in the network storage device Or the privacy information of the data object stored by the user in the network storage device.
在第三方面, 本发明提供了一种网络存储装置, 所述装置包括: 第一接 收单元, 用于接收擦除请求, 所述擦除请求携带有数据的标识信息, 以及将 所述数据的标识信息传输给第一确定单元; 第一确定单元, 用于从所述第一 接收单元接收数据的标识信息, 确定所述数据的标识信息相关的第一数据, 以及将所述第一数据传输给所述擦除单元; 擦除单元, 用于从所述第一确定 单元接收所述第一数据, 擦除所述第一数据。 第一种可能的实施方式中, 所述擦除单元用于下列方式的一种或多种: 破坏所述第一数据的内容; 删除所述第一数据的内容; 覆盖所述第一数据的 内容。 In a third aspect, the present invention provides a network storage device, where the device includes: a first receiving unit, configured to receive an erasure request, the erasure request carries identification information of data, and the data is Transmitting the identification information to the first determining unit, the first determining unit, configured to receive the identification information of the data from the first receiving unit, determine the first data related to the identification information of the data, and transmit the first data And the erasing unit is configured to receive the first data from the first determining unit, and erase the first data. In a first possible implementation, the erasing unit is used for one or more of the following ways: destroying content of the first data; deleting content of the first data; overlaying the first data content.
在第四方面, 本发明提供了一种用户终端, 其特征在于, 所述终端包括: 第一发送单元, 用于向网络存储装置发送擦除请求, 所述擦除请求携带有数 据的标识信息, 其中, 所述数据的标识信息包括用户存储的数据对象的指示 信息, 或者所述用户的数据的标识信息包括用户存储的数据对象的相关信息 的标识, 用以所述网络存储装置确定所述数据的标识信息相关的第一数据, 并擦除所述第一数据。  In a fourth aspect, the present invention provides a user terminal, where the terminal includes: a first sending unit, configured to send an erasure request to a network storage device, where the erasure request carries identification information of data The identifier information of the data includes the indication information of the data object stored by the user, or the identifier information of the data of the user includes an identifier of the related information of the data object stored by the user, where the network storage device determines the The identification information of the data is related to the first data, and the first data is erased.
第一种可能的实施方式中, 所述擦除请求还携带擦除请求标识, 所述擦 除请求标识用于通知所述网络存储装置用户希望对相关数据进行擦除。  In a first possible implementation manner, the erasure request further carries an erasure request identifier, where the erasure request identifier is used to notify the network storage device user that the related data is to be erased.
在第五方面, 本发明提供了一种用户代理, 其特征在于, 所述代理还包 括: 接收单元, 用于接收用户发送的擦除请求, 所述擦除请求携带有数据的 标识信息, 以及将所述擦除请求传输给发送单元, 其中, 所述数据的标识信 息包括用户存储的数据对象的指示信息, 或者所述用户的数据的标识信息包 括用户存储的数据对象的相关信息的标识; 发送单元, 用于从所述接收单元 接收所述擦除请求, 向网络存储装置发送所述擦除请求, 所述擦除请求携带 有数据的标识信息, 用以所述网络存储装置确定所述数据的标识信息相关的 第一数据, 并擦除所述第一数据。  In a fifth aspect, the present invention provides a user agent, where the agent further includes: a receiving unit, configured to receive an erasure request sent by a user, where the erasure request carries identification information of data, and Transmitting the erasure request to the sending unit, where the identifier information of the data includes indication information of a data object stored by the user, or the identifier information of the data of the user includes an identifier of related information of the data object stored by the user; a sending unit, configured to receive the erasure request from the receiving unit, and send the erasure request to a network storage device, where the erasure request carries identification information of data, where the network storage device determines the The identification information of the data is related to the first data, and the first data is erased.
第一种可能的实施方式中, 所述接收单元用于接收查询用户数据相关信 息的请求, 其中, 该查询用户数据相关信息的请求携带数据的标识信息; 所 述发送单元用于向所述网络存储装置发送查询用户数据相关信息的请求; 以 及, 所述接收单元还用于接收所述网络存储装置发送的携带第二数据的查询 响应消息; 所述发送单元用于向所述用户发送携带所述第二数据的查询响应 消息。  In a first possible implementation manner, the receiving unit is configured to receive a request for querying user data related information, where the request for querying user data related information carries identification information of data; and the sending unit is configured to use the network The storage device sends a request for querying the user data related information; and the receiving unit is further configured to receive the query response message that is sent by the network storage device and that carries the second data; the sending unit is configured to send the carrying device to the user The query response message of the second data.
在第六方面, 本发明提供了一种用户代理, 其特征在于, 所述代理包括: 接收单元, 用于接收所述用户发送的擦除请求, 所述擦除请求携带有数据的 标识信息; 发送单元, 用于向网络存储装置发送写数据请求, 所述写数据请 求携带所述数据的标识信息, 以使得所述网络存储装置确定所述数据的标识 信息相关的第一数据, 改写所述第一数据。 In a sixth aspect, the present invention provides a user agent, wherein the agent includes: a receiving unit, configured to receive an erasure request sent by the user, where the erasure request carries identification information of data; a sending unit, configured to send a write data request to the network storage device, where the write data request carries the data The identification information is such that the network storage device determines the first data related to the identification information of the data, and rewrites the first data.
第一种可能的实施方式中, 所述第一数据包括: 用户存储的数据对象和 / 或用户存储的数据对象的相关信息, 其中, 所述用户存储的数据对象的相关 信息包括以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装 置中的数据对象的副本、 快照、 镜像或者版本信息; 用于描述用户存储在所 述网络存储装置中的数据对象的内容的信息; 或者用户存储在所述网络存储 装置中的数据对象的隐私信息。  In a first possible implementation, the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes the following information. One or more: a copy, a snapshot, a mirror, or version information for restoring a data object stored by the user in the network storage device; information for describing content of a data object stored by the user in the network storage device Or the privacy information of the data object stored by the user in the network storage device.
在第七方面, 本发明提供了一种数据擦除系统, 其特征在于, 所述系统 包括在第三方面提供的网络存储装置和在第四方面提供的用户终端; 或者在 第三方面提供的的网络存储装置、 在第四方面提供的用户终端和在第五方面 提供的用户代理; 或者在第三方面提供的网络存储装置和在第六方面提供的 用户代理。  In a seventh aspect, the present invention provides a data erasing system, characterized in that the system comprises the network storage device provided in the third aspect and the user terminal provided in the fourth aspect; or provided in the third aspect a network storage device, a user terminal provided in the fourth aspect, and a user agent provided in the fifth aspect; or the network storage device provided in the third aspect and the user agent provided in the sixth aspect.
在第八方面, 本发明提供了一种网络存储装置, 其特征在于, 所述装置 包括: 网络接口; 处理器; 存储器; 物理存储在所述存储器中的应用程序, 所述应用程序包括可用于使所述处理器和所述装置执行以下过程的指令: 接 收擦除请求, 所述擦除请求携带有数据的标识信息; 确定所述数据的标识信 息相关的第一数据; 擦除所述第一数据。  In an eighth aspect, the present invention provides a network storage device, characterized in that the device comprises: a network interface; a processor; a memory; an application physically stored in the memory, the application comprising And causing the processor and the apparatus to execute an instruction of: receiving an erase request, the erase request carrying identification information of data; determining first data related to identification information of the data; erasing the first One data.
第一种可能的实施方式中, 所述擦除所述第一数据的方式包括下列方式 的一种或多种: 破坏所述第一数据的内容; 删除所述第一数据的内容; 覆盖 所述第一数据的内容。  In a first possible implementation manner, the manner of erasing the first data includes one or more of the following methods: destroying content of the first data; deleting content of the first data; The content of the first data.
在第八方面, 本发明提供了一种用户代理, 其特征在于, 所述代理包括: 网络接口; 处理器; 存储器; 物理存储在所述存储器中的应用程序, 所述应 用程序包括可用于使所述处理器和所述代理执行以下过程的指令: 接收所述 用户发送的擦除请求, 所述擦除请求携带有数据的标识信息; 向网络存储装 置发送写数据请求, 所述写数据请求携带所述数据的标识信息, 以使得所述 网络存储装置确定所述数据的标识信息相关的第一数据, 改写所述第一数据。 In an eighth aspect, the present invention provides a user agent, characterized in that: the agent comprises: a network interface; a processor; a memory; an application physically stored in the memory, the application comprising The processor and the agent execute instructions of: receiving the An erasure request sent by the user, the erasure request carrying the identification information of the data; sending a write data request to the network storage device, where the write data request carries the identification information of the data, so that the network storage device determines Decoding the first data with the first data related to the identification information of the data.
第一种可能的实施方式中, 所述第一数据包括: 用户存储的数据对象和 / 或用户存储的数据对象的相关信息, 其中, 所述用户存储的数据对象的相关 信息包括以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装 置中的数据对象的副本、 快照、 镜像或者版本信息; 用于描述用户存储在所 述网络存储装置中的数据对象的内容的信息; 或者用户存储在所述网络存储 装置中的数据对象的隐私信息。  In a first possible implementation, the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes the following information. One or more: a copy, a snapshot, a mirror, or version information for restoring a data object stored by the user in the network storage device; information for describing content of a data object stored by the user in the network storage device Or the privacy information of the data object stored by the user in the network storage device.
因此, 本发明公开的数据擦除方法、 装置和系统, 通过接收用户终端或 用户代理发送的擦除请求, 该擦除请求携带有数据的标识信息; 根据该数据 的标识信息确定与数据的标识信息相关的第一数据; 擦除第一数据, 实现了 由用户发起的, 或者通过代理发起的擦除网络存储装置中数据对象或数据对 象的相关信息, 从而使得用户能够确保网络存储装置是否将数据对象或者相 关信息真正删除, 进一步增强了网络存储装置中用户的数据对象的安全性。 附图说明  Therefore, the data erasing method, apparatus and system disclosed by the present invention receive an erasure request sent by a user terminal or a user agent, and the erasure request carries identification information of the data; and the identifier of the data is determined according to the identification information of the data. The first data related to the information; erasing the first data, realizing the information related to the data object or the data object in the network storage device initiated by the user or initiated by the proxy, so that the user can ensure whether the network storage device will The data object or related information is virtually deleted, further enhancing the security of the data object of the user in the network storage device. DRAWINGS
图 1为本发明实施例一提供的数据擦除方法的流程图;  1 is a flowchart of a data erasing method according to Embodiment 1 of the present invention;
图 2为本发明实施例二提供的数据擦除方法的信息交互图  2 is an information interaction diagram of a data erasing method according to Embodiment 2 of the present invention;
图 3为本发明实施例三提供的数据擦除方法的信息交互图  FIG. 3 is an information interaction diagram of a data erasing method according to Embodiment 3 of the present invention;
图 4为本发明实施例四提供的数据擦除方法的信息交互图  4 is an information interaction diagram of a data erasing method according to Embodiment 4 of the present invention;
图 5为本发明实施例五提供的数据擦除方法的信息交互图  FIG. 5 is an information interaction diagram of a data erasing method according to Embodiment 5 of the present invention;
图 6为本发明实施例六提供的查询方法的信息交互图;  6 is an information interaction diagram of a query method according to Embodiment 6 of the present invention;
图 7为本发明实施例七提供的数据擦除方法的信息交互图  FIG. 7 is an information interaction diagram of a data erasing method according to Embodiment 7 of the present invention;
图 8为本发明实施例八提供的数据擦除方法的信息交互图  8 is an information interaction diagram of a data erasing method according to Embodiment 8 of the present invention.
图 9为本发明实施例九提供的数据擦除方法的信息交互图 图 10为本发明实施例十提供的数据擦除方法的信息交互图; 图 11为本发明实施例十一提供的数据擦除方法的信息交互图; FIG. 9 is an information interaction diagram of a data erasing method according to Embodiment 9 of the present invention; 10 is an information interaction diagram of a data erasing method according to Embodiment 10 of the present invention; FIG. 11 is an information interaction diagram of a data erasing method according to Embodiment 11 of the present invention;
图 12为本发明实施例十二提供的网络存储装置的示意图;  12 is a schematic diagram of a network storage device according to Embodiment 12 of the present invention;
图 13为本发明实施例十三提供的用户终端的示意图;  13 is a schematic diagram of a user terminal according to Embodiment 13 of the present invention;
图 14为本发明实施例十四提供的用户代理的示意图;  14 is a schematic diagram of a user agent according to Embodiment 14 of the present invention;
图 15为本发明实施例十五提供的用户代理的示意图;  15 is a schematic diagram of a user agent according to Embodiment 15 of the present invention;
图 16为本发明实施例十六提供的网络存储装置的示意图;  16 is a schematic diagram of a network storage device according to Embodiment 16 of the present invention;
图 17为本发明实施例十七提供的用户代理的示意图。 具体实施方式  FIG. 17 is a schematic diagram of a user agent according to Embodiment 17 of the present invention. detailed description
为使本发明实施例的目的、 技术方案和优点更加清楚, 下面将结合本 发明实施例中的附图, 对本发明实施例中的技术方案进行清楚、 完整地描 述, 显然, 所描述的实施例是本发明一部分实施例, 而不是全部的实施例。 基于本发明中的实施例, 本领域普通技术人员在没有作出创造性劳动前提 下所获得的所有其他实施例, 都属于本发明保护的范围。  The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is a partial embodiment of the invention, and not all of the embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
本发明提供的数据擦除方法、 装置和系统中, 网络存储装置通过接收用 户终端或用户代理发送的擦除请求, 该擦除请求携带有数据的标识信息; 根 据该数据的标识信息确定与数据的标识信息相关的第一数据; 擦除第一数据 , 实现了由用户发起的, 或者通过代理发起的擦除网络存储装置中数据对象或 数据对象的相关信息, 从而使得用户能够获知网络存储装置是否将数据对象 以及相关信息真正删除, 进一步增强了网络存储装置中用户的数据对象的安 全性。  In the data erasing method, apparatus and system provided by the present invention, the network storage device receives the erasure request sent by the user terminal or the user agent, the erasure request carries the identification information of the data; and determines the data according to the identification information of the data. The first data related to the identification information; erasing the first data, realizing the information related to the data object or the data object in the network storage device initiated by the user or initiated by the proxy, so that the user can learn the network storage device Whether the data object and related information are actually deleted, further enhances the security of the data object of the user in the network storage device.
下面具体介绍本发明所有的实施例中涉及到的名词定义。  The definitions of nouns involved in all embodiments of the present invention are specifically described below.
网络存储, 该网络存储是一种通过网络提供的数据存储服务。 在网络上, 用户通过应用程序接口访问和处理所存储的数据对象, 而不是通过通用操作 系统访问和处理, 这些数据对象作为互联网资源以 URI (通用资源标识)来标 识, 用户往往不感知数据存储的实际物理设备, 也一般不直接操作这些物理 设备, 而是通过应用程序接口对数据对象进行创建, 访问, 删除, 更新等操 作。 云存储是网络存储的一种表现形式, 除了网络化之外, 还具备虚拟化、 按需提供等云技术所具有的特征。应用程序接口,该应用程序接口可以是 AP I、 命令行、 以及对用户用户友好的图形化界面。 Network storage, which is a data storage service provided over a network. On the network, users access and process stored data objects through the application interface, rather than being accessed and processed through a common operating system. These data objects are identified as URIs (Universal Resource Identifiers) as Internet resources. Knowledge, users often do not perceive the actual physical devices of the data storage, and generally do not directly operate these physical devices, but create, access, delete, update and other operations on the data objects through the application program interface. Cloud storage is a form of network storage. In addition to networking, it also has the characteristics of cloud technology such as virtualization and on-demand provisioning. An application interface, which can be an AP I, a command line, and a user-friendly graphical interface.
用户, 该用户可以是用户设备, 也可以是应用程序, 用户通过应用程序 接口将数据对象存储到存储系统中, 或者通过应用程序接口访问, 或者处理 网络存储装置中数据对象。  The user, which may be a user device or an application, stores the data object in the storage system through the application interface, or accesses through the application interface, or processes the data object in the network storage device.
网络存储装置, 该网络存储装置用于提供网络存储服务的系统。  Network storage device, a system used to provide network storage services.
数据对象, 该数据对象是网络存储装置中保存的数据。 该数据对象可以 是: 文档, 图片, 视频, 音频, 应用程序产生的数据, 压缩文件, 备份数据, 归档数据等。  A data object, which is data stored in a network storage device. The data objects can be: document, picture, video, audio, application generated data, compressed file, backup data, archived data, etc.
数据对象相关信息, 该数据对象相关信息包括的信息如下:  Data object related information, the information related to the data object includes the following information:
1 ) 可以用来恢复数据对象的信息, 比如: 1-1 )数据对象的副本; 或者 1-2 )数据对象的快照 /镜像; 或者 1-3 )数据对象的历史版本;  1) Information that can be used to recover data objects, such as: 1-1) a copy of the data object; or 1-2) a snapshot/mirror of the data object; or 1-3) a historical version of the data object;
2 )描述数据对象内容的信息, 比如: 数据对象内容的描述标签; 或者 2) information describing the content of the data object, such as: a description tag of the content of the data object; or
3 )数据对象的隐私信息, 比如: 3-1 )数据对象所属用户的隐私信息; 或者 3-2 )数据对象涉及的用户的隐私信息。 3) The privacy information of the data object, such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
数据对象内容擦除, 擦除该数据对象内容的方式如下:  The data object content is erased, and the content of the data object is erased as follows:
1 )破坏数据对象的内容, 使数据对象内容无法读取, 或者无法显示; 或 者;  1) destroying the content of the data object, making the data object content unreadable or unable to display; or
2 )删除数据对象的内容, 将数据对象内容置空; 或者  2) delete the contents of the data object, and empty the contents of the data object; or
3 )覆盖数据对象的内容,如: 3-1 )将数据对象的内容所有比特位写成 1 ; 或者 3-2 )将数据对象的内容所有比特位写成 0; 或者 3-3 )将数据对象的内 容写入随机数据; 或者 3-4 )将数据对象的内容写入用户指定的数据;  3) Overwriting the contents of the data object, such as: 3-1) writing all bits of the content of the data object to 1; or 3-2) writing all bits of the content of the data object to 0; or 3-3) The content is written to the random data; or 3-4) the content of the data object is written to the data specified by the user;
4 )其他使数据对象内容不可展现原来信息的方法。 利用上述擦除该数据对象内容的方式解决了现有技术中的数据对象本身 在擦除后其通用资源标志符 ( Uniform Resource Ident if ier , URI )仍然存 在, 仍然可以通过应用程序接口进行操作的问题。 4) Other methods that make the data object content unable to display the original information. The method for erasing the content of the data object solves the problem that the data object itself in the prior art is still present after being erased, and the Uniform Resource Ident If ier (URI) still exists, and can still be operated through the application program interface. problem.
数据对象相关信息擦除, 擦除该数据对象相关信息的方式如下:  The data object related information is erased, and the related information of the data object is erased as follows:
1 )破坏数据对象相关信息, 使数据对象的相关信息无法读取, 或者无法 显示; 或者  1) destroying the data object related information, making the related information of the data object unreadable or unable to display; or
2 )删除数据对象相关信息的内容, 将数据对象相关信息置空; 或者 2) deleting the content of the data object related information, and emptying the data object related information; or
3 )覆盖数据对象相关信息的内容, 比如: 3-1 )将数据对象的相关信息 所有比特位写成 1 ; 或者 3-2 )将数据对象的相关信息所有比特位写成 0; 或 者 3-3 )将数据对象的相关信息写入随机数据; 或者 3-4 )将数据对象的相关 信息写入用户指定的数据; 3) Covering the content of the data object related information, for example: 3-1) writing all the bits of the data object related information to 1; or 3-2) writing all the bits of the data object related information to 0; or 3-3) Write related information of the data object to the random data; or 3-4) write the related information of the data object to the data specified by the user;
4 )删除数据对象相关信息;  4) Delete data object related information;
5 )或者其他将数据对象相关信息不可展现原来信息的方法。  5) or other methods that do not reveal the original information to the data object related information.
图 1 为本发明实施例一提供的数据擦除方法的流程图。 如图所述, 本发 明实施例具体包括以下步骤:  FIG. 1 is a flowchart of a data erasing method according to Embodiment 1 of the present invention. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 101 , 网络存储装置接收擦除请求, 该擦除请求携带有数据的标识信 息。 其中, 网络存储装置可能接收用户发送的擦除请求,也可能接收用户代理 发送的擦除请求, 还可以是监管机构发送的擦除请求。 数据的标识信息可以 包括用户存储的数据对象的指示信息; 也可以包括用户的数据的标识信息, 该用户的数据的标识信息包括用户存储的数据对象的相关信息的标识; 还可 以包括用户存储的数据对象的指示信息和用户存储的数据对象的相关信息的 标识。 另外, 擦除请求还可以携带擦除请求标识, 该擦除请求标识用于通知 网络存储装置用户希望对相关数据进行擦除。  Step 101: The network storage device receives an erasure request, where the erasure request carries identification information of the data. The network storage device may receive an erasure request sent by the user, may also receive an erasure request sent by the user agent, or may be an erasure request sent by the regulatory authority. The identification information of the data may include the indication information of the data object stored by the user; the identification information of the data of the user may be included, and the identification information of the data of the user includes the identifier of the related information of the data object stored by the user; An indication of the indication information of the data object and the related information of the data object stored by the user. Additionally, the erase request can also carry an erase request identifier that is used to notify the network storage device user that it wishes to erase the relevant data.
具体地, 网络存储是一种通过网络提供的数据存储服务。 在网络上, 用 户通过应用程序接口访问和处理所存储的数据对象, 而不是通过通用操作系 统访问和处理, 这些数据对象作为互联网资源以通用资源标识 URI 来标识, 其中, 云存储是网络存储的一种表现形式, 除了网络化之外, 还具备虚拟化, 按需提供等云技术所具有的特征。 Specifically, network storage is a data storage service provided through a network. On the network, users access and process stored data objects through the application interface, rather than being accessed and processed through a common operating system. These data objects are identified as Internet resources by universal resource identification URIs. Among them, cloud storage is a form of network storage. In addition to networking, it also has virtualization, providing on-demand features such as cloud technology.
另夕卜,应用程序接口可以是应用程序编程接口(Appl ica t ion Programming Interface, API)、 命令行、 以及对终端用户友好的图形化界面。 用户可以应 用程序接口将数据对象存储到网络存储装置中, 也可以通过应用程序接口 访问网络存储装置中保存的数据对象或处理该数据对象。 其中, 用户可以 为终端设备, 也可以为应用程序。  In addition, the application interface can be an Application Programming Interface (API), a command line, and a graphical user interface that is user-friendly. The user can store the data object in the network storage device through the application program interface, or access the data object saved in the network storage device through the application program interface or process the data object. The user can be a terminal device or an application.
步骤 102 , 网络存储装置确定与数据的标识信息相关的第一数据。  Step 102: The network storage device determines first data related to the identification information of the data.
具体地, 当数据的标识信息为数据对象的标识信息, 则确定的第一数据 是与数据对象的标识信息相关的数据; 当数据的标识信息为数据对象相关信 息的标识信息, 则确定的第一数据是与数据对象相关信息的标识信息相关的 数据; 当数据的标识信息为数据对象的标识信息和数据对象相关信息的标识 信息, 则确定的第一数据是与数据对象的标识信息和数据对象相关信息的标 识信息相关的数据。 另外, 还可以确定与数据的标识信息对应的擦除方式。 。  Specifically, when the identification information of the data is the identification information of the data object, the determined first data is data related to the identification information of the data object; when the identification information of the data is the identification information of the data object related information, the determined The data is data related to the identification information of the data object related information; when the identification information of the data is the identification information of the data object and the identification information of the data object related information, the determined first data is the identification information and data of the data object. Data related to the identification information of the object related information. In addition, the erasure mode corresponding to the identification information of the data can also be determined. .
步骤 103 , 网络存储装置擦除与数据的标识信息相关的第一数据。。其中, 擦除第一数据的方式包括下列方式的一种或多种: 网络存储装破坏第一数据 的内容; 或者, 网络存储装删除第一数据的内容; 或者, 网络存储装覆盖第 一数据的内容。  Step 103: The network storage device erases the first data related to the identification information of the data. . The method for erasing the first data includes one or more of the following methods: the network storage device destroys the content of the first data; or the network storage device deletes the content of the first data; or the network storage device covers the first data. Content.
具体地, 网络存储装覆盖第一数据的内容的过程可以为将第一数据的内 容所有比特位写成特定值, 比如, 0或 1 ; 也可以将第一数据的内容写成随机 数据; 还可以将第一数据的内容写成用户指定的数据。  Specifically, the process of storing the content of the first data in the network storage may be to write all the bits of the content of the first data to a specific value, for example, 0 or 1; the content of the first data may also be written as random data; The content of the first data is written as user-specified data.
图 2 为本发明实施例二提供的数据擦除方法的信息交互图。 该实施例提 供的数据擦除方法实现了用户请求擦除数据对象, 网络存储装置根据用户请 求擦除了数据对象。 在本发明实施例中擦除请求具体为擦除数据对象请求, 第一数据具体为数据对象。 如图所述, 本发明实施例具体包括以下步骤: 步骤 201 ,网络存储装置接收用户发送的携带有数据的标识信息的擦除数 据对象请求, 该数据的标识信息包括用户存储的数据对象的指示信息。 其中, 用户存储的数据对象的指示信息包括下列信息的一种或多种: 数据对象的标 识、 文件夹的标识、 用户账户的标识。 。 FIG. 2 is an information interaction diagram of a data erasing method according to Embodiment 2 of the present invention. The data erasing method provided by this embodiment enables the user to request to erase the data object, and the network storage device erases the data object according to the user request. In the embodiment of the present invention, the erasure request is specifically an erasure data object request, and the first data is specifically a data object. As shown in the figure, the embodiment of the present invention specifically includes the following steps: Step 201: The network storage device receives the number of erasures of the identifier information carried by the user and carries the data. According to the object request, the identification information of the data includes indication information of the data object stored by the user. The indication information of the data object stored by the user includes one or more of the following information: an identifier of the data object, an identifier of the folder, and an identifier of the user account. .
具体地, 该用户存储的数据对象的指示信息包括下列信息的一种或多种: 1 )数据对象的标识; 其中数据对象可以是文档、 图片、 视频、 音频、 应 用程序产生的数据、 压缩文件、 备份数据、 归档数据等, 数据对象的标识可 以是唯一指定数据对象的 URL; 或者  Specifically, the indication information of the data object stored by the user includes one or more of the following information: 1) an identifier of the data object; wherein the data object may be a document, a picture, a video, an audio, an application generated data, a compressed file , backup data, archive data, etc., the identifier of the data object can be a URL that uniquely specifies the data object; or
2 )文件夹的标识; 或者  2) the identity of the folder; or
3 )用户账户的标识; 或者  3) the identity of the user account; or
另外, 用户发送的擦除请求还可以携带擦除请求标识, 用来告知网络存 储装置用户希望对用户存储的数据对象的指示信息相关的数据对象进行擦除 动作。 该擦除请求标识可以是: 4-1 ) 消息名, 例如: 用 Era se消息名来代表 擦除请求标识; 4-2 ) 消息中的一个字段, 例如: 在现有消息头中增加一个指 示擦除的头域, 或者在现有消息命令行中增加一个参数; 4-3 )消息中的一个 参数, 例如: 在现有消息体中增加一个指示擦除参数。  In addition, the erasure request sent by the user may also carry an erasure request identifier for informing the network storage device user that the data object related to the indication information of the data object stored by the user is to be erased. The erasure request identifier may be: 4-1) a message name, for example: using an Era se message name to represent an erasure request identifier; 4-2) a field in the message, for example: adding an indication to an existing message header Erase the header field, or add a parameter to the existing message command line; 4-3) A parameter in the message, for example: Add an indicator to the existing message body to indicate the erase parameter.
该步骤 201 中, 发送擦除请求的用户和用户存储的数据对象的指示信息 中的用户可以相同, 也可以不相同。 当相同, 说明发送除请求的用户是想删 除自身存储在网络存储装置的数据对象; 当不同时, 说明发送擦除请求的用 户想删除其他用户存储在网络存储装置的数据对象。  In this step 201, the user who sends the erasure request and the user in the indication information of the data object stored by the user may be the same or different. When the same, it indicates that the user who sent the request is to delete the data object stored in the network storage device; when not, the user who sent the erase request wants to delete the data object stored by the other user in the network storage device.
步骤 202 ,网络存储装置根据用户存储的数据对象的指示信息确定用户存 储在网络存储装置中的数据对象即第一数据。  Step 202: The network storage device determines, according to the indication information of the data object stored by the user, the data object that is stored in the network storage device by the user, that is, the first data.
具体地, 如果用户存储的数据对象的指示信息为数据对象的标识, 则用 户存储在网络存储装置中的数据对象即第一数据为该数据对象的标识对应的 数据对象。  Specifically, if the indication information of the data object stored by the user is the identifier of the data object, the data object stored by the user in the network storage device, that is, the first data is a data object corresponding to the identifier of the data object.
如果用户存储的数据对象的指示信息为文件夹的标识, 则用户存储在网 络存储装置中的数据对象即第一数据为该文件夹标识对应的文件夹中的数据 对象。 If the indication information of the data object stored by the user is the identifier of the folder, the data object stored by the user in the network storage device, that is, the first data is the data in the folder corresponding to the folder identifier. Object.
如果用户存储的数据对象的指示信息为用户账户的标识, 则用户存储在 网络存储装置中的数据对象即第一数据为用户账户标识对应的用户账户中的 数据对象。  If the indication information of the data object stored by the user is the identifier of the user account, the data object stored by the user in the network storage device, that is, the first data is the data object in the user account corresponding to the user account identifier.
步骤 203 ,网络存储装置擦除用户存储在网络存储装置中的数据对象即第 Step 203: The network storage device erases the data object stored by the user in the network storage device.
—数据„ - data „
具体地, 擦除数据对象的方式可以是:  Specifically, the manner of erasing the data object can be:
1 )破坏数据对象的内容, 使数据对象内容无法读取, 或者无法显示; 或 者  1) destroy the content of the data object, make the data object content unreadable, or can not be displayed; or
2 )删除数据对象的内容, 将数据对象内容置空; 或者  2) delete the contents of the data object, and empty the contents of the data object; or
3 )覆盖数据对象的内容, 比如:  3) Overwrite the contents of the data object, such as:
3-1 )将数据对象的内容所有比特位写成 1 ; 或者  3-1) write all bits of the contents of the data object as 1; or
3-2 )将数据对象的内容所有比特位写成 0; 或者  3-2) Write all bits of the contents of the data object to 0; or
3-3 )将数据对象的内容写入随机数据; 或者  3-3) writing the contents of the data object to the random data; or
3-4 )将数据对象的内容写入用户指定的数据。  3-4) Write the contents of the data object to the data specified by the user.
4 )其他使数据对象内容不可展现原来信息的方法。  4) Other methods that make the data object content unable to display the original information.
步骤 204 , 网络存储装置向用户发送擦除数据对象响应。  Step 204: The network storage device sends an erase data object response to the user.
具体地, 擦除数据对象响应包括下列信息的一种或者多种:  Specifically, the erase data object response includes one or more of the following information:
1 )被擦除的数据对象的标识, 例如数据对象的标识; 或者  1) the identity of the data object being erased, such as the identity of the data object; or
2 )被擦除的文件夹的标识; 或者  2) the identity of the folder being erased; or
3 )被擦除的用户账户的标识; 或者  3) the identity of the user account being erased; or
2 )擦除数据对象的时间; 或者  2) the time to erase the data object; or
3 )被擦除的数据对象的内容; 或者  3) the content of the data object being erased; or
4 )擦除成功或者擦除失败的描述信息。  4) Descriptive information of successful erasure or erasure failure.
另外, 在上述步骤 203进行的过程中, 网络存储装置还可以向用户发送 数据对象的擦除进展通知, 该数据对象的擦除进展通知包括下列信息的一种 或者多种: 1 ) 已经完成的动作, 例如: 擦除数据对象操作已经完成; 2 )正 在进行的动作, 例如: 正在擦除数据对象; 3 )擦除数据对象操作完成百分比; 4 ) 完成擦除数据对象操作还需要的时间。 In addition, in the process of the foregoing step 203, the network storage device may further send an erasure progress notification of the data object to the user, and the erasure progress notification of the data object includes one of the following information. Or a variety of: 1) actions that have been completed, such as: Erase data object operations have been completed; 2) ongoing actions, such as: erasing data objects; 3) erasing data object operation completion percentage; 4) finishing rubbing In addition to the time required for data object operations.
同时, 为了避免纠纷或者备案, 网络存储装置可以将下列信息的一种或 者多种记录在日志当中: 1 )收到数据对象擦除请求; 或者 2 )擦除数据对象 的动作; 或者 3 )擦除数据对象的时间; 或者 4 )擦除数据对象的结果。  Meanwhile, in order to avoid disputes or filing, the network storage device may record one or more of the following information in the log: 1) receiving a data object erasure request; or 2) erasing the data object; or 3) wiping The time of the data object; or 4) the result of erasing the data object.
图 3 为本发明实施例三提供的数据擦除方法的信息交互图。 该实施例提 供的数据擦除方法实现了用户请求擦除数据对象相关信息, 网络存储装置根 据用户请求擦除了数据对象相关信息。 在本发明实施例中擦除请求具体为擦 除数据对象的相关信息请求, 第一数据具体为数据对象的相关信息。 如图所 述, 本发明实施例具体包括以下步骤:  FIG. 3 is an information interaction diagram of a data erasing method according to Embodiment 3 of the present invention. The data erasing method provided by this embodiment realizes that the user requests to erase the data object related information, and the network storage device erases the data object related information according to the user request. In the embodiment of the present invention, the erasure request is specifically a request for erasing related information of the data object, and the first data is specifically related information of the data object. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 301 ,用户向网络存储装置发送携带有用户的数据对象的标识信息擦 除数据对象的相关信息的请求, 该用户的数据对象的标识信息包括用户存储 的数据对象的相关信息的标识。 其中, 用户存储的数据对象的相关信息包括 以下信息中的一种或者几种: 用于恢复用户存储在网络存储装置中的数据对 象的副本、 快照、 镜像或者版本信息; 用于描述用户存储在网络存储装置中 的数据对象的内容的信息; 或者用户存储在网络存储装置中的数据对象的隐 私信息。  Step 301: The user sends a request for erasing related information of the data object by using the identifier information of the data object of the user to the network storage device, where the identifier information of the data object of the user includes the identifier of the related information of the data object stored by the user. The information related to the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror, or version information of the data object used to restore the user stored in the network storage device; Information of the content of the data object in the network storage device; or privacy information of the data object stored by the user in the network storage device.
该步骤 301 中, 发送擦除请求的用户和用户存储的数据对象的相关信息 的标识可以相同, 也可以不相同。 当相同, 说明发送除请求的用户是想删除 自身存储在网络存储装置的数据对象; 当不同时, 说明发送擦除请求的用户 想删除其他用户存储在网络存储装置的数据对象。  In step 301, the identifier of the related information of the user who sends the erasure request and the data object stored by the user may be the same or different. When the same, it indicates that the user who sent the request is to delete the data object stored in the network storage device; when not, the user who sent the erase request wants to delete the data object stored by the other user on the network storage device.
步骤 302 , 网络存储装置根据用户存储的数据对象的相关信息的标识, 确 定用户存储的数据对象的相关信息。 其中, 网络存储装置根据擦除请求携带 的用户存储的数据对象的相关信息的标识查找与该标识相关的数据对象的相 关信息, 并将该数据对象的相关信息确定为用户存储的数据对象的相关信息 即第一数据。 Step 302: The network storage device determines, according to the identifier of the related information of the data object stored by the user, related information of the data object stored by the user. The network storage device searches for related information of the data object related to the identifier according to the identifier of the related information of the data object stored by the user carried by the erasure request, and determines the related information of the data object as the data object stored by the user. Information That is the first data.
具体地, 用户存储的数据对象的相关信息可以是:  Specifically, the related information of the data object stored by the user may be:
1 ) 可以用来恢复数据对象的信息, 如: 1-1 )数据对象副本; 或者 1-2) 数据对象快照; 或者 1-3 )数据对象镜像; 或者 1-4 )数据对象历史版本标识; 2)描述数据对象内容的信息, 如数据对象内容的描述标签; 或者  1) Information that can be used to recover data objects, such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object; 2) information describing the content of the data object, such as a description tag of the content of the data object; or
3)数据对象的隐私信息, 如: 3-1 )数据对象所属用户的隐私信息; 或 者 3-2)数据对象涉及的用户的隐私信息。  3) The privacy information of the data object, such as: 3-1) the privacy information of the user to whom the data object belongs; or 3-2) the privacy information of the user involved in the data object.
另外, 用户存储的数据对象的相关信息的标识可以为  In addition, the identifier of the related information of the data object stored by the user may be
1 ) URL, 用来标识数据对象的相关信息;  1) URL, used to identify information about the data object;
2)描述标识, 用来描述数据对象的相关信息。  2) Description identifier, used to describe information about the data object.
步骤 303, 网络存储装置擦除用户的存储的数据对象的相关信息。  Step 303: The network storage device erases related information of the stored data object of the user.
具体地, 网络存储装置对查找到的数据对象的相关信息即第一数据进行 擦除操作。 其中, 擦除数据对象相关信息的方法可以是下列方法的一种或者 多种:  Specifically, the network storage device performs an erase operation on the related information of the found data object, that is, the first data. The method for erasing information related to the data object may be one or more of the following methods:
1 )破坏数据对象的相关信息, 使数据对象的相关信息无法读取, 或者无 法显示; 或者  1) destroying the related information of the data object, making the related information of the data object unreadable or unable to display; or
2)删除数据对象的相关信息的内容, 将数据对象相关信息置空; 或者 2) deleting the content of the related information of the data object, and emptying the data object related information; or
3)覆盖数据对象的相关信息的内容, 如: 3-1 )将数据对象的相关信息 所有比特位写成 1; 或者 3-2 )将数据对象的相关信息所有比特位写成 0; 或 者 3-3 )将数据对象的相关信息写入随机数据; 或者 3-4 )将数据对象的相关 信息写入用户指定的数据; 3) covering the content of the related information of the data object, such as: 3-1) writing all the bits of the related information of the data object to 1; or 3-2) writing all the bits of the related information of the data object to 0; or 3-3 Writing relevant information of the data object to the random data; or 3-4) writing the related information of the data object to the data specified by the user;
4)删除数据对象的相关信息;  4) delete the relevant information of the data object;
5 )或者其他将数据对象的相关信息不可展现原来信息的方法。  5) Or other methods of not displaying the relevant information of the data object.
步骤 304, 网络存储装置向用户发送擦除数据对象的相关信息响应。  Step 304: The network storage device sends a related information response of the erased data object to the user.
具体地, 所述擦除数据对象的相关信息响应包括下列信息的一种或者多 种: 1 )被擦除的数据对象的相关信息的数量, 例如: 被擦除的数据对象的元 数据条数, 被擦除的数据对象的副本 /镜像数量; Specifically, the related information response of the erased data object includes one or more of the following information: 1) the number of pieces of related information of the erased data object, for example: the number of metadata of the erased data object, the number of copies/mirrors of the erased data object;
2 )被擦除的数据对象的相关信息的创建时间, 例如: 被擦除的数据对象 历史版本时间创建时间;  2) The creation time of the related information of the erased data object, for example: the erased data object history version time creation time;
3 )被擦除的数据对象的相关信息的版本信息;  3) version information of related information of the erased data object;
4 )被擦除的数据对象的相关信息的标识, 例如: 被擦除的数据对象副本 标识, 被擦除的数据对象镜像标识, 被擦除的数据对象历史版本标识;  4) identification of the relevant information of the erased data object, for example: the erased data object copy identifier, the erased data object image identifier, the erased data object history version identifier;
5 )擦除成功或者擦除失败的描述信息;  5) description information of successful erasure or erasure failure;
6 )系统认为能够帮助用户更清楚了解擦除数据对象的相关信息操作的其 他信息。  6) The system believes that it can help the user to have a clearer understanding of other information about the operation of the related information of the erased data object.
另外, 在上述步骤 303进行的过程中, 网络存储装置还可以向用户发送 擦除数据对象相关信息进展通知, 该擦除数据对象相关信息进展通知包括下 列信息的一种或者多种: 1 ) 已经完成的动作, 例如: 擦除数据对象相关信息 操作已经完成; 2 )正在进行的动作, 例如: 正在擦除数据对象相关信息; 3 ) 擦除数据对象相关信息操作完成百分比; 4 )完成擦除数据对象相关信息操作 还需要的时间。  In addition, in the process performed in the foregoing step 303, the network storage device may further send an erasure data object related information progress notification to the user, and the erasure data object related information progress notification includes one or more of the following information: 1) Completed actions, such as: Erase data object related information operation has been completed; 2) ongoing actions, such as: erasing data object related information; 3) erasing data object related information operation completion percentage; 4) erasing completion The time required for data object related information operations.
同时, 为了避免纠纷或者备案, 网络存储装置可以将下列信息的一种或 者多种记录在日志当中: 1 ) 收到数据对象相关信息擦除请求; 2 )擦除数据 对象相关信息的动作; 3 )擦除数据对象相关信息的时间; 4 )擦除数据对象 相关信息的结果。  At the same time, in order to avoid disputes or filing, the network storage device may record one or more of the following information in the log: 1) receiving a data object related information erasure request; 2) erasing the data object related information; 3 The time at which the data object related information is erased; 4) the result of erasing the data object related information.
图 4 为本发明实施例四提供的数据擦除方法的信息交互图。 该实施例提 供的数据擦除方法实现了用户请求擦除数据对象, 网络存储装置根据用户请 求擦除了数据对象和数据对象的相关信息。 在本发明实施例中擦除请求具体 为擦除数据对象请求, 第一数据具体为数据对象, 以及数据对象的相关信息。 如图所述, 本发明实施例具体包括以下步骤:  FIG. 4 is an information interaction diagram of a data erasing method according to Embodiment 4 of the present invention. The data erasing method provided by this embodiment enables the user to request to erase the data object, and the network storage device erases the related information of the data object and the data object according to the user request. In the embodiment of the present invention, the erasure request is specifically an erasure data object request, and the first data is specifically a data object, and related information of the data object. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 401 ,网络存储装置接收用户发送的携带有数据的标识信息的擦除请 求, 该数据的标识信息包括用户存储的数据对象的指示信息。 该用户存储的 数据对象的指示信息的具体形式可参考步骤 201中介绍, 此处不在赘述。 Step 401: The network storage device receives the erasure request of the identifier information carried by the user and carries the data. The identification information of the data includes indication information of a data object stored by the user. For the specific form of the indication information of the data object stored by the user, refer to the description in step 201, which is not described here.
步骤 402 ,网络存储装置根据用户存储的数据对象的指示信息确定用户存 储在网络存储装置中的数据对象。 其中, 如何确定用户存储在网络存储装置 中的数据对象的过程可参考步骤 202中介绍, 此处不再赘述。  Step 402: The network storage device determines, according to the indication information of the data object stored by the user, the data object stored by the user in the network storage device. The process of determining the data object stored by the user in the network storage device may be referred to in step 202, and details are not described herein.
步骤 403 ,网络存储装置网络存储装置擦除用户存储在网络存储装置中的 数据对象。 其中, 擦除数据对象的方式可参考步骤 203 中介绍, 此处不再赘 述。 步骤 404 , 网络存储装置根据用户存储在网络存储装置中的数据对象的指 示信息, 确定用户存储的数据对象的相关信息。 其中, 用户存储的数据对象 的相关信息包括以下信息中的一种或者几种: 用于恢复用户存储在网络存储 装置中的数据对象的副本、 快照、 镜像或者版本信息; 或者, 用于描述用户 存储在网络存储装置中的数据对象的内容的信息; 或者, 用户存储在网络存 储装置中的数据对象的隐私信息。  Step 403: The network storage device network storage device erases the data object stored by the user in the network storage device. For the method of erasing data objects, refer to the description in step 203, which is not mentioned here. Step 404: The network storage device determines related information of the data object stored by the user according to the indication information of the data object stored by the user in the network storage device. The information related to the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror, or a version information of the data object used to restore the user stored in the network storage device; or, used to describe the user Information of the content of the data object stored in the network storage device; or privacy information of the data object stored by the user in the network storage device.
具体地, 网络存储装置根据用户存储在网络存储装置中的数据对象的指 示信息, 确定用户存储的数据对象的相关信息的方法可以是下列方法的一种 或者多种:  Specifically, the method for determining, by the network storage device, the related information of the data object stored by the user according to the indication information of the data object stored by the user in the network storage device may be one or more of the following methods:
1 ) 当用户存储在网络存储装置中的数据对象的指示信息为数据对象标 识, 则网络存储装置将与该数据对象标识相关的数据对象的相关信息确定为 第一数据;  1) when the indication information of the data object stored by the user in the network storage device is the data object identifier, the network storage device determines the related information of the data object related to the data object identifier as the first data;
2 )如果用户存储在网络存储装置中的数据对象的指示信息为文件夹标 识, 则网络存储装置网将与该文件夹标识相关的数据对象的相关信息确定为 第一数据;  2) if the indication information of the data object stored by the user in the network storage device is a folder identifier, the network storage device network determines the related information of the data object related to the folder identifier as the first data;
3 )如果用户存储在网络存储装置中的数据对象的指示信息为用户账户标 识, 则网络存储装置将与该用户账户标识相关的数据对象的相关信息确定为 第一数据;  3) if the indication information of the data object stored by the user in the network storage device is the user account identifier, the network storage device determines the related information of the data object related to the user account identifier as the first data;
步骤 405 , 网络存储装置擦除用户存储的数据对象的相关信息。 具体地, 数据对象的相关信息包括下列信息的一种或者多种:Step 405: The network storage device erases related information of the data object stored by the user. Specifically, the related information of the data object includes one or more of the following information:
1 ) 可以用来恢复数据对象的信息, 如: 1-1 )数据对象副本; 或者 1-2 ) 数据对象快照; 或者 1-3 )数据对象镜像; 或者 1-4 )数据对象历史版本标识;1) Information that can be used to recover data objects, such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object;
2 )描述数据对象内容的信息, 如数据对象内容的描述标签; 或者 2) information describing the content of the data object, such as a description tag of the content of the data object; or
3 )数据对象的隐私信息, 如: 3-1 )数据对象所属用户的隐私信息; 或 者 3-2 )数据对象涉及的用户的隐私信息。  3) The privacy information of the data object, such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
另外, 擦除数据对象的相关信息的方法可以是下列方法的一种或者多种: In addition, the method of erasing related information of the data object may be one or more of the following methods:
1 )破坏数据对象的相关信息, 使数据对象的相关信息无法读取, 或者无 法显示; 1) destroying the related information of the data object, making the related information of the data object unreadable or unable to display;
2 )删除数据对象的相关信息的内容, 将数据对象的相关信息置空; 2) deleting the content of the related information of the data object, and blanking the relevant information of the data object;
3 )覆盖数据对象的相关信息的内容, 如: 3-1 )将数据对象的相关信息 所有比特位写成 1 ; 或者 3-2 )将数据对象的相关信息所有比特位写成 0; 或 者 3-3 )将数据对象的相关信息写入随机数据; 或者 3-4 )将数据对象的相关 信息写入用户指定的数据; 3) covering the content of the related information of the data object, such as: 3-1) writing all the bits of the related information of the data object to 1; or 3-2) writing all the bits of the related information of the data object to 0; or 3-3 Writing relevant information of the data object to the random data; or 3-4) writing the related information of the data object to the data specified by the user;
4 )删除数据对象的相关信息;  4) delete the relevant information of the data object;
5 )其他将数据对象的相关信息不可展现原来信息的方法。  5) Other methods of not displaying the relevant information of the data object.
上述步骤 402中确定的第一数据为数据对象, 步骤 403是擦除数据对象, 而步骤 404 中确定的第一数据为数据对象的相关信息, 步骤 403是擦除数据 对象的相关信息。 其中, 执行步骤 402和步骤 403 , 和执行步骤 404和步骤 405没有时间的先后顺序限制, 可以以任何顺序执行, 也可以同时进行。  The first data determined in the above step 402 is a data object, the step 403 is to erase the data object, and the first data determined in the step 404 is related information of the data object, and the step 403 is to erase the related information of the data object. Wherein, step 402 and step 403 are performed, and steps 404 and 405 are performed without time limit, and may be performed in any order or simultaneously.
步骤 406 , 网络存储装置向用户发送擦除数据对象响应。  Step 406: The network storage device sends an erase data object response to the user.
具体地, 擦除数据对象响应可以包括下列信息的一种或者多种:  Specifically, the erase data object response may include one or more of the following information:
1 )被擦除的数据对象的标识, 例如数据对象的标识; 或者  1) the identity of the data object being erased, such as the identity of the data object; or
2 )被擦除的文件夹的标识; 或者  2) the identity of the folder being erased; or
3 )被擦除的用户账户的标识; 或者  3) the identity of the user account being erased; or
2 )擦除数据对象的时间; 或者 3 )被擦除的数据对象的内容; 或者 2) the time to erase the data object; or 3) the content of the data object being erased; or
4 )擦除成功或者擦除失败的描述信息。  4) Descriptive information of successful erasure or erasure failure.
另外, 擦除数据对象响应还可以包括下列信息的一种或者多种:  In addition, the erase data object response may also include one or more of the following information:
1 )被擦除的数据对象相关信息的数量, 例如: 被擦除的数据对象的元数 据条数, 被擦除的数据对象的副本 /镜像数量;  1) the number of data object related information being erased, for example: the number of metadata of the erased data object, the number of copies/mirrors of the erased data object;
2 )被擦除的数据对象相关信息的创建时间, 例如: 被擦除的数据对象历 史版本时间创建时间;  2) The creation time of the data object related information to be erased, for example: the erased data object history version time creation time;
3 )被擦除的数据对象相关信息的版本信息;  3) version information of the information related to the erased data object;
4 )被擦除的数据对象相关信息的标识, 例如: 被擦除的数据对象副本标 识, 被擦除的数据对象镜像标识, 被擦除的数据对象历史版本标识;  4) identification of the information related to the erased data object, for example: the erased data object copy identification, the erased data object image identifier, the erased data object history version identifier;
5 )擦除成功或者擦除失败的描述信息;  5) description information of successful erasure or erasure failure;
6 )系统认为能够帮助用户更清楚了解擦除数据对象相关信息操作的其他 信息。  6) The system believes that it can help the user to have a clearer understanding of other information about the operation of erasing data object related information.
另外, 在上述步骤 402和步骤 403进行的过程中, 网络存储装置还可以 向用户发送擦除数据对象进展通知, 该擦除数据对象进展通知包括下列信息 的一种或者多种: 1 ) 已经完成的动作, 例如: 已经擦除的数据对象, 已经擦 除的数据对象相关信息; 2 )正在进行的动作, 例如: 正在擦除的数据对象, 正在擦除的数据对象相关信息; 3 )擦除数据对象操作完成百分比; 4 )擦除 数据对象相关信息操作完成百分比; 5 )完成擦除数据对象操作还需要的时间; 6 ) 完成擦除数据对象相关信息操作还需要的时间。  In addition, during the foregoing steps 402 and 403, the network storage device may further send an erasure data object progress notification to the user, the erasure data object progress notification including one or more of the following information: 1) Completed Actions, such as: data objects that have been erased, information about data objects that have been erased; 2) ongoing actions, such as: data objects being erased, data object related information being erased; 3) erasing The percentage of data object operation completion; 4) the percentage of operations completed to erase data object related information; 5) the time required to complete the operation of erasing data objects; 6) the time required to complete the operation of erasing data object related information.
同时, 为了避免纠纷或者备案, 网络存储装置可以将下列信息的一种或 者多种记录在日志当中: 1 ) 收到数据对象擦除请求; 2 )擦除数据对象的动 作; 3 )擦除数据对象相关信息的动作; 4 )擦除数据对象的时间; 5 )擦除数 据对象相关信息的时间; 6 )擦除数据对象的结果; 7 )擦除数据对象相关信 息的结果。  At the same time, in order to avoid disputes or filing, the network storage device may record one or more of the following information in the log: 1) receiving a data object erasure request; 2) erasing the data object; 3) erasing the data The action of the object related information; 4) the time of erasing the data object; 5) the time of erasing the data object related information; 6) the result of erasing the data object; 7) the result of erasing the data object related information.
图 5 为本发明实施例五提供的数据擦除方法的信息交互图。 该实施例提 供的数据擦除方法实现了用户请求擦除数据对象和用户指定的数据对象相关 信息, 网络存储装置根据用户请求擦除了数据对象和用户指定的数据对象相 关信息。 在本发明实施例中擦除请求具体为擦除数据对象请求, 第一数据具 体为数据对象, 以及用户指定的数据对象的相关信息。 如图所述, 本发明实 施例具体包括以下步骤: FIG. 5 is an information interaction diagram of a data erasing method according to Embodiment 5 of the present invention. This embodiment mentions The provided data erasing method implements the user requesting to erase the data object and the user-specified data object related information, and the network storage device erases the data object and the user-specified data object related information according to the user request. In the embodiment of the present invention, the erasure request is specifically an erasure data object request, and the first data is specifically a data object, and related information of the data object specified by the user. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 501 ,网络存储装置接收用户发送的携带有数据的标识信息的擦除数 据对象请求, 该数据的标识信息包括用户存储的数据对象的指示信息和用户 存储的数据对象的相关信息的标识。 其中, 用户存储的数据对象的相关信息 的标识是用户预先指定的。  Step 501: The network storage device receives an erase data object request that is sent by the user and carries the identifier information of the data, where the identifier information of the data includes the indication information of the data object stored by the user and the identifier of the related information of the data object stored by the user. The identifier of the related information of the data object stored by the user is specified by the user in advance.
具体地, 该用户存储的数据对象的指示信息包括下列信息的一种或多种: Specifically, the indication information of the data object stored by the user includes one or more of the following information:
1 )数据对象的标识; 其中数据对象可以是文档、 图片、 视频、 音频、 应 用程序产生的数据、 压缩文件、 备份数据、 归档数据等, 数据对象的标识可 以是唯一指定数据对象的 URL; 或者 1) the identifier of the data object; wherein the data object may be a document, a picture, a video, an audio, an application generated data, a compressed file, a backup data, an archive data, etc., and the identifier of the data object may be a URL specifying the data object; or
2 )文件夹的标识; 或者  2) the identity of the folder; or
3 )用户账户的标识; 或者  3) the identity of the user account; or
4 )擦除请求标识, 用来告诉网络存储装置用户希望对所述数据对象进行 擦除动作。 该擦除请求标识可以是: 4-1 ) 消息名, 例如: 用 Era se消息名来 代表擦除请求标识; 4-2 ) 消息中的一个字段, 例如: 在现有消息头中增加一 个指示擦除的头域, 或者在现有消息命令行中增加一个参数; 4-3 ) 消息中的 一个参数, 例如: 在现有消息体中增加一个指示擦除参数。  4) An erase request identifier for instructing the network storage device user to desire to erase the data object. The erasure request identifier may be: 4-1) a message name, for example: using an Era se message name to represent an erasure request identifier; 4-2) a field in the message, for example: adding an indication to an existing message header Erase the header field, or add a parameter to the existing message command line; 4-3) A parameter in the message, for example: Add an indicator to the existing message body to indicate the erase parameter.
步骤 502 , 网络存储装置根据用户存储的数据对象的指示信息, 确定用户 存储在所述网络存储装置中的数据对象, 且根据用户存储的数据对象的相关 信息的标识, 确定用户存储的数据对象的相关信息。  Step 502: The network storage device determines, according to the indication information of the data object stored by the user, the data object stored by the user in the network storage device, and determines the data object stored by the user according to the identifier of the related information of the data object stored by the user. Related Information.
具体地, 如果用户存储的数据对象的指示信息为数据对象的标识, 则用 户存储在网络存储装置中的数据对象即第一数据为该数据对象的标识对应的 数据对象。 如果用户存储的数据对象的指示信息为文件夹的标识, 则用户存 储在网络存储装置中的数据对象即第一数据为该文件夹标识对应的文件夹中 的数据对象。 如果用户存储的数据对象的指示信息为用户账户的标识, 则用 户存储在网络存储装置中的数据对象即第一数据为用户账户标识对应的用户 账户中的数据对象。 Specifically, if the indication information of the data object stored by the user is the identifier of the data object, the data object stored by the user in the network storage device, that is, the first data is a data object corresponding to the identifier of the data object. If the indication information of the data object stored by the user is the identifier of the folder, the user saves The data object stored in the network storage device, that is, the first data is a data object in the folder corresponding to the folder identifier. If the indication information of the data object stored by the user is the identifier of the user account, the data object stored by the user in the network storage device, that is, the first data is the data object in the user account corresponding to the user account identifier.
另外, 上述第一数据中还包括根据用户存储的数据对象的相关信息的标 识, 确定的用户存储的数据对象的相关信息, 该用户存储的数据对象的相关 信息是用户指定删除的数据对象的相关信息。  In addition, the foregoing first data further includes related information of the data object stored by the user according to the identifier of the related information of the data object stored by the user, and the related information of the data object stored by the user is related to the data object specified by the user. information.
其中, 用户存储的数据对象的相关信息可以是:  The related information of the data object stored by the user may be:
1 ) 可以用来恢复数据对象的信息, 如: 1-1 )数据对象副本; 或者 1-2 ) 数据对象快照; 或者 1-3 )数据对象镜像; 或者 1-4 )数据对象历史版本标识; 1) Information that can be used to recover data objects, such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object;
2 )描述数据对象内容的信息, 如数据对象内容的描述标签; 或者 2) information describing the content of the data object, such as a description tag of the content of the data object; or
3 )数据对象的隐私信息, 如: 3-1 )数据对象所属用户的隐私信息; 或 者 3-2 )数据对象涉及的用户的隐私信息。  3) The privacy information of the data object, such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
还有, 待擦除的数据对象相关信息标识可以为:  Also, the data object related information identifier to be erased may be:
1 ) URL , 用来标识数据对象相关信息;  1) URL, used to identify data object related information;
2 )描述标识, 用来描述数据对象相关信息。  2) Description identifier, used to describe data object related information.
步骤 503 , 网络存储装置擦除用户存储在网络存储装置中的数据对象。 步骤 504 ,网络存储装置擦除用户的存储在网络存储装置中的数据对象的 相关信息。 其中, 用户的存储的数据对象的相关信息是用户指定擦除的数据 对象相关信息。  Step 503: The network storage device erases the data object stored by the user in the network storage device. Step 504: The network storage device erases related information of the data object of the user stored in the network storage device. The related information of the stored data object of the user is related information of the data object specified by the user.
具体地, 网络存储装置用户的存储的数据对象的相关信息具体方法可以 是下列方法的一种或者多种:  Specifically, the specific method for the related information of the stored data object of the network storage device user may be one or more of the following methods:
上述步骤 503和步骤 504没有时间的先后顺序限制, 可以以任何顺序执 行, 也可以同时进行。  The above steps 503 and 504 have no time limit, and can be executed in any order, or simultaneously.
步骤 505 , 网络存储装置向用户发送擦除数据对象响应。 该步骤与步骤 Step 505: The network storage device sends an erase data object response to the user. The steps and steps
406相同, 在这里不再赘述。 另外, 在上述步骤 503和步骤 504进行的过程中, 网络存储装置还可以 向用户发送擦除数据对象进展通知, 该擦除数据对象进展通知包括下列信息 的一种或者多种: 1 ) 已经完成的动作, 例如: 已经擦除的数据对象, 已经擦 除的数据对象相关信息; 2 )正在进行的动作, 例如: 正在擦除的数据对象, 正在擦除的数据对象相关信息; 3 )擦除数据对象操作完成百分比; 4 )擦除 数据对象相关信息操作完成百分比; 5 )完成擦除数据对象操作还需要的时间; 6 ) 完成擦除数据对象相关信息操作还需要的时间。 The same is true for 406, and will not be described here. In addition, during the foregoing steps 503 and 504, the network storage device may further send an erasure data object progress notification to the user, the erasure data object progress notification including one or more of the following information: 1) Completed Actions, such as: data objects that have been erased, information about data objects that have been erased; 2) ongoing actions, such as: data objects being erased, data object related information being erased; 3) erasing The percentage of data object operation completion; 4) the percentage of operations completed to erase data object related information; 5) the time required to complete the operation of erasing data objects; 6) the time required to complete the operation of erasing data object related information.
同时, 为了避免纠纷或者备案, 网络存储装置可以将下列信息的一种或 者多种记录在日志当中: 1 ) 收到数据对象擦除请求; 2 )擦除数据对象的动 作; 3 )擦除数据对象相关信息的动作; 4 )擦除数据对象的时间; 5 )擦除数 据对象相关信息的时间; 6 )擦除数据对象的结果; 7 )擦除数据对象相关信 息的结果。  At the same time, in order to avoid disputes or filing, the network storage device may record one or more of the following information in the log: 1) receiving a data object erasure request; 2) erasing the data object; 3) erasing the data The action of the object related information; 4) the time of erasing the data object; 5) the time of erasing the data object related information; 6) the result of erasing the data object; 7) the result of erasing the data object related information.
图 6为本发明实施例六提供的查询方法的信息交互图。 该实施例提供的 数据擦除方法实现了用户查询数据对象相关信息。 如图所述, 本发明实施例 具体包括以下步骤:  FIG. 6 is an information interaction diagram of a query method according to Embodiment 6 of the present invention. The data erasing method provided by this embodiment enables the user to query data object related information. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 601 , 网络存储装置接收用户发送的查询用户数据相关信息的请求。 其中, 该查询用户数据相关信息的请求携带数据的标识信息。 数据的标识信 息可以包括数据对象的标识信息, 也可以包括数据对象相关信息的标识信息, 还可以包括数据对象的标识信息和数据对象相关信息的标识信息。  Step 601: The network storage device receives a request sent by the user to query related information of the user data. The request for querying the user data related information carries the identification information of the data. The identification information of the data may include the identification information of the data object, the identification information of the data object related information, and the identification information of the data object and the identification information of the data object related information.
步骤 602 , 网络存储装置根据数据的标识信息,确定数据的标识信息相关 的第二数据, 该第二数据包括用户存储的数据对象的指示信息和 /或用户存储 的数据对象的相关信息的标识。 其中, 用户存储的数据对象的指示信息包括 下列信息的一种或多种: 数据对象的标识、 文件夹的标识、 用户账户的标识。 用户存储的数据对象的相关信息包括以下信息中的一种或者几种: 用于恢复 用户存储在网络存储装置中的数据对象的副本、 快照、 镜像或者版本信息; 用于描述用户存储在网络存储装置中的数据对象的内容的信息; 或者用户存 储在网络存储装置中的数据对象的隐私信息。 Step 602: The network storage device determines, according to the identifier information of the data, second data related to the identifier information of the data, where the second data includes indication information of the data object stored by the user and/or identifier of related information of the data object stored by the user. The indication information of the data object stored by the user includes one or more of the following information: an identifier of the data object, an identifier of the folder, and an identifier of the user account. The related information of the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror or a version information of the data object used to restore the user stored in the network storage device; used to describe the user stored in the network storage Information about the content of the data object in the device; or user save Privacy information of data objects stored in a network storage device.
具体地,用户存储的数据对象的相关信息包括下列信息的一种或者多种: Specifically, the related information of the data object stored by the user includes one or more of the following information:
I )数据对象副本数量; I) the number of copies of the data object;
2)数据对象副本所储存的地理位置;  2) the geographical location where the copy of the data object is stored;
3)数据对象的元数据;  3) metadata of the data object;
4)数据对象快照标识;  4) data object snapshot identifier;
5)数据对象镜像标识;  5) data object image identifier;
6)数据对象快照的数量;  6) the number of data object snapshots;
7)数据对象镜像的数量;  7) the number of data object images;
8 )数据对象快照的创建时间;  8) The creation time of the data object snapshot;
9)数据对象镜像的创建时间;  9) The creation time of the data object image;
10)数据对象快照的创建者;  10) the creator of the data object snapshot;
II )数据对象镜像的创建者;  II) the creator of the data object image;
12)数据对象历史版本的标识;  12) an identification of the historical version of the data object;
13)数据对象历史版本的数量;  13) the number of historical versions of the data object;
14)数据对象历史版本的形成时间;  14) the formation time of the historical version of the data object;
15 )其他系统保存的可以恢复数据对象的信息;  15) information saved by other systems that can recover data objects;
16)其他用户隐私相关的信息。  16) Other user privacy related information.
步骤 603, 网络存储装置向用户发送携带有第二数据的查询响应消息。 具体地, 该查询响应消息携带的包含副本在内的一种或者多种信息, 包 括:  Step 603: The network storage device sends a query response message carrying the second data to the user. Specifically, the query response message carries one or more pieces of information including a copy, including:
1 )数据对象标识; 或者  1) the data object identifier; or
2)数据对象内容; 或者  2) data object content; or
3) 副本数量; 或者  3) the number of copies; or
4) 副本所储存的地理位置; 或者 6 )数据对象快照 /镜像的标识; 或者 4) the geographical location in which the copy is stored; or 6) the identifier of the data object snapshot/mirror; or
7 )数据对象快照 /镜像的数量; 或者  7) the number of data object snapshots/mirrors; or
8 )数据对象快照 /镜像的创建时间; 或者  8) data object snapshot / mirror creation time; or
9 )数据对象快照 /镜像的创建者; 或者  9) the creator of the data object snapshot/mirror; or
10 )数据对象历史版本的标识; 或者  10) the identity of the historical version of the data object; or
11 )数据对象历史版本的数量; 或者  11) the number of historical versions of the data object; or
12 )数据对象历史版本的形成时间; 或者  12) the formation time of the historical version of the data object; or
1 3 )其他系统保存的可以恢复数据对象的信息; 或者  1 3) information saved by other systems that can recover data objects; or
14 )其他用户隐私相关的信息。  14) Other user privacy related information.
步骤 604 , 网络存储装置接收用户发送的携带有第二数据的擦除请求。其 中, 第二数据包括用户存储的数据对象的指示信息和 /或用户存储的数据对象 的相关信息的标识。  Step 604: The network storage device receives an erasure request that is sent by the user and carries the second data. The second data includes indication information of the data object stored by the user and/or an identifier of the related information of the data object stored by the user.
另外, 该实施例六提供的查询方法可以结合应用在实施例一至实施例五 所示数据擦除方法之前或者之后。  In addition, the query method provided in the sixth embodiment can be applied before or after the data erasing method shown in the first embodiment to the fifth embodiment.
图 7为本发明实施例七提供的数据擦除方法的信息交互图。 该实施例提 供的数据擦除方法实现了用户请求擦除数据对象, 网络存储装置待用户确认 后擦除数据对象。 由于擦除操作之后, 数据对象以及数据对象相关信息将有 可能无法恢复, 因此网络存储装置可以在收到用户发送的擦除请求之后向 用户发送确认请求, 请用户再次确认是否确实需要擦除数据对象以及数据 对象相关信息。 如图所述, 本发明实施例具体包括以下步骤:  FIG. 7 is an information interaction diagram of a data erasing method according to Embodiment 7 of the present invention. The data erasing method provided by this embodiment enables the user to request to erase the data object, and the network storage device erases the data object after the user confirms. Since the data object and the data object related information may not be recovered after the erase operation, the network storage device may send a confirmation request to the user after receiving the erase request sent by the user, and the user is required to confirm whether the data needs to be erased again. Object and data object related information. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 701 , 网络存储装置接收擦除请求, 该擦除请求携带有数据的标识信 息。 其中, 网络存储装置可能接收用户发送的擦除请求,也可能接收用户代理 发送的擦除请求, 还可能接受监管机构发送的擦除请求。 数据的标识信息可 以包括用户存储的数据对象的指示信息; 也可以包括用户的数据的标识信息, 该用户的数据对象的标识信息包括用户存储的数据对象的相关信息的标识; 还可以包括用户存储的数据对象的指示信息和用户存储的数据对象的相关信 息的标识。 另外, 擦除请求还可以携带擦除请求标识, 该擦除请求标识用于 通知网络存储装置用户希望对相关数据进行擦除。 Step 701: The network storage device receives an erasure request, where the erasure request carries identification information of the data. The network storage device may receive an erase request sent by the user, may also receive an erase request sent by the user agent, and may also receive an erase request sent by the regulatory authority. The identification information of the data may include the indication information of the data object stored by the user; the identification information of the data of the user may be included, and the identification information of the data object of the user includes the identifier of the related information of the data object stored by the user; Information about the data object and related information stored by the user Identification of interest. In addition, the erasure request may also carry an erasure request identifier for notifying the network storage device user that the relevant data is desired to be erased.
具体地, 用户存储的数据对象的指示信息包括下列信息的一种或多种: Specifically, the indication information of the data object stored by the user includes one or more of the following information:
1 )数据对象的标识; 其中数据对象可以是文档、 图片、 视频、 音频、 应 用程序产生的数据、 压缩文件、 备份数据、 归档数据等, 数据对象的标识可 以是唯一指定数据对象的 URL; 或者 1) the identifier of the data object; wherein the data object may be a document, a picture, a video, an audio, an application generated data, a compressed file, a backup data, an archive data, etc., and the identifier of the data object may be a URL specifying the data object; or
2 )文件夹的标识; 或者  2) the identity of the folder; or
3 )用户账户的标识; 或者  3) the identity of the user account; or
另外, 擦除请求标识可以是: 4-1 ) 消息名, 例如: 用 Era se消息名来代 表擦除请求标识; 4-2 ) 消息中的一个字段, 例如: 在现有消息头中增加一个 指示擦除的头域, 或者在现有消息命令行中增加一个参数; 4-3 )消息中的一 个参数, 例如: 在现有消息体中增加一个指示擦除参数。  In addition, the erasure request identifier may be: 4-1) a message name, for example: using an Era se message name to represent the erasure request identifier; 4-2) a field in the message, for example: adding one to the existing message header Indicates the header field of the erasure, or adds a parameter to the existing message command line; 4-3) A parameter in the message, for example: Add an indicator to the existing message body to indicate the erasure parameter.
步骤 702 , 网络存储装置确定与数据的标识信息相关的第一数据。  Step 702: The network storage device determines first data related to the identification information of the data.
具体地, 当数据的标识信息为数据对象的标识信息, 则确定的第一数据 是与数据对象的标识信息相关的数据; 当数据的标识信息为数据对象相关信 息的标识信息, 则确定的第一数据是与数据对象相关信息的标识信息相关的 数据; 当数据的标识信息为数据对象的标识信息和数据对象相关信息的标识 信息, 则确定的第一数据是与数据对象的标识信息和数据对象相关信息的标 识信息相关的数据。  Specifically, when the identification information of the data is the identification information of the data object, the determined first data is data related to the identification information of the data object; when the identification information of the data is the identification information of the data object related information, the determined The data is data related to the identification information of the data object related information; when the identification information of the data is the identification information of the data object and the identification information of the data object related information, the determined first data is the identification information and data of the data object. Data related to the identification information of the object related information.
当数据的标识信息为用户存储的数据对象的相关信息的标识时, 网络存 储装置根据用户存储的数据对象的相关信息的标识, 确定用户存储的数据对 象的相关信息即第一数据。  When the identification information of the data is the identifier of the related information of the data object stored by the user, the network storage device determines the related information of the data object stored by the user, that is, the first data, according to the identifier of the related information of the data object stored by the user.
其中, 数据对象的相关信息包括下列信息的一种或者多种: :  The related information of the data object includes one or more of the following information:
1 ) 可以用来恢复数据对象的信息, 如: 1-1 )数据对象副本; 或者 1-2 ) 数据对象快照; 或者 1-3 )数据对象镜像; 或者 1-4 )数据对象历史版本标识; 1) Information that can be used to recover data objects, such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object;
2 )描述数据对象内容的信息, 如数据对象内容的描述标签; 或者 3 )数据对象的隐私信息, 如: 3-1 )数据对象所属用户的隐私信息; 或 者 3-2 )数据对象涉及的用户的隐私信息。 2) information describing the content of the data object, such as a description tag of the content of the data object; or 3) The privacy information of the data object, such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
步骤 703 , 网络存储装置向用户发送擦除第一数据的确认请求, 其中确认 请求用于提醒所述用户获知擦除第一数据的操作。 其中, 擦除第一数据的确 认请求中还包括第一数据的呈现信息, 所述呈现信息用于指示第一数据包括 的数据对象、 数据内容或者数据范围。  Step 703: The network storage device sends a confirmation request for erasing the first data to the user, where the confirmation request is used to remind the user to learn to erase the first data. The acknowledgement request for erasing the first data further includes presence information of the first data, where the presence information is used to indicate a data object, a data content, or a data range included in the first data.
具体地, 该擦除第一数据的确认请求可以包括数据对象的相关信息, 还 可以包括提醒信息, 提醒用户, 用以用户获知确认擦除数据对象请求后, 将 导致擦除数据对象内容和数据对象相关信息, 请用户确认是否继续擦除数据 对象操作。 其中, 所述数据对象的相关信息包括下列信息的一种或者多种: Specifically, the confirmation request for erasing the first data may include related information of the data object, and may further include reminding information to remind the user that after the user learns to confirm the request to erase the data object, the content and data of the data object are erased. For the object related information, please confirm whether to continue to erase the data object operation. The related information of the data object includes one or more of the following information:
1 ) 可以用来恢复数据对象的信息, 如: 1-1 )数据对象副本; 或者 1-2 ) 数据对象快照; 或者 1-3 )数据对象镜像; 或者 1-4 )数据对象历史版本标识;1) Information that can be used to recover data objects, such as: 1-1) a copy of the data object; or 1-2) a snapshot of the data object; or 1-3) a mirror of the data object; or 1-4) a historical version identifier of the data object;
2 )描述数据对象内容的信息, 如数据对象内容的描述标签; 或者 2) information describing the content of the data object, such as a description tag of the content of the data object; or
3 )数据对象的隐私信息, 如: 3-1 )数据对象所属用户的隐私信息; 或 者 3-2 )数据对象涉及的用户的隐私信息。  3) The privacy information of the data object, such as: 3-1) the privacy information of the user to which the data object belongs; or 3-2) the privacy information of the user involved in the data object.
步骤 704 , 网络存储装置接收用户发送的确认请求的响应消息; 以及, 根 据响应消息确定是否执行擦除第一数据的操作。 该步骤中的确认请求的响应 消息与步骤 703 的确认请求相应的, 确认请求的响应消息还包括用户根据第 一数据的呈现信息所选择的第一数据的数据对象、 数据内容或者数据范围。  Step 704: The network storage device receives a response message of the confirmation request sent by the user, and determines, according to the response message, whether to perform the operation of erasing the first data. The response message of the confirmation request in this step corresponds to the confirmation request of step 703, and the response message of the confirmation request further includes the data object, the data content or the data range of the first data selected by the user according to the presentation information of the first data.
具体地, 该确认请求的响应消息包括: 继续擦除数据对象操作标识; 确 认请求的响应消息还可以包括数据对象相关信息标识, 用于指定用户希望擦 除的数据对象相关信息。  Specifically, the response message of the confirmation request includes: continuing to erase the data object operation identifier; and the response message confirming the request may further include a data object related information identifier for specifying data object related information that the user wishes to erase.
步骤 705 , 网络存储装置擦除第一数据中的数据对象。 其中, 擦除数据对 象的方法可以是:  Step 705: The network storage device erases the data object in the first data. Wherein, the method of erasing the data object can be:
1 )破坏数据对象的内容, 使数据对象内容无法读取, 或者无法显示; 或 者 2)删除数据对象的内容, 将数据对象内容置空; 或者 1) destroy the content of the data object, make the data object content unreadable, or can not be displayed; or 2) delete the contents of the data object, and empty the contents of the data object; or
3 )覆盖数据对象的内容, 比如:  3) Overwrite the contents of the data object, such as:
3-1 )将数据对象的内容所有比特位写成 1; 或者  3-1) Write all bits of the contents of the data object as 1; or
3-2)将数据对象的内容所有比特位写成 0; 或者  3-2) Write all bits of the contents of the data object to 0; or
3-3)将数据对象的内容写入随机数据; 或者  3-3) writing the contents of the data object to the random data; or
3-4 )将数据对象的内容写入用户指定的数据。  3-4) Write the contents of the data object to the data specified by the user.
4)其他使数据对象内容不可展现原来信息的方法。  4) Other methods for making the data object content unable to display the original information.
步骤 706, 网络存储装置擦除第一数据中的数据对象相关信息。 其中, 擦 除数据对象相关信息的方法可以是:  Step 706: The network storage device erases data object related information in the first data. The method for erasing related information of the data object may be:
1 )破坏数据对象相关信息,使数据对象的相关信息无法读取,或者显示; 或者  1) destroying the data object related information, so that the related information of the data object cannot be read or displayed; or
2)删除数据对象相关信息的内容, 将数据对象相关信息置空; 或者 2) delete the content of the data object related information, and empty the data object related information; or
3)覆盖数据对象相关信息的内容, 如: 3-1 )将数据对象的相关信息所 有比特位写成 1; 或者 3-2)将数据对象的相关信息所有比特位写成 0; 或者 3-3)将数据对象的相关信息写入随机数据; 或者 3-4)将数据对象的相关信 息写入用户指定的数据; 3) Covering the content of the data object related information, such as: 3-1) writing all the bits of the data object related information to 1; or 3-2) writing all the bits of the data object related information to 0; or 3-3) Write related information of the data object to the random data; or 3-4) write the relevant information of the data object into the data specified by the user;
4)删除数据对象相关信息;  4) Delete data object related information;
5 )或者其他将数据对象相关信息不可展现原来信息的方法。  5) or other methods that do not reveal the original information to the data object related information.
步骤 707, 网络存储装置向用户发送擦除数据对象响应。  Step 707: The network storage device sends an erase data object response to the user.
具体地, 擦除数据对象响应携带的信息可以包括下列信息的一种或者多 种:  Specifically, the information carried in the erasing data object response may include one or more of the following information:
1 ) 所擦除的数据对象标识; 或者  1) the erased data object identifier; or
2 )擦除数据对象的时间; 或者  2) the time to erase the data object; or
3) 所擦除的数据对象相关信息, 例如: 3-1 )被擦除的数据对象的元数 据条数; 或者 3-2)被擦除的数据对象的副本 /镜像数量; 或者 3-3)被擦除 的数据对象的副本 /镜像标识; 或者 3-4)被擦除的数据对象的历史版本标识; 或者 3-5)被擦除的数据对象的历史版本时间创建时间; 或者 3-6) 系统认为 能够帮助用户更清楚了解擦除工作的其他信息; 3) information about the erased data object, for example: 3-1) the number of metadata of the data object being erased; or 3-2) the number of copies/mirrors of the erased data object; or 3-3 a copy/mirror identifier of the erased data object; or 3-4) a historical version identifier of the erased data object; Or 3-5) the historical version time creation time of the erased data object; or 3-6) other information that the system believes can help the user to understand the erase work more clearly;
4 )擦除数据对象相关信息的时间。  4) The time to erase the data object related information.
步骤 708, 网络存储装置接收用户发送查询数据对象请求。 该步骤是为了 确认数据对象内容确实被擦除了, 用户可以向网络存储装置发送查询数据对 象请求, 所述查询数据对象请求携带数据对象标识。  Step 708: The network storage device receives a request for the user to send a query data object. The step is to confirm that the data object content is indeed erased, and the user can send a query data object request to the network storage device, the query data object request carrying the data object identifier.
步骤 709, 网络存储装置向用户发送查询数据对象响应。  Step 709: The network storage device sends a query data object response to the user.
具体地, 该查询数据对象响应携带下列包含副本在内的一种或者多种数 据对象相关信息:  Specifically, the query data object response carries the following information about one or more data objects including the copy:
1 )数据对象标识;  1) data object identification;
2)数据对象内容;  2) data object content;
3) 副本数量;  3) the number of copies;
4) 副本所储存的地理位置; 4) the geographical location where the copy is stored;
18 )其他用户隐私相关的信息。 18) Other user privacy related information.
上述步骤 705和步骤 706没有时间的先后顺序限制, 可以以任何顺序执 行, 也可以同时进行。  The above steps 705 and 706 have no time limit, and may be executed in any order or simultaneously.
另外, 在上述步骤 705和步骤 706进行的过程中, 网络存储装置还可以 向用户发送擦除数据对象进展通知, 该擦除数据对象进展通知包括下列信息 的一种或者多种: 1 ) 已经完成的动作, 例如: 已经擦除的数据对象, 已经擦 除的数据对象相关信息; 2 )正在进行的动作, 例如: 正在擦除的数据对象, 正在擦除的数据对象相关信息; 3 )擦除数据对象操作完成百分比; 4 )擦除 数据对象相关信息操作完成百分比; 5 )完成擦除数据对象操作还需要的时间; 6 ) 完成擦除数据对象相关信息操作还需要的时间。  In addition, during the foregoing steps 705 and 706, the network storage device may further send an erasure data object progress notification to the user, the erasure data object progress notification including one or more of the following information: 1) Completed Actions, such as: data objects that have been erased, information about data objects that have been erased; 2) ongoing actions, such as: data objects being erased, data object related information being erased; 3) erasing The percentage of data object operation completion; 4) the percentage of operations completed to erase data object related information; 5) the time required to complete the operation of erasing data objects; 6) the time required to complete the operation of erasing data object related information.
同时, 为了避免纠纷或者备案, 网络存储装置可以将下列信息的一种或 者多种记录在日志当中: 1 ) 收到数据对象擦除请求; 2 )擦除数据对象的动 作; 3 )擦除数据对象相关信息的动作; 4 )擦除数据对象的时间; 5 )擦除数 据对象相关信息的时间; 6 )擦除数据对象的结果; 7 )擦除数据对象相关信 息的结果。  At the same time, in order to avoid disputes or filing, the network storage device may record one or more of the following information in the log: 1) receiving a data object erasure request; 2) erasing the data object; 3) erasing the data The action of the object related information; 4) the time of erasing the data object; 5) the time of erasing the data object related information; 6) the result of erasing the data object; 7) the result of erasing the data object related information.
图 8为本发明实施例八提供的数据擦除方法的信息交互图。 该实施例实 现了用户向代理请求擦除数据对象, 代理待用户确认后向网络存储装置发送 擦除数据对象请求, 从而使得网络存储装置擦除数据对象。 如图所述, 本发 明实施例具体包括以下步骤:  FIG. 8 is an information interaction diagram of a data erasing method according to Embodiment 8 of the present invention. This embodiment implements the user requesting the agent to erase the data object, and the agent sends an erase data object request to the network storage device after the user confirms, thereby causing the network storage device to erase the data object. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 801 ,用户向代理发送携带有数据的标识信息的擦除请求,该数据的 标识信息包括用户存储的数据对象的指示信息。 该步骤中用户存储的数据对 象的指示信息包括的信息与步骤 701相同, 在这里不再赘述。  Step 801: The user sends an erasure request carrying the identification information of the data to the proxy, where the identifier information of the data includes indication information of the data object stored by the user. The indication information of the data object stored by the user in this step includes the same information as step 701, and details are not described herein again.
步骤 802 ,代理向网络存储装置发送查询用户数据相关信息的请求,其中, 该查询用户数据相关信息的请求携带数据的标识信息。  Step 802: The proxy sends a request for querying user data related information to the network storage device, where the request for querying the user data related information carries the identification information of the data.
步骤 803 ,网络存储装置根据数据的标识信息确定数据的标识信息相关的 第一数据和数据的标识信息相关的第二数据。 其中, 第一数据包括数据的标 识信息相关的数据对象, 和 /或数据对象的相关信息: 第二数据包括用户存储 的数据对象的指示信息和 /或用户存储的数据对象的相关信息的标识。 。 该步 骤中的数据对象相关信息包括的信息与步骤 602 中数据对象相关信息包括的 信息相同, 在这里不再赘述。 Step 803: The network storage device determines, according to the identification information of the data, the first data related to the identification information of the data and the second data related to the identification information of the data. Wherein, the first data includes a label of the data Information related to the data object, and/or related information of the data object: The second data includes indication information of the data object stored by the user and/or an identifier of the related information of the data object stored by the user. . The data object related information in this step includes the same information as the data object related information in step 602, and details are not described herein again.
步骤 804 ,网络存储装置向代理发送携带第二数据的查询响应消息。其中, 该查询响应消息携带有包含副本在内的一种或者多种数据对象相关信息。 该 步骤中数据对象相关信息响应携带的包含副本在内的一种或者多种数据对象 相关信息与步骤 603相同, 在这里不再赘述。  Step 804: The network storage device sends a query response message carrying the second data to the proxy. The query response message carries information about one or more data objects including the copy. The data object related information in the step is the same as the step 603, and is not described here.
步骤 805 , 代理向用户发送携带第二数据的擦除确认请求。 其中, 该确认 请求包括数据对象相关信息, 还可以包括提醒信息, 提醒用户, 用以用户获 知确认擦除数据对象请求后, 将导致擦除数据对象内容和数据对象相关信息, 请用户确认是否继续擦除数据对象操作。 该步骤中数据对象相关信息包括的 信息与步骤 703相同, 在这里不再赘述。  Step 805: The proxy sends an erasure confirmation request carrying the second data to the user. The confirmation request includes data object related information, and may further include reminding information to remind the user that after the user learns to confirm the erase data object request, the data object content and the data object related information are erased, and the user is asked to confirm whether to continue. Erase data object operations. The information about the data object in this step includes the same information as step 703, and details are not described herein.
步骤 806 , 当用户确定允许网络存储装置执行擦除后,用户向代理发送携 带有第二数据的擦除确认响应。 其中, 该擦除确认响应包括: 继续擦除数据 对象操作标识; 所述擦除数据对象确认响应还可以包括数据对象相关信息标 识, 用于指定用户希望擦除的数据对象相关信息。  Step 806: After the user determines that the network storage device is allowed to perform the erasure, the user sends an erasure confirmation response carrying the second data to the proxy. The erase confirmation response includes: continuing to erase the data object operation identifier; the erase data object confirmation response may further include a data object related information identifier for specifying data object related information that the user desires to erase.
步骤 807 , 代理向网络存储装置发送携带有第二数据的擦除请求。  Step 807: The proxy sends an erasure request carrying the second data to the network storage device.
步骤 808 , 网络存储装置根据擦除与第二数据相关的数据对象。该步骤中 擦除数据对象的方法与步骤 705相同, 在这里不再赘述  Step 808: The network storage device erases the data object related to the second data. The method of erasing the data object in this step is the same as step 705, and will not be described here.
步骤 809 , 网络存储装置擦除与第二数据相关的数据对象的相关信息。 。 步骤 81 0 , 网络存储装置向代理发送擦除数据对象响应。该步骤中擦除数 据对象响应携带的信息与步骤 707中的相同, 在这里不再赘述  Step 809: The network storage device erases related information of the data object related to the second data. . Step 81 0: The network storage device sends an erase data object response to the proxy. The information carried in the response of the erased data object in this step is the same as that in step 707, and will not be described again here.
步骤 81 1 ,代理将擦除数据对象响应转发给用户。该步骤中擦除数据对象 响应携带的信息与步骤 707相同, 在这里不再赘述  Step 81 1: The proxy forwards the erased data object response to the user. The information carried in the data object response in this step is the same as that in step 707, and will not be described here.
步骤 812 ,用户向代理发送查询数据对象请求。该步骤是为了确认数据对 象内容确实被擦除了, 用户可以通过代理向网络存储装置发送查询数据对象 请求, 所述查询数据对象请求携带数据对象标识。 Step 812: The user sends a query data object request to the proxy. This step is to confirm the data pair If the content is indeed erased, the user can send a query data object request to the network storage device through the proxy, the query data object request carrying the data object identifier.
步骤 81 3 , 代理向网络存储装置转发查询数据对象请求。  Step 81 3: The proxy forwards the query data object request to the network storage device.
步骤 814 , 网络存储装置向代理发送查询数据对象响应。该步骤中查询数 据对象响应携带的信息与步骤 709相同, 在这里不再赘述。  Step 814: The network storage device sends a query data object response to the proxy. The information carried in the query data object response in this step is the same as that in step 709, and will not be described here.
步骤 815 ,代理向用户转发接收查询数据对象响应。该步骤中查询数据对 象响应携带的信息与步骤 709相同, 在这里不再赘述。  Step 815: The proxy forwards the response to the query data object to the user. The information carried in the query data object response in this step is the same as that in step 709, and is not described here.
上述步骤 808和步骤 809没有时间的先后顺序限制, 可以以任何顺序执 行, 也可以同时进行。  The above steps 808 and 809 have no time limit, and can be executed in any order or simultaneously.
另外, 在上述步骤 808和步骤 809进行的过程中, 网络存储装置还可以 向代理发送擦除数据对象进展通知, 代理向用户透传该擦除数据对象进展通 知。 该擦除数据对象进展通知包括下列信息的一种或者多种:  In addition, in the process of the foregoing steps 808 and 809, the network storage device may further send an erasure data object progress notification to the proxy, and the proxy transparently transmits the erasure data object progress notification to the user. The erase data object progress notification includes one or more of the following information:
1 ) 已经完成的动作, 例如: 擦除数据对象操作已经完成, 已经擦除的数 据对象相关信息;  1) Actions that have been completed, such as: Erase data object operations have been completed, data objects that have been erased;
2 )正在进行的动作, 例如: 正在擦除的数据对象, 正在擦除的数据对象 相关信息;  2) ongoing actions, such as: data objects being erased, data objects being erased, related information;
3 )擦除数据对象操作完成百分比;  3) The percentage of operations for erasing data objects is completed;
4 ) 完成擦除数据对象操作还需要的时间。  4) The time it takes to complete the erase data object operation.
同时, 为了避免纠纷或者备案, 网络存储装置可以将下列信息的一种或 者多种记录在日志当中:  At the same time, in order to avoid disputes or filing, the network storage device can record one or more of the following information in the log:
1 ) 收到数据对象擦除请求; 或者  1) receiving a data object erase request; or
2 )和 /或擦除数据对象的动作; 或者  2) and / or the action of erasing the data object; or
3 )擦除的数据对象; 或者  3) the erased data object; or
4 )擦除的数据对象相关信息; 或者  4) information about the erased data object; or
5 )擦除的数据对象的结果; 或者  5) the result of the erased data object; or
6 )擦除数据对象相关信息的结果。 图 9为本发明实施例九提供的数据擦除方法的信息交互图流程图。 如图 所述, 本发明实施例具体包括以下步骤: 6) The result of erasing information related to the data object. FIG. 9 is a flowchart of an information interaction diagram of a data erasing method according to Embodiment 9 of the present invention. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 901至步骤 906与步骤 801至步骤 806相同,在这里不再详细说明。 步骤 907 , 代理向网络存储装置发送写数据请求。 其中, 写数据请求携带 数据的标识信息, 以使得网络存储装置确定数据的标识信息相关的第一数据, 改写第一数据。 另外, 写数据请求还携带第三数据, 以使得所述网络存储装 置将所述第一数据改写成所述第三数据。  Steps 901 to 906 are the same as steps 801 to 806 and will not be described in detail herein. Step 907: The proxy sends a write data request to the network storage device. The write data request carries the identification information of the data, so that the network storage device determines the first data related to the identification information of the data, and rewrites the first data. Additionally, the write data request carries the third data to cause the network storage device to rewrite the first data to the third data.
第一数据包括: 用户存储的数据对象和 /或用户存储的数据对象的相关信 息。 其中, 用户存储的数据对象的相关信息包括以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装置中的数据对象的副本、 快照、 镜像或 者版本信息; 用于描述用户存储在所述网络存储装置中的数据对象的内容的 信息; 或者用户存储在所述网络存储装置中的数据对象的隐私信息。  The first data includes: information about the data objects stored by the user and/or the data objects stored by the user. The information related to the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror, or version information of the data object used to restore the user stored in the network storage device; Information of content of a data object stored in the network storage device; or privacy information of a data object stored by the user in the network storage device.
其中, 将所述第一数据改写成第三数据。 比如, 将第一数据的所有字节 全部改写成 0; 将第一数据的所有字节全部改写成 1 ; 将第一数据的所有字节 全部改写成随机数据; 将第一数据的所有字节全部改写成其他无效数据。  The first data is rewritten into the third data. For example, all bytes of the first data are all rewritten to 0; all bytes of the first data are all rewritten to 1; all bytes of the first data are all rewritten into random data; all bytes of the first data are All rewritten to other invalid data.
具体地, 写数据请求具体可以是:  Specifically, the write data request may specifically be:
1 )上载数据对象请求, 例如: PUT, 或者 POST;  1) Upload a data object request, for example: PUT, or POST;
2 ) 更新数据对象请求, 例如: UPDATE;  2) Update the data object request, for example: UPDATE;
3 ) 改写数据对象内容请求, 例如: WRITE:  3) Rewrite the data object content request, for example: WRITE:
写数据对象请求可以包括下列信息的一种或者多种: 1 )数据对象标识; The write data object request may include one or more of the following information: 1) a data object identifier;
2 )数据对象内容; 其中数据对象内容可以为: 1 )所有字节为 0; 2 )所有字 节为 1 ; 3 ) 随机数据; 4 )其他无效数据。 2) Data object content; wherein the data object content can be: 1) all bytes are 0; 2) all bytes are 1; 3) random data; 4) other invalid data.
步骤 908 , 网络存储装置写数据对象内容。  Step 908: The network storage device writes the data object content.
具体地 , 网络存储装置将数据对象内容写成写数据对象请求中携带的数 据对象内容。  Specifically, the network storage device writes the data object content as the data object content carried in the write data object request.
步骤 909 , 网络存储装置向代理发送写数据对象响应,写数据对象响应携 带有包括成功或者失败的描述信息。 Step 909: The network storage device sends a write data object response to the proxy, and the write data object response carries With descriptive information including success or failure.
步骤 910,代理向网络存储装置发送写数据对象相关信息请求。所述数据 对象相关信息请求可以包括下列信息的一种或者多种:  Step 910: The proxy sends a request for writing a data object related information to the network storage device. The data object related information request may include one or more of the following information:
1 )数据对象相关信息标识; 2 )数据对象相关信息内容;  1) identification of data object related information; 2) data object related information content;
其中, 数据对象相关信息可以为:  The data object related information may be:
1 ) 可以用来恢复数据对象的信息, 如:  1) Information that can be used to recover data objects, such as:
1-1 )数据对象的副本信息;  1-1) copy information of the data object;
1-2)数据对象的快照信息;  1-2) snapshot information of the data object;
1-3)数据对象的镜像信息;  1-3) mirror information of the data object;
1-4 )数据对象的历史版本信息;  1-4) historical version information of the data object;
2)描述数据对象内容的信息, 如: 数据对象内容的描述标签;  2) information describing the content of the data object, such as: a description tag of the content of the data object;
3)数据对象的隐私信息, 如:  3) Privacy information of data objects, such as:
3-1 )数据对象所属用户的隐私信息;  3-1) privacy information of the user to whom the data object belongs;
3-2)数据对象涉及的用户的隐私信息。  3-2) The privacy information of the user involved in the data object.
其中数据对象相关信息内容可以为:  The data content related to the data object can be:
1 )所有字节为 0;  1) All bytes are 0;
2)所有字节为 1;  2) All bytes are 1;
3 ) 随即数据;  3) Immediate data;
4 )其他无效数据。  4) Other invalid data.
步骤 911, 网络存储装置写数据对象的相关信息内容。  Step 911: The network storage device writes related information content of the data object.
具体地, 网络存储装置将数据对象的相关信息内容写成所述写数据对象 相关信息请求中携带的数据对象相关信息内容。  Specifically, the network storage device writes the related information content of the data object into the data object related information content carried in the write data object related information request.
步骤 912, 网络存储装置向代理发送写数据对象相关信息响应,写数据对 象相关信息响应携带有包括成功或者失败的描述信息。  Step 912: The network storage device sends a write data object related information response to the proxy, and the write data object related information response carries the description information including success or failure.
步骤 913至步骤 917与步骤 811至步骤 815相同,在这里不再详细说明。 另外, 为了保证数据对象的内容确实被擦除, 步骤 907、 步骤 908、 步骤 909可以重复执行多次, 步骤 910、 步骤 911、 步骤 912也可以重复执行多次。 在步骤 908和 /或步骤 911执行过程中, 网络存储装置还可以向代理发送 擦除数据对象进展通知, 代理向用户透传该擦除数据对象进展通知。 该擦除 数据对象进展通知包括下列信息的一种或者多种: Steps 913 to 917 are the same as steps 811 to 815 and will not be described in detail herein. In addition, in order to ensure that the content of the data object is indeed erased, step 907, step 908, step 909 can be repeatedly executed multiple times, and step 910, step 911, and step 912 can also be repeatedly executed multiple times. During the execution of step 908 and/or step 911, the network storage device may also send an erase data object progress notification to the proxy, and the proxy transparently transmits the erase data object progress notification to the user. The erase data object progress notification includes one or more of the following information:
1 ) 已经完成的动作, 例如: 擦除数据对象操作已经完成, 已经擦除的数 据对象相关信息;  1) Actions that have been completed, such as: Erase data object operations have been completed, data objects that have been erased;
2 )正在进行的动作, 例如: 正在擦除的数据对象, 正在擦除的数据对象 相关信息;  2) ongoing actions, such as: data objects being erased, data objects being erased, related information;
3 )擦除数据对象操作完成百分比;  3) The percentage of operations for erasing data objects is completed;
4 ) 完成擦除数据对象操作还需要的时间。  4) The time it takes to complete the erase data object operation.
同时, 为了避免纠纷或者备案, 网络存储装置可以将下列信息的一种或 者多种记录在日志当中:  At the same time, in order to avoid disputes or filing, the network storage device can record one or more of the following information in the log:
1 ) 收到数据对象擦除请求; 或者  1) receiving a data object erase request; or
2 )和 /或擦除数据对象的动作; 或者  2) and / or the action of erasing the data object; or
3 )擦除的数据对象; 或者  3) the erased data object; or
4 )擦除的数据对象相关信息; 或者  4) information about the erased data object; or
5 )擦除的数据对象的结果; 或者  5) the result of the erased data object; or
6 )擦除数据对象相关信息的结果。  6) The result of erasing information related to the data object.
可选地, 本发明提供的实施例一至九任一数据擦除方法中擦除数据对象 请求还可以携带数据对象擦除时间。 该实施例实现了用户在请求数据对象擦 除时设置数据对象删除时间。  Optionally, the data object erasure method in any one of the data erasure methods of Embodiments 1 to 9 provided by the present invention may further carry a data object erasure time. This embodiment enables the user to set the data object deletion time when requesting data object erasure.
其中, 该删除数据对象时间可以是下列信息的一种或者多种:  The time of deleting the data object may be one or more of the following information:
1 )年月日某时某分, 表示到某个时间的时候删除数据对象, 例如: 2012 年 06月 30日 15点 30分;  1) A certain point at the time of the year, month, and day, indicating that the data object is deleted at a certain time, for example: June 30, 2012 at 15:30;
2 ) 时间间隔, 表示过多长时间之后删除数据对象, 例如: 定时器时间。 当所述删除数据对象时间到期的时候, 网络存储装置删除数据对象。 网络存储装置还可以设定缺省删除数据对象时间, 此时可以釆取如下规 则处理: 2) Time interval, indicating that the data object is deleted after too much time, for example: timer time. When the delete data object expires, the network storage device deletes the data object. The network storage device can also set the default deletion time of the data object. In this case, the following rules can be processed:
1 )如果擦除数据对象请求中携带了删除数据对象时间, 则以所述删除数 据对象时间为准;  1) If the erasing data object request carries the deletion data object time, the time of deleting the data object is taken as the standard;
2 )如果擦除数据对象请求中没有携带删除数据对象时间, 则以缺省删除 数据对象时间为准。  2) If the erasure data object request does not carry the deletion data object time, the default deletion data object time is taken as the standard.
用户在删除数据对象时间到期之前, 向网络存储装置发送删除数据对象 请求, 此时, 网络存储装置立即删除数据对象。  The user sends a delete data object request to the network storage device before the time of deleting the data object expires, and the network storage device immediately deletes the data object.
当擦除数据对象请求中不携带删除数据对象时间时, 网络存储装置可以 在擦除数据对象和 /或擦除数据对象相关信息之后立即删除数据对象。  When the erase data object request does not carry the delete data object time, the network storage device may delete the data object immediately after erasing the data object and/or erasing the data object related information.
网络存储装置在日志中记录下列信息的一种或者多种:  The network storage device records one or more of the following information in the log:
1 )删除数据对象时间;  1) delete the data object time;
2 )删除数据对象操作;  2) delete the data object operation;
3 )删除数据对象结果。  3) Delete the data object result.
由本发明实施例九可以得到另一种数据擦除方法, 该方法包括: 步骤 a , 用户代理接收所述用户发送的擦除请求, 该擦除请求携带有数据 的标识信息。 数据的标识信息可以包括用户存储的数据对象的指示信息; 也 可以包括用户的数据的标识信息, 该用户的数据的标识信息包括用户存储的 数据对象的相关信息的标识; 还可以包括用户存储的数据对象的指示信息和 用户存储的数据对象的相关信息的标识。 另外, 擦除请求还可以携带擦除请 求标识, 该擦除请求标识用于通知网络存储装置用户希望对相关数据进行擦 除。 。  Another data erasing method can be obtained by the ninth embodiment of the present invention. The method includes: Step a: The user agent receives an erasure request sent by the user, and the erasure request carries identification information of the data. The identification information of the data may include the indication information of the data object stored by the user; the identification information of the data of the user may be included, and the identification information of the data of the user includes the identifier of the related information of the data object stored by the user; An indication of the indication information of the data object and the related information of the data object stored by the user. In addition, the erasure request may also carry an erase request identifier that is used to notify the network storage device user that it wishes to erase the relevant data. .
步骤 b ,用户代理向网络存储装置发送写数据请求,所述写数据请求携带 所述数据的标识信息, 以使得所述网络存储装置确定所述数据的标识信息相 关的第一数据, 改写所述第一数据。 其中, 写数据请求携带数据的标识信息, 以使得网络存储装置确定数据的标识信息相关的第一数据, 改写第一数据。 另外, 写数据请求还携带第三数据, 以使得所述网络存储装置将所述第一数 据改写成所述第三数据。 Step b, the user agent sends a write data request to the network storage device, where the write data request carries the identification information of the data, so that the network storage device determines the first data related to the identification information of the data, and rewrites the First data. The write data request carries the identification information of the data, so that the network storage device determines the first data related to the identification information of the data, and rewrites the first data. Additionally, the write data request also carries third data to cause the network storage device to rewrite the first data to the third data.
第一数据包括: 用户存储的数据对象和 /或用户存储的数据对象的相关信 息。 其中, 用户存储的数据对象的相关信息包括以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装置中的数据对象的副本、 快照、 镜像或 者版本信息; 用于描述用户存储在所述网络存储装置中的数据对象的内容的 信息; 或者用户存储在所述网络存储装置中的数据对象的隐私信息。  The first data includes: information about the data objects stored by the user and/or the data objects stored by the user. The information related to the data object stored by the user includes one or more of the following information: a copy, a snapshot, a mirror, or version information of the data object used to restore the user stored in the network storage device; Information of content of a data object stored in the network storage device; or privacy information of a data object stored by the user in the network storage device.
其中, 将所述第一数据改写成第三数据。 比如, 将第一数据的所有字节 全部改写成 0; 将第一数据的所有字节全部改写成 1 ; 将第一数据的所有字节 全部改写成随机数据; 将第一数据的所有字节全部改写成其他无效数据。  The first data is rewritten into the third data. For example, all bytes of the first data are all rewritten to 0; all bytes of the first data are all rewritten to 1; all bytes of the first data are all rewritten into random data; all bytes of the first data are All rewritten to other invalid data.
图 10为本发明实施例十提供的数据擦除方法的信息交互图。 该方法为监 管机构要求网络存储装置擦除数据对象, 其应用背景为国家监管机构出于安 全、 法律、 法规方面的考虑要求网络存储装置擦除数据对象, 例如: 监管机 构发现用户在网络存储装置中存放非法数据、 危害国家安全的数据、 对社会 产出不良影响的数据, 监管机构要求网络存储装置擦除数据对象。 在本发明 实施例中擦除请求具体为擦除数据对象请求, 第一数据具体为数据对象。 如 图所述, 本发明实施例具体包括以下步骤:  FIG. 10 is an information interaction diagram of a data erasing method according to Embodiment 10 of the present invention. The method is for the regulatory agency to require the network storage device to erase the data object, and the application background is that the national regulatory agency requires the network storage device to erase the data object for security, legal, and regulatory considerations, for example: the regulatory agency discovers that the user is in the network storage device. In the case of illegal data, data that endangers national security, and data that adversely affect social output, regulators require network storage devices to erase data objects. In the embodiment of the present invention, the erasure request is specifically an erasure data object request, and the first data is specifically a data object. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 1001 , 网络存储装置接收监管机构发送的擦除数据对象请求, 该擦 除数据对象请求携带有待擦除数据对象的指示信息。 其中, 该待擦除数据对 象的指示信息包括的信息与步骤 201中相同, 在这里不再赘述。  Step 1001: The network storage device receives an erase data object request sent by a regulatory authority, where the erase data object request carries the indication information of the data object to be erased. The information included in the indication information of the to-be-erased data object is the same as that in step 201, and details are not described herein again.
步骤 1002 ,网络存储装置根据待擦除数据对象的指示信息擦除数据对象。 其数据对象以及擦除数据对象的方法与步骤 202中的相同, 在这里不再赘述。  Step 1002: The network storage device erases the data object according to the indication information of the data object to be erased. The data object and the method of erasing the data object are the same as those in step 202, and are not described herein again.
步骤 1003 , 网络存储装置向监管机构发送擦除数据对象响应。 该擦除数 据对象响应包括的信息与步骤 203中相同, 在这里不再赘述。  Step 1003: The network storage device sends an erase data object response to the regulatory authority. The information included in the response of the erased data object is the same as that in step 203, and details are not described herein again.
其中, 在上述步骤 1002进行的过程中, 网络存储装置还可以向监管机构 发送数据对象的擦除进展通知, 该数据对象的擦除进展通知包括下列信息的 一种或者多种: 1 ) 已经完成的动作, 例如: 擦除数据对象操作已经完成; 2 ) 正在进行的动作, 例如: 正在擦除数据对象; 3 )擦除数据对象操作完成百分 比; 4 ) 完成擦除数据对象操作还需要的时间。 In the process performed in the foregoing step 1002, the network storage device may further send an erasure progress notification of the data object to the regulatory authority, and the erasure progress notification of the data object includes the following information. One or more: 1) Actions that have been completed, such as: Erase data object operations have been completed; 2) Ongoing actions, such as: Data object being erased; 3) Percentage of data object completion completion; 4) The time it takes to complete the erase data object operation.
另外, 在步骤 1001中, 监管机构还可以在擦除数据对象请求中携带数据 对象相关信息, 该步骤与步骤 501 中相同, 在这里不再赘述。 网络存储装置 在收到所述擦除数据对象请求之后, 擦除所述擦除数据对象请求中携带数 据对象相关信息标识指定的数据对象相关信息, 该步骤与步骤 503中相同, 同时, 为了避免纠纷或者备案, 网络存储装置可以将下列信息的一种或 者多种记录在日志当中: 1 )收到数据对象擦除请求; 或者 2 )擦除数据对象 的动作; 或者 3 )擦除数据对象的时间; 或者 4 )擦除数据对象的结果。  In addition, in step 1001, the supervisory authority may also carry the data object related information in the erasing data object request, and the step is the same as that in step 501, and details are not described herein again. After receiving the erasure data object request, the network storage device erases the data object related information specified by the data object related information identifier in the erasure data object request, and the step is the same as in step 503, and at the same time, in order to avoid For disputes or filings, the network storage device may record one or more of the following information in the log: 1) receiving a data object erase request; or 2) erasing the data object; or 3) erasing the data object Time; or 4) the result of erasing the data object.
图 11为本发明实施例十一提供的数据擦除方法的流程图。 该方法中网络 存储装置可以主动擦除数据对象。 其应用背景为网络存储装置在上载数据对 象、 更新数据对象、 或者定期扫描数据对象内容的时候, 检查数据对象内容, 如果数据对象的内容触犯法律、 危害国家安全、 对社会有不良影响、 或者有 其他危害安全、 法律、 健康、 公共道德等不良影响的内容, 网络存储装置擦 除数据对象, 还可以擦除数据对象相关信息。 如图所述, 本发明实施例具体 包括以下步骤:  FIG. 11 is a flowchart of a data erasing method according to Embodiment 11 of the present invention. In this method, the network storage device can actively erase the data object. The application background is that the network storage device checks the content of the data object when uploading the data object, updating the data object, or periodically scanning the data object content, if the content of the data object violates the law, endangers the national security, has a bad influence on the society, or has Other content that adversely affects security, law, health, public ethics, etc., the network storage device erases the data object, and can also erase the data object related information. As shown in the figure, the embodiment of the present invention specifically includes the following steps:
步骤 1101 , 网络存储系统在特定的条件下主动擦除数据对象。  Step 1101: The network storage system actively erases the data object under specific conditions.
具体地, 擦除数据对象的方法可以是:  Specifically, the method of erasing the data object may be:
1 )破坏数据对象的内容, 使数据对象内容无法读取, 或者无法显示; 或 者  1) destroy the content of the data object, make the data object content unreadable, or can not be displayed; or
2 )删除数据对象的内容, 将数据对象内容置空; 或者  2) delete the contents of the data object, and empty the contents of the data object; or
3 )覆盖数据对象的内容, 比如:  3) Overwrite the contents of the data object, such as:
3-1 )将数据对象的内容所有比特位写成 1 ; 或者  3-1) write all bits of the contents of the data object as 1; or
3-2 )将数据对象的内容所有比特位写成 0; 或者  3-2) Write all bits of the contents of the data object to 0; or
3-3 )将数据对象的内容写入随机数据; 或者 3-4 )将数据对象的内容写入用户指定的数据。 3-3) writing the contents of the data object to the random data; or 3-4) Write the contents of the data object to the data specified by the user.
4)其他使数据对象内容不可展现原来信息的方法。  4) Other methods for making the data object content unable to display the original information.
步骤 1102, 网络存储装置擦除数据对象相关信息。  Step 1102, the network storage device erases data object related information.
具体地, 数据对象相关信息可以是:  Specifically, the data object related information may be:
1 )可以用来恢复数据对象的信息, 如: 1-1 )数据对象副本; 或者 1-2) 数据对象快照; 或者 1-3 )数据对象镜像; 或者 1-4 )数据对象历史版本标识; 1) can be used to recover data object information, such as: 1-1) data object copy; or 1-2) data object snapshot; or 1-3) data object image; or 1-4) data object history version identifier;
2)描述数据对象内容的信息, 如数据对象内容的描述标签; 或者 2) information describing the content of the data object, such as a description tag of the content of the data object; or
3)数据对象的隐私信息, 如: 3-1 )数据对象所属用户的隐私信息; 或 者 3-2)数据对象涉及的用户的隐私信息。  3) The privacy information of the data object, such as: 3-1) the privacy information of the user to whom the data object belongs; or 3-2) the privacy information of the user involved in the data object.
另外, 擦除数据对象相关信息的方法可以是下列方法的一种或者多种: In addition, the method of erasing data object related information may be one or more of the following methods:
1 )破坏数据对象相关信息,使数据对象的相关信息无法读取,或者显示; 或者 1) destroying the data object related information, so that the related information of the data object cannot be read or displayed; or
2)删除数据对象相关信息的内容, 将数据对象相关信息置空; 或者 2) delete the content of the data object related information, and empty the data object related information; or
3)覆盖数据对象相关信息的内容, 如: 3-1 )将数据对象的相关信息所 有比特位写成 1; 或者 3-2)将数据对象的相关信息所有比特位写成 0; 或者3) Covering the content of the data object related information, such as: 3-1) writing all the bits of the data object related information to 1; or 3-2) writing all the bits of the data object related information to 0; or
3-3)将数据对象的相关信息写入随机数据; 或者 3-4 )将数据对象的相关信 息写入用户指定的数据; 3-3) writing related information of the data object to the random data; or 3-4) writing the related information of the data object to the data specified by the user;
4)删除数据对象相关信息;  4) Delete data object related information;
5 )或者其他将数据对象相关信息不可展现原来信息的方法。  5) or other methods that do not reveal the original information to the data object related information.
此外, 为了避免纠纷或者备案, 网络存储装置可以将下列信息记录在曰 志当中: 1 )擦除数据对象的原因; 或者 2)擦除数据对象的动作; 或者 3) 擦除数据对象的时间; 或者 4)擦除数据对象的结果。  In addition, in order to avoid disputes or filing, the network storage device may record the following information in the records: 1) the reason for erasing the data object; or 2) the action of erasing the data object; or 3) the time of erasing the data object; Or 4) the result of erasing the data object.
因此, 本发明实施例提供的数据擦除方法, 通过接收用户终端或用户代 理发送或监管机构的擦除请求, 该擦除请求携带有数据的标识信息; 根据该 数据的标识信息确定与数据的标识信息相关的第一数据; 擦第一数据, 实现 了由用户发起的, 或者通过代理发起的擦除网络存储装置中数据对象或数据 对象的相关信息, 从而使得用户能够获知网络存储装置是否将数据对象以及 相关信息真正删除, 进一步增强了网络存储装置中用户的数据对象的安全性。 Therefore, the data erasing method provided by the embodiment of the present invention receives the erasure request of the user terminal or the user agent or the regulatory agency, and the erasure request carries the identification information of the data; and determines the data according to the identification information of the data. Identifying the first data related to the information; erasing the first data, realizing the data object or data initiated by the user, or initiated by the proxy to erase the network storage device The related information of the object, so that the user can know whether the network storage device actually deletes the data object and the related information, thereby further enhancing the security of the data object of the user in the network storage device.
图 12为本发明实施例十二提供的网络存储装置的示意图。该装置用于执 行本发明实施例一至实施例十一提供的数据擦除方法。 如图所述, 本发明实 施例提供的网络存储装置具体包括: 第一接收单元 121、 第一确定单元 122、 和擦除单元 123。  FIG. 12 is a schematic diagram of a network storage device according to Embodiment 12 of the present invention. The apparatus is for performing the data erasing method provided by the first to eleventh embodiments of the present invention. As shown in the figure, the network storage device provided by the embodiment of the present invention specifically includes: a first receiving unit 121, a first determining unit 122, and an erasing unit 123.
第一接收单元 121 用于接收擦除请求, 所述擦除请求携带有数据的标识 信息, 以及将所述数据的标识信息传输给第一确定单元 122 ; 第一确定单元用 于从所述接收单元 121 接收数据的标识信息, 确定所述数据的标识信息相关 的第一数据, 以及将所述第一数据传输给所述擦除单元 123; 擦除单元 123用 于从所述第一确定单元 122接收所述第一数据, 擦除所述第一数据。 其中, 擦除请求还携带擦除请求标识, 所述擦除请求标识用于通知所述网络存储装 置用户希望对相关数据进行擦除。  The first receiving unit 121 is configured to receive an erasure request, where the erasure request carries identification information of the data, and transmit the identification information of the data to the first determining unit 122; the first determining unit is configured to receive from the receiving The unit 121 receives the identification information of the data, determines the first data related to the identification information of the data, and transmits the first data to the erasing unit 123; the erasing unit 123 is configured to use the first determining unit The first data is received 122 and the first data is erased. The erasure request further carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device user that the related data is to be erased.
进一步地, 擦除单元 123使用下列方式的一种或多种进行擦除: 破坏所 述第一数据的内容; 删除所述第一数据的内容; 覆盖所述第一数据的内容。 其中, 覆盖所述第一数据的内容具体为将所述第一数据的内容所有比特位写 成特定值, 比如 0或 1 , 或者随机数据或者用户指定的数据。  Further, the erasing unit 123 performs erasing using one or more of the following methods: destroying the content of the first data; deleting the content of the first data; and overwriting the content of the first data. The content of the first data is specifically written to write all the bits of the content of the first data into a specific value, such as 0 or 1, or random data or user-specified data.
在一个实施例中, 所述数据的标识信息包括用户存储的数据对象的指示 信息, 其中, 所述用户存储的数据对象的指示信息包括下列信息的一种或多 种: 数据对象的标识、 文件夹的标识、 用户账户的标识。  In an embodiment, the identification information of the data includes indication information of a data object stored by the user, where the indication information of the data object stored by the user includes one or more of the following information: an identifier of the data object, a file The identifier of the folder, the identifier of the user account.
所述第一确定单元 122 用于根据所述用户存储的数据对象的指示信息, 确定用户存储在所述网络存储装置中的数据对象; 以及, 所述擦除单元 123 用于擦除所述用户存储在所述网络存储装置中的数据对象。  The first determining unit 122 is configured to determine, according to the indication information of the data object stored by the user, a data object stored by the user in the network storage device; and the erasing unit 123 is configured to erase the user. A data object stored in the network storage device.
其中, 所述第一确定单元 122还用于根据所述存储在所述网络存储装置 中的数据对象的指示信息, 确定用户存储的数据对象的相关信息, 其中, 所 述用户存储的数据对象的相关信息包括以下信息中的一种或者几种: 用于恢 复用户存储在所述网络存储装置中的数据对象的副本、 快照、 镜像或者版本 信息; 或者, 用于描述用户存储在所述网络存储装置中的数据对象的内容的 信息; 或者, 用户存储在所述网络存储装置中的数据对象的隐私信息; 以及, 所述擦除单元 123用于擦除所述用户存储的数据对象的相关信息。 The first determining unit 122 is further configured to determine, according to the indication information of the data object stored in the network storage device, related information of a data object stored by the user, where the data object of the user stores Related information includes one or more of the following: a copy, snapshot, mirror, or version information of a data object stored by the complex user in the network storage device; or information describing a content of a data object stored by the user in the network storage device; or, the user is stored in The privacy information of the data object in the network storage device; and the erasing unit 123 is configured to erase related information of the data object stored by the user.
所述第一确定单元 122 用于根据所述用户存储的数据对象的相关信息的 标识, 确定用户存储的数据对象的相关信息;  The first determining unit 122 is configured to determine, according to the identifier of the related information of the data object stored by the user, related information of the data object stored by the user;
以及, 所述擦除单元 123用于擦除所述用户的存储的数据对象的相关信 息。  And, the erasing unit 123 is configured to erase related information of the stored data object of the user.
在另一个实施例中, 所述用户的数据的标识信息包括用户存储的数据对 象的相关信息的标识, 所述用户存储的数据对象的相关信息包括以下信息中 的一种或者几种: 用于恢复用户存储在所述网络存储装置中的数据对象的副 本、 快照、 镜像或者版本信息; 用于描述用户存储在所述网络存储装置中的 数据对象的内容的信息; 或者用户存储在所述网络存储装置中的数据对象的 隐私信息  In another embodiment, the identification information of the data of the user includes an identifier of related information of the data object stored by the user, and the related information of the data object stored by the user includes one or more of the following information: Recovering a copy, snapshot, mirror or version information of a data object stored by the user in the network storage device; information for describing content of a data object stored by the user in the network storage device; or storing the user in the network Privacy information of data objects in the storage device
再一个实施例中, 本发明实施例提供的网络存储装置还包括: 第二接收 单元、 第二确定单元、 第一发送单元和第三接收单元。  In another embodiment, the network storage device provided by the embodiment of the present invention further includes: a second receiving unit, a second determining unit, a first sending unit, and a third receiving unit.
第二接收单元用于接收查询用户数据相关信息的请求, 其中, 该查询用 户数据相关信息的请求携带数据的标识信息, 以及将所述数据的标识信息传 输给第二确定单元; 第二确定单元用于从所述第二接收单元接收所述数据的 标识信息, 根据所述数据的标识信息, 确定所述数据的标识信息相关的第二 数据, 所述第二数据包括用户存储的数据对象的指示信息和 /或用户存储的数 据对象的相关信息的标识, 以及将所述第二数据传输给发送单元; 第一发送 单元用于从所述第二确定单元接收所述第二数据, 向所述用户发送携带有所 述第二数据的查询响应信息; 第三接收单元用于接收携带有所述第二数据的 擦除请求。  The second receiving unit is configured to receive a request for querying the user data related information, where the request for querying the user data related information carries the identification information of the data, and transmits the identification information of the data to the second determining unit; And determining, by the second receiving unit, the identification information of the data, determining, according to the identification information of the data, second data related to the identification information of the data, where the second data includes a data object stored by the user. And indicating an identifier of the information and/or related information of the data object stored by the user, and transmitting the second data to the sending unit; the first sending unit is configured to receive the second data from the second determining unit, The user sends the query response information carrying the second data; the third receiving unit is configured to receive the erasure request carrying the second data.
再一个实施例中, 本发明实施例提供的网络存储装置还包括: 第二发送 单元和第四接收单元。 In another embodiment, the network storage device provided by the embodiment of the present invention further includes: Unit and fourth receiving unit.
第二发送单元用于所述网络存储装置发送擦除所述第一数据的确认请 求, 其中所述确认请求用于提醒所述用户获知擦除所述第一数据的操作; 第 四接收单元用于接收所述确认请求的响应消息; 以及, 根据所述响应消息确 定是否执行所述擦除第一数据的操作。  The second sending unit is configured to send, by the network storage device, a confirmation request for erasing the first data, where the confirmation request is used to remind the user to learn an operation of erasing the first data; And a response message for receiving the confirmation request; and determining, according to the response message, whether to perform the operation of erasing the first data.
其中, 所述确认请求还包括所述第一数据的呈现信息, 所述呈现信息用 于指示所述第一数据包括的数据对象、 数据内容或者数据范围; 相应地, 所 述确认请求的响应消息还包括所述用户根据所述第一数据的呈现信息所选择 的第一数据的数据对象、 数据内容或者数据范围。  The confirmation request further includes presence information of the first data, where the presentation information is used to indicate a data object, a data content, or a data range included in the first data; and correspondingly, the response message of the confirmation request A data object, a data content, or a data range of the first data selected by the user according to the presentation information of the first data is further included.
再一个实施例中, 网络存储装置接收到的擦除请求来自于所述用户或者 所述用户的代理或者监管机构。  In still another embodiment, the erasure request received by the network storage device is from the user or the agent or regulatory authority of the user.
再一个实施例中, 本发明实施例提供的网络存储装置还包括: 第二发送 单元。 第二发送单元用于发送数据擦除响应信息, 所述擦除响应信息用于通 知所述用户所述第一数据已擦除。  In another embodiment, the network storage device provided by the embodiment of the present invention further includes: a second sending unit. The second transmitting unit is configured to send data erasure response information, the erasure response information being used to notify the user that the first data has been erased.
再一个实施例中, 本发明实施例提供的网络存储装置还包括: 第三发送 单元。 第三发送单元用于发送数据擦除进展信息, 所述擦除进展信息用于通 知所述用户所述第一数据正在擦除或者擦除操作完成的百分比或者擦除操作 剩余时间。  In another embodiment, the network storage device provided by the embodiment of the present invention further includes: a third sending unit. The third transmitting unit is configured to transmit data erasure progress information for notifying the user that the first data is being erased or the percentage of the erasing operation is completed or the remaining time of the erasing operation.
再一个实施例中, 本发明实施例提供的网络存储装置还包括: 保存单元。 保存单元用于保存所述数据擦除请求信息和 /或所述数据擦除响应信息。  In another embodiment, the network storage device provided by the embodiment of the present invention further includes: a saving unit. The saving unit is configured to save the data erasure request information and/or the data erasure response information.
因此, 本发明实施例提供的网络存储装置, 通过接收用户终端或用户代 理发送或监管机构的擦除请求, 该擦除请求携带有数据的标识信息; 根据该 数据的标识信息确定与数据的标识信息相关的第一数据; 擦第一数据, 实现 了由用户发起的, 或者通过代理发起的擦除网络存储装置中数据对象或数据 对象的相关信息, 从而使得用户能够获知网络存储装置是否将数据对象以及 相关信息真正删除, 进一步增强了网络存储装置中用户的数据对象的安全性。 图 1 3为本发明实施例十三提供的用户终端的示意图。 该装置用于执行本 发明实施例一至实施例十一提供的数据擦除方法。 如图所述, 本发明实施例 提供的用户终端具体包括: 第一发送单元 1 31。 Therefore, the network storage device provided by the embodiment of the present invention receives the erasure request sent by the user terminal or the user agent or the supervisory authority, and the erasure request carries the identification information of the data; and determines the identifier of the data according to the identification information of the data. The first data related to the information; the first data is erased, and the information related to the data object or the data object in the network storage device initiated by the user or initiated by the proxy is implemented, so that the user can know whether the network storage device will data The object and related information are virtually deleted, further enhancing the security of the data objects of the users in the network storage device. FIG. 13 is a schematic diagram of a user terminal according to Embodiment 13 of the present invention. The apparatus is for performing the data erasing method provided by Embodiments 1 to 11 of the present invention. As shown in the figure, the user terminal provided by the embodiment of the present invention specifically includes: a first sending unit 1 31.
第一发送单元 1 31 用于向网络存储装置发送擦除请求, 所述擦除请求携 带有数据的标识信息, 其中, 所述数据的标识信息包括用户存储的数据对象 的指示信息, 或者所述用户的数据的标识信息包括用户存储的数据对象的相 关信息的标识, 用以所述网络存储装置确定所述数据的标识信息相关的第一 数据, 并擦除所述第一数据。  The first sending unit 1 31 is configured to send an erasure request to the network storage device, where the erasure request carries the identification information of the data, where the identifier information of the data includes indication information of the data object stored by the user, or the The identification information of the data of the user includes an identifier of the related information of the data object stored by the user, and the network storage device determines the first data related to the identification information of the data, and erases the first data.
其中, 擦除请求还携带擦除请求标识, 所述擦除请求标识用于通知所述 网络存储装置用户希望对相关数据进行擦除。  The erasure request further carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device user that the related data is to be erased.
在一个实施例中, 本发明实施例提供的用户终端还包括: 第二发送单元、 第一接收单元和第三发送单元。  In an embodiment, the user terminal provided by the embodiment of the present invention further includes: a second sending unit, a first receiving unit, and a third sending unit.
第二发送单元用于向所述网络存储装置发送查询用户数据相关信息的请 求, 其中, 该查询用户数据相关信息的请求携带数据的标识信息; 第一接收 单元用于接收所述网络存储装置发送的携带所述第二数据的查询响应消息; 第三发送单元用于当确定执行擦除时 , 向所述网络存储装置发送携带有所述 第二数据的擦除请求。  The second sending unit is configured to send a request for querying the user data related information to the network storage device, where the request for querying the user data related information carries the identification information of the data; the first receiving unit is configured to receive the network storage device to send The query response message carrying the second data; the third sending unit is configured to: when it is determined to perform the erasing, send an erasure request carrying the second data to the network storage device.
在另一个实施例中, 本发明实施例提供的用户终端还包括: 第二接收单 元和第四发送单元。  In another embodiment, the user terminal provided by the embodiment of the present invention further includes: a second receiving unit and a fourth sending unit.
第二接收单元用于接收所述网络存储装置发送的擦除所述第一数据的确 认请求, 其中所述确认请求用于提醒所述用户获知擦除所述第一数据的操作; 第四发送单元用于当确定执行擦除时, 向所述网络存储装置发送确认请求的 响应消息。  The second receiving unit is configured to receive an acknowledgement request sent by the network storage device to erase the first data, where the confirmation request is used to remind the user to learn to erase the first data; The unit is configured to send a response message to the network storage device to the network storage device when it is determined to perform the erasure.
再一个实施例中, 本发明实施例提供的用户终端还包括: 第三接收单元。 第三接收单元用于接收所述网络存储装置发送的数据擦除响应信息, 所 述擦除响应信息用于通知所述用户所述第一数据已擦除; 还用于接收所述网 络存储装置发送的擦除进展信息, 所述擦除进展信息用于通知所述用户所述 第一数据正在擦除或者擦除操作完成的百分比或者擦除操作剩余时间。 In another embodiment, the user terminal provided by the embodiment of the present invention further includes: a third receiving unit. The third receiving unit is configured to receive data erasure response information sent by the network storage device, where the erasure response information is used to notify the user that the first data has been erased; and is further configured to receive the network The erasure progress information sent by the network storage device, the erasure progress information is used to notify the user that the first data is being erased or the percentage of the erasing operation is completed or the remaining time of the erasing operation.
因此, 本发明实施例提供的用户终端, 通过网络存储装置发送擦除请求, 用以网络存储装置确定所述数据的标识信息相关的第一数据, 并擦除所述第 一数据, 实现了由用户发起的, 或者通过用户代理发起的擦除网络存储装置 中数据对象或数据对象的相关信息, 从而使得用户能够获知网络存储装置是 否将数据对象以及相关信息真正删除, 进一步增强了网络存储装置中用户的 数据对象的安全性。  Therefore, the user terminal provided by the embodiment of the present invention sends an erasure request through the network storage device, and the network storage device determines the first data related to the identification information of the data, and erases the first data, thereby implementing User-initiated or related information of a data object or a data object in a network storage device initiated by a user agent, so that the user can know whether the network storage device actually deletes the data object and related information, thereby further enhancing the network storage device. The security of the user's data object.
图 14为本发明实施例十四提供的用户代理的示意图。 该代理用于执行本 发明实施例一至实施例十一提供的数据擦除方法。 如图所述, 本发明实施例 提供的用户代理具体包括: 接收单元 141和发送单元 142。  FIG. 14 is a schematic diagram of a user agent according to Embodiment 14 of the present invention. The agent is used to perform the data erasing method provided by Embodiments 1 through 11 of the present invention. As shown in the figure, the user agent provided by the embodiment of the present invention specifically includes: a receiving unit 141 and a sending unit 142.
接收单元 141 用于接收用户发送的擦除请求, 所述擦除请求携带有数据 的标识信息, 以及将所述擦除请求传输给发送单元, 其中, 所述数据的标识 信息包括用户存储的数据对象的指示信息, 或者所述用户的数据的标识信息 包括用户存储的数据对象的相关信息的标识; 发送单元 142 用于从所述接收 单元接收所述擦除请求, 向网络存储装置发送所述擦除请求, 所述擦除请求 携带有数据的标识信息, 用以所述网络存储装置确定所述数据的标识信息相 关的第一数据, 并擦除所述第一数据。  The receiving unit 141 is configured to receive an erasure request sent by the user, where the erasure request carries the identification information of the data, and transmit the erasure request to the sending unit, where the identifier information of the data includes the data stored by the user. The indication information of the object, or the identification information of the data of the user, includes an identifier of the related information of the data object stored by the user; the sending unit 142 is configured to receive the erasure request from the receiving unit, and send the identifier to the network storage device. An erasure request, the erasure request carrying identification information of the data, the network storage device determining first data related to the identification information of the data, and erasing the first data.
在一个实施例中, 所述接收单元 141 用于接收查询用户数据相关信息的 请求, 其中, 该查询用户数据相关信息的请求携带数据的标识信息; 所述发 送单元用于向所述网络存储装置发送查询用户数据相关信息的请求; 以及, 所述接收单元 142还用于接收所述网络存储装置发送的携带第二数据的查询 响应消息; 所述发送单元用于向所述用户发送携带所述第二数据的查询响应 消息。  In an embodiment, the receiving unit 141 is configured to receive a request for querying user data related information, where the request for querying user data related information carries identification information of data; and the sending unit is configured to use the network storage device Sending a request for querying the user data related information; and the receiving unit 142 is further configured to receive the query response message that is sent by the network storage device and that carries the second data, where the sending unit is configured to send the carrying The second data query response message.
因此, 本发明实施例提供的用户代理, 通过接收用户发送的擦除请求, 并向网络存储装置发送该擦除请求, 实现了由用户发起的, 或者通过用户代 理发起的擦除网络存储装置中数据对象或数据对象的相关信息, 从而使得用 户能够获知网络存储装置是否将数据对象以及相关信息真正删除, 进一步增 强了网络存储装置中用户的数据对象的安全性。 Therefore, the user agent provided by the embodiment of the present invention, by receiving an erasure request sent by the user, and sending the erasure request to the network storage device, is initiated by the user, or is generated by the user. The information about the data object or the data object in the network storage device is erased, so that the user can know whether the network storage device actually deletes the data object and the related information, thereby further enhancing the security of the data object of the user in the network storage device. .
图 15为本发明实施例十五提供的用户代理的示意图。该代理用于执行本 发明实施例一至实施例十一提供的数据擦除方法。 如图所述, 本发明实施例 提供的用户代理具体包括: 接收单元 151和发送单元 152。  FIG. 15 is a schematic diagram of a user agent according to Embodiment 15 of the present invention. The agent is used to perform the data erasing method provided by Embodiments 1 through 11 of the present invention. As shown in the figure, the user agent provided by the embodiment of the present invention specifically includes: a receiving unit 151 and a sending unit 152.
接收单元 151 用于接收所述用户发送的擦除请求, 所述擦除请求携带有 数据的标识信息; 发送单元 152 用于向网络存储装置发送写数据请求, 所述 写数据请求携带所述数据的标识信息 , 以使得所述网络存储装置确定所述数 据的标识信息相关的第一数据, 改写所述第一数据。  The receiving unit 151 is configured to receive an erasure request sent by the user, where the erasure request carries identifier information of the data; the sending unit 152 is configured to send a write data request to the network storage device, where the write data request carries the data The identification information is such that the network storage device determines the first data related to the identification information of the data, and rewrites the first data.
在一个实施例中, 所述第一数据包括: 用户存储的数据对象和 /或用户存 储的数据对象的相关信息, 其中, 所述用户存储的数据对象的相关信息包括 以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装置中的数 据对象的副本、 快照、 镜像或者版本信息; 用于描述用户存储在所述网络存 储装置中的数据对象的内容的信息; 或者用户存储在所述网络存储装置中的 数据对象的隐私信息。  In an embodiment, the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes one of the following information or Several: a copy, a snapshot, a mirror or version information for restoring a data object stored by the user in the network storage device; information for describing a content of a data object stored by the user in the network storage device; or a user Privacy information of data objects stored in the network storage device.
在另一个实施例中, 所述写数据请求还携带第三数据, 以使得所述网络 存储装置将所述第一数据改写成所述第三数据。  In another embodiment, the write data request further carries third data to cause the network storage device to rewrite the first data into the third data.
本发明实施例还提供一种数据擦除系统, 该系统包括本发明实施例十二 提供的网络存储装置和本发明实施例十三提供的用户终端; 或者包括本发明 实施例十二提供的网络存储装置、 本发明实施例十三提供的用户终端和本发 明实施例十四提供的用户代理; 或者本发明实施例十二提供的网络存储装置 和本发明实施例十五提供的用户代理。  The embodiment of the present invention further provides a data erasing system, which includes the network storage device provided in Embodiment 12 of the present invention and the user terminal provided in Embodiment 13 of the present invention; or the network provided in Embodiment 12 of the present invention. The storage device, the user terminal provided in Embodiment 13 of the present invention, and the user agent provided in Embodiment 14 of the present invention; or the network storage device provided in Embodiment 12 of the present invention and the user agent provided in Embodiment 15 of the present invention.
图 16为本发明实施例十六提供的网络存储装置的示意图。该装置用于执 行本发明实施例一至实施例十一提供的数据擦除方法。 如图所述, 本发明实 施例提供的网络存储装置具体包括: 本发明实施例具体包括: 网络接口 161、 处理器 162、 存储器 163。 设备总线 164用于连接网络接口 161、 处理器 162 和存储器 163。 FIG. 16 is a schematic diagram of a network storage device according to Embodiment 16 of the present invention. The apparatus is for performing the data erasing method provided by Embodiments 1 to 11 of the present invention. As shown in the figure, the network storage device provided by the embodiment of the present invention specifically includes: a network interface 161, The processor 162 and the memory 163. Device bus 164 is used to connect network interface 161, processor 162, and memory 163.
网络接口 161用于连接用户终端或用户代理。  The network interface 161 is used to connect a user terminal or a user agent.
存储器 163可以是永久存储器, 例如硬盘驱动器和闪存, 存储器 163中 具有软件模块和设备驱动程序。 软件模块能够执行本发明上述方法的各种功 能模块; 设备驱动程序可以是网络和接口驱动程序。  The memory 163 may be a persistent storage such as a hard disk drive and a flash memory having a software module and a device driver therein. The software modules are capable of performing the various functional modules of the above described methods of the present invention; the device drivers can be network and interface drivers.
物理存储在所述存储器 163 中的应用程序, 所述应用程序包括可用于使 所述处理器 162 和所述装置执行以下过程的指令: 接收擦除请求, 所述擦除 请求携带有数据的标识信息; 确定所述数据的标识信息相关的第一数据; 擦 除所述第一数据。  An application physically stored in the memory 163, the application comprising instructions operable to cause the processor 162 and the apparatus to: receive an erase request, the erase request carries an identification of data Information; determining first data related to the identification information of the data; erasing the first data.
其中, 擦除所述第一数据的方式包括下列方式的一种或多种: 破坏所述 第一数据的内容; 删除所述第一数据的内容; 覆盖所述第一数据的内容。  The manner of erasing the first data includes one or more of the following methods: destroying content of the first data; deleting content of the first data; and overwriting content of the first data.
进一步地, 所述处理器访问存储器 163的软件组件后, 所述应用程序可 用于使所述处理器和所述装置执行覆盖所述第一数据的内容过程的指令包 括: 将所述第一数据的内容所有比特位写成特定值或者随机数据或者用户指 定的数据。 其中, 所述擦除请求还携带擦除请求标识, 所述擦除请求标识用 于通知所述网络存储装置用户希望对相关数据进行擦除。  Further, after the processor accesses the software component of the memory 163, the application may be used by the processor and the apparatus to execute an instruction that covers a content process of the first data, including: the first data All bits of the content are written as specific values or random data or user-specified data. The erasure request further carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device user that the related data is to be erased.
在一个实施例中, 所述数据的标识信息包括用户存储的数据对象的指示 信息, 其中, 所述用户存储的数据对象的指示信息包括下列信息的一种或多 种: 数据对象的标识、 文件夹的标识、 用户账户的标识。  In an embodiment, the identification information of the data includes indication information of a data object stored by the user, where the indication information of the data object stored by the user includes one or more of the following information: an identifier of the data object, a file The identifier of the folder, the identifier of the user account.
当所述处理器访问存储器 163的软件组件后, 所述应用程序可用于使所 述处理器和所述装置执行确定所述数据的标识信息相关的第一数据, 擦除所 述第一数据过程的指令包括: 根据所述用户存储的数据对象的指示信息, 确 定用户存储在所述网络存储装置中的数据对象; 擦除所述用户存储在所述网 络存储装置中的数据对象。  After the processor accesses the software component of the memory 163, the application is operable to cause the processor and the device to perform first data related to determining identification information of the data, erasing the first data process The instructions include: determining, according to the indication information of the data object stored by the user, a data object stored by the user in the network storage device; erasing the data object stored by the user in the network storage device.
或者, 所述应用程序包括可用于使所述处理器和所述装置执行以下过程 的指令: 根据所述存储在所述网络存储装置中的数据对象的指示信息, 确定 用户存储的数据对象的相关信息, 其中, 所述用户存储的数据对象的相关信 息包括以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装置 中的数据对象的副本、 快照、 镜像或者版本信息; 或者, 用于描述用户存储 在所述网络存储装置中的数据对象的内容的信息; 或者, 用户存储在所述网 络存储装置中的数据对象的隐私信息; 擦除所述用户存储的数据对象的相关 信息。 Alternatively, the application includes means for causing the processor and the device to perform the following process The instruction: determining, according to the indication information of the data object stored in the network storage device, related information of a data object stored by the user, where the related information of the data object stored by the user includes one of the following information: Or a plurality of: copying, snapshot, mirroring or version information of a data object stored by the user in the network storage device; or information for describing content of a data object stored by the user in the network storage device Or, the user stores the privacy information of the data object in the network storage device; and erases related information of the data object stored by the user.
在另一个实施例中, 所述用户的数据的标识信息包括用户存储的数据对 象的相关信息的标识, 所述用户存储的数据对象的相关信息包括以下信息中 的一种或者几种: 用于恢复用户存储在所述网络存储装置中的数据对象的副 本、 快照、 镜像或者版本信息; 用于描述用户存储在所述网络存储装置中的 数据对象的内容的信息; 或者用户存储在所述网络存储装置中的数据对象的 隐私信息。  In another embodiment, the identification information of the data of the user includes an identifier of related information of the data object stored by the user, and the related information of the data object stored by the user includes one or more of the following information: Recovering a copy, snapshot, mirror or version information of a data object stored by the user in the network storage device; information for describing content of a data object stored by the user in the network storage device; or storing the user in the network The private information of the data object in the storage device.
当所述处理器访问存储器 163的软件组件后, 所述应用程序可用于使所 述处理器和所述装置执行确定所述数据的标识信息相关的第一数据, 擦除所 述第一数据过程的指令包括: 根据所述用户存储的数据对象的相关信息的标 识, 确定用户存储的数据对象的相关信息; 擦除所述用户的存储的数据对象 的相关信息。  After the processor accesses the software component of the memory 163, the application is operable to cause the processor and the device to perform first data related to determining identification information of the data, erasing the first data process The instructions include: determining, according to the identifier of the related information of the data object stored by the user, related information of the data object stored by the user; and erasing related information of the stored data object of the user.
再一个实施例中, 当所述处理器访问存储器 163的软件组件后, 所述应 用程序包括可用于使所述处理器和所述装置执行以下过程的指令: 网络存储 装置接收查询用户数据相关信息的请求, 其中, 该查询用户数据相关信息的 请求携带数据的标识信息; 根据所述数据的标识信息, 确定所述数据的标识 信息相关的第二数据, 所述第二数据包括用户存储的数据对象的指示信息和 / 或用户存储的数据对象的相关信息的标识; 返回携带所述第二数据的查询响 应消息; 接收携带有所述第二数据的擦除请求。  In still another embodiment, after the processor accesses the software component of the memory 163, the application includes instructions operable to cause the processor and the apparatus to: the network storage device receive information related to querying user data The request, wherein the request for querying the user data related information carries the identification information of the data; determining, according to the identification information of the data, second data related to the identification information of the data, where the second data includes data stored by the user An indication of the indication information of the object and/or related information of the data object stored by the user; returning a query response message carrying the second data; receiving an erase request carrying the second data.
再一个实施例中, 当所述处理器访问存储器 163 的软件组件后, 所述应 用程序可用于使所述处理器和所述装置执行擦除所述第一数据过程之前的指 令包括: 发送擦除所述第一数据的确认请求, 其中所述确认请求用于提醒所 述用户获知擦除所述第一数据的操作; 接收所述确认请求的响应消息; 以及, 根据所述响应消息确定是否执行所述擦除第一数据的操作。 In still another embodiment, after the processor accesses the software component of the memory 163, the The instructions operable by the processor and the apparatus to perform the erasing of the first data process include: transmitting a confirmation request to erase the first data, wherein the confirmation request is for alerting the user Obtaining an operation of erasing the first data; receiving a response message of the confirmation request; and determining, according to the response message, whether to perform the operation of erasing the first data.
其中, 确认请求还包括所述第一数据的呈现信息, 所述呈现信息用于指 示所述第一数据包括的数据对象、 数据内容或者数据范围; 相应地, 所述确 认请求的响应消息还包括所述用户根据所述第一数据的呈现信息所选择的第 一数据的数据对象、 数据内容或者数据范围。  The confirmation request further includes the presence information of the first data, where the presentation information is used to indicate a data object, a data content, or a data range that is included in the first data. Correspondingly, the response message of the confirmation request further includes a data object, a data content, or a data range of the first data selected by the user according to the presentation information of the first data.
再一个实施例中, 网络存储装置接收到的擦除请求来自于所述用户或者 所述用户的代理或者监管机构。  In still another embodiment, the erasure request received by the network storage device is from the user or the agent or regulatory authority of the user.
再一个实施例中, 当所述处理器访问存储器 163的软件组件后, 所述应 用程序包括可用于使所述处理器和所述装置执行以下过程的指令: 发送数据 擦除响应信息, 所述擦除响应信息用于通知所述用户所述第一数据已擦除。  In still another embodiment, after the processor accesses a software component of the memory 163, the application includes instructions operable to cause the processor and the apparatus to: transmit data erase response information, The erasure response information is used to notify the user that the first data has been erased.
再一个实施例中, 当所述处理器访问存储器 163 的软件组件后, 发送数 据擦除进展信息, 所述擦除进展信息用于通知所述用户所述第一数据正在擦 除或者擦除操作完成的百分比或者擦除操作剩余时间。  In still another embodiment, after the processor accesses the software component of the memory 163, sending data erasure progress information, the erasure progress information is used to notify the user that the first data is being erased or erased. The percentage completed or the remaining time of the erase operation.
或者, 所述应用程序包括可用于使所述处理器和所述装置执行以下过程 的指令: 保存所述数据擦除请求信息和 /或所述数据擦除响应信息。  Alternatively, the application includes instructions operable to cause the processor and the apparatus to: save the data erase request information and/or the data erase response information.
因此, 本发明实施例提供的网络存储装置, 通过接收用户终端或用户代 理发送或监管机构的擦除请求, 该擦除请求携带有数据的标识信息; 根据该 数据的标识信息确定与数据的标识信息相关的第一数据; 擦第一数据, 实现 了由用户发起的, 或者通过代理发起的擦除网络存储装置中数据对象或数据 对象的相关信息, 从而使得用户能够获知网络存储装置是否将数据对象以及 相关信息真正删除, 进一步增强了网络存储装置中用户的数据对象的安全性。  Therefore, the network storage device provided by the embodiment of the present invention receives the erasure request sent by the user terminal or the user agent or the supervisory authority, and the erasure request carries the identification information of the data; and determines the identifier of the data according to the identification information of the data. The first data related to the information; the first data is erased, and the information related to the data object or the data object in the network storage device initiated by the user or initiated by the proxy is implemented, so that the user can know whether the network storage device will data The object and related information are virtually deleted, further enhancing the security of the data objects of the users in the network storage device.
图 1 7为本发明实施例十七提供的用户代理的示意图。该装置用于执行本 发明实施例一至实施例十一提供的数据擦除方法。 如图所述, 本发明实施例 提供的用户代理具体包括: 本发明实施例具体包括: 网络接口 171、 处理器 172、 存储器 173。 设备总线 174用于连接网络接口 171、 处理器 172和存储 器 173。 FIG. 17 is a schematic diagram of a user agent according to Embodiment 17 of the present invention. The apparatus is for performing the data erasing method provided by Embodiments 1 to 11 of the present invention. As shown in the figure, the embodiment of the present invention The user agent provided specifically includes: a network interface 171, a processor 172, and a memory 173. Device bus 174 is used to connect network interface 171, processor 172, and memory 173.
网络接口 171用于连接用户终端和网络存储装置。  The network interface 171 is used to connect the user terminal and the network storage device.
存储器 173可以是永久存储器, 例如硬盘驱动器和闪存, 存储器 63中具 有软件模块和设备驱动程序。 软件模块能够执行本发明上述方法的各种功能 模块; 设备驱动程序可以是网络和接口驱动程序。  The memory 173 may be a persistent storage such as a hard disk drive and a flash memory having a software module and a device driver. The software modules are capable of executing the various functional modules of the above described method of the present invention; the device drivers can be network and interface drivers.
物理存储在所述存储器 173 中的应用程序, 所述应用程序包括可用于使 所述处理器 172和所述代理执行以下过程的指令:  An application physically stored in the memory 173, the application including instructions operable to cause the processor 172 and the agent to perform the following process:
接收所述用户发送的擦除请求, 所述擦除请求携带有数据的标识信息; 向网络存储装置发送写数据请求, 所述写数据请求携带所述数据的标识 信息, 以使得所述网络存储装置确定所述数据的标识信息相关的第一数据, 改写所述第一数据。  Receiving an erasure request sent by the user, the erasure request carrying identification information of data; sending a write data request to the network storage device, where the write data request carries the identification information of the data, so that the network storage The device determines first data related to the identification information of the data, and rewrites the first data.
进一步地, 所述第一数据包括: 用户存储的数据对象和 /或用户存储的数 据对象的相关信息, 其中, 所述用户存储的数据对象的相关信息包括以下信 息中的一种或者几种: 用于恢复用户存储在所述网络存储装置中的数据对象 的副本、 快照、 镜像或者版本信息; 用于描述用户存储在所述网络存储装置 中的数据对象的内容的信息; 或者用户存储在所述网络存储装置中的数据对 象的隐私信息。  Further, the first data includes: a data object stored by the user and/or related information of the data object stored by the user, where the related information of the data object stored by the user includes one or more of the following information: a copy, snapshot, mirror or version information for restoring a data object stored by the user in the network storage device; information for describing content of a data object stored by the user in the network storage device; or storing the user in the The private information of the data object in the network storage device.
进一步地, 所述写数据请求还携带第三数据, 以使得所述网络存储装置 将所述第一数据改写成所述第三数据。  Further, the write data request further carries third data, so that the network storage device rewrites the first data into the third data.
因此, 本发明实施例提供的网络存储装置, 通过接收用户发送的擦除请 求, 擦除请求携带有数据的标识信息; 向网络存储装置发送写数据请求, 写 数据请求携带所述数据的标识信息 , 以使得所述网络存储装置确定所述数据 的标识信息相关的第一数据, 改写所述第一数据, 实现了由用户发起的, 或 者通过代理发起的擦除网络存储装置中数据对象或数据对象的相关信息, 从 而使得用户能够获知网络存储装置是否将数据对象以及相关信息真正删除, 进一步增强了网络存储装置中用户的数据对象的安全性。 Therefore, the network storage device provided by the embodiment of the present invention receives the erasure request sent by the user, and the erasure request carries the identification information of the data; sends a write data request to the network storage device, and the write data request carries the identification information of the data. Rewriting the first data by causing the network storage device to determine the first data related to the identification information of the data, realizing the data object or data initiated by the user or initiated by the proxy to erase the network storage device Object related information, from The user can know whether the network storage device actually deletes the data object and related information, thereby further enhancing the security of the data object of the user in the network storage device.
本发明实施例还提供一种数据擦除系统, 该系统包括本发明实施例十六 提供的网络存储装置和用户终端; 或者本发明实施例十七提供的用户代理和 网络存储装置。 专业人员应该还可以进一步意识到, 结合本文中所公开的实施例描述的 各示例的单元及算法步骤, 能够以电子硬件、 计算机软件或者二者的结合来 实现, 为了清楚地说明硬件和软件的可互换性, 在上述说明中已经按照功能 一般性地描述了各示例的组成及步骤。 这些功能究竟以硬件还是软件方式来 执行, 取决于技术方案的特定应用和设计约束条件。 专业技术人员可以对每 个特定的应用来使用不同方法来实现所描述的功能, 但是这种实现不应认为 超出本发明的范围。  The embodiment of the present invention further provides a data erasing system, which includes the network storage device and the user terminal provided by the embodiment 16 of the present invention; or the user agent and the network storage device provided in Embodiment 17 of the present invention. A person skilled in the art should further appreciate that the elements and algorithm steps of the various examples described in connection with the embodiments disclosed herein can be implemented in electronic hardware, computer software, or a combination of both, in order to clearly illustrate hardware and software. Interchangeability, the composition and steps of the various examples have been generally described in terms of function in the above description. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the solution. A person skilled in the art can use different methods for implementing the described functions for each particular application, but such implementation should not be considered to be beyond the scope of the present invention.
结合本文中所公开的实施例描述的方法或算法的步骤可以用硬件、 处理 器执行的软件模块, 或者二者的结合来实施。 软件模块可以置于随机存储器 ( RAM ) 、 内存、 只读存储器(ROM ) 、 电可编程 R0M、 电可擦除可编程 R0M、 寄存器、 硬盘、 可移动磁盘、 CD-R0M、 或技术领域内所公知的任意其它形式 的存储介质中。  The steps of a method or algorithm described in connection with the embodiments disclosed herein can be implemented in hardware, a software module executed by a processor, or a combination of both. Software modules can be placed in random access memory (RAM), memory, read-only memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disk, removable disk, CD-ROM, or technical field Any other form of storage medium known.
以上所述的具体实施方式, 对本发明的目的、 技术方案和有益效果进行 了进一步详细说明, 所应理解的是, 以上所述仅为本发明的具体实施方式而 已, 并不用于限定本发明的保护范围, 凡在本发明的精神和原则之内, 所做 的任何修改、 等同替换、 改进等, 均应包含在本发明的保护范围之内。  The above described embodiments of the present invention are further described in detail, and the embodiments of the present invention are intended to be illustrative only. The scope of the protection, any modifications, equivalents, improvements, etc., made within the spirit and scope of the invention are intended to be included within the scope of the invention.

Claims

权 利 要 求 书 claims
1、 一种数据擦除方法, 其特征在于, 所述方法包括: 1. A data erasure method, characterized in that the method includes:
网络存储装置接收擦除请求 , 所述擦除请求携带有数据的标识信息; 确定所述数据的标识信息相关的第一数据; The network storage device receives an erasure request, and the erasure request carries the identification information of the data; determines the first data related to the identification information of the data;
擦除所述第一数据。 Erase the first data.
2、 根据权利要求 1所述的数据擦除方法, 其特征在于, 所述擦除所述第 一数据的方式包括下列方式的一种或多种: 2. The data erasing method according to claim 1, wherein the method of erasing the first data includes one or more of the following methods:
破坏所述第一数据的内容; Destroy the content of the first data;
删除所述第一数据的内容; Delete the content of the first data;
覆盖所述第一数据的内容。 Overwrite the content of the first data.
3、 根据权利要求 2 所述的数据擦除方法, 其特征在于, 所述覆盖所述第 一数据的内容包括: 3. The data erasure method according to claim 2, wherein the content covering the first data includes:
将所述第一数据的内容所有比特位写成特定值或者随机数据或者用户指 定的数据。 Write all bits of the content of the first data as specific values or random data or user-specified data.
4、 根据权利要求 1或 2或 3所述的数据擦除方法, 其特征在于, 所述擦 除请求还携带擦除请求标识, 所述擦除请求标识用于通知所述网络存储装置 用户希望对相关数据进行擦除。 4. The data erasure method according to claim 1 or 2 or 3, characterized in that the erasure request also carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device that the user wishes to Erase relevant data.
5、 根据权利要求 1或 2或 3所述的数据擦除方法, 其特征在于, 所述数 据的标识信息包括用户存储的数据对象的指示信息, 其中, 所述用户存储的 数据对象的指示信息包括下列信息的一种或多种: 数据对象的标识、 文件夹 的标识、 用户账户的标识。 5. The data erasure method according to claim 1 or 2 or 3, characterized in that the identification information of the data includes indication information of the data object stored by the user, wherein the indication information of the data object stored by the user Including one or more of the following information: the identification of the data object, the identification of the folder, and the identification of the user account.
6、 根据权利要求 5所述的数据擦除方法, 其特征在于, 所述确定所述数 据的标识信息相关的第一数据, 擦除所述第一数据包括: 6. The data erasing method according to claim 5, wherein: determining the first data related to the identification information of the data, and erasing the first data includes:
根据所述用户存储的数据对象的指示信息, 确定用户存储在所述网络存 储装置中的数据对象; Determine the data objects stored by the user in the network storage device according to the indication information of the data objects stored by the user;
擦除所述用户存储在所述网络存储装置中的数据对象。 Erase the user's data objects stored in the network storage device.
7、根据权利要求 5所述的数据擦除方法, 其特征在于, 所述方法还包括: 根据所述存储在所述网络存储装置中的数据对象的指示信息, 确定用户 存储的数据对象的相关信息, 其中, 所述用户存储的数据对象的相关信息包 括以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装置中的 数据对象的副本、 快照、 镜像或者版本信息; 或者, 用于描述用户存储在所 述网络存储装置中的数据对象的内容的信息; 或者, 用户存储在所述网络存 储装置中的数据对象的隐私信息; 7. The data erasing method according to claim 5, characterized in that, the method further includes: determining the correlation of the data objects stored by the user according to the indication information of the data objects stored in the network storage device. Information, wherein the information related to the data objects stored by the user includes one or more of the following information: used to restore copies, snapshots, mirrors or version information of the data objects stored by the user in the network storage device; Or, information used to describe the content of the data object stored by the user in the network storage device; or, privacy information of the data object stored by the user in the network storage device;
擦除所述用户存储的数据对象的相关信息。 Erase the relevant information of the data object stored by the user.
8、 根据权利要求 1或 2或 3所述的数据擦除方法, 其特征在于, 所述用 户的数据的标识信息包括用户存储的数据对象的相关信息的标识, 所述用户 存储的数据对象的相关信息包括以下信息中的一种或者几种: 8. The data erasure method according to claim 1 or 2 or 3, characterized in that, the identification information of the user's data includes the identification of the relevant information of the data objects stored by the user, and the identification information of the data objects stored by the user. Relevant information includes one or more of the following information:
用于恢复用户存储在所述网络存储装置中的数据对象的副本、 快照、 镜 像或者版本信息; Used to restore copies, snapshots, images or version information of data objects stored by users in the network storage device;
用于描述用户存储在所述网络存储装置中的数据对象的内容的信息; 或 者 Information used to describe the content of data objects stored by the user in the network storage device; or
用户存储在所述网络存储装置中的数据对象的隐私信息。 The user's private information of data objects stored in the network storage device.
9、 根据权利要求 8所述的数据擦除方法, 其特征在于, 所述确定所述数 据的标识信息相关的第一数据, 擦除所述第一数据包括: 9. The data erasing method according to claim 8, wherein: determining the first data related to the identification information of the data, and erasing the first data includes:
根据所述用户存储的数据对象的相关信息的标识, 确定用户存储的数据 对象的相关信息; Determine the relevant information of the data object stored by the user according to the identification of the relevant information of the data object stored by the user;
擦除所述用户的存储的数据对象的相关信息。 Erase information related to the user's stored data objects.
1 0、 根据权利要求 1或 2或 3所述的数据擦除方法, 其特征在于, 所述 方法还包括: 10. The data erasure method according to claim 1 or 2 or 3, characterized in that the method further includes:
网络存储装置接收查询用户数据相关信息的请求, 其中, 该查询用户数 据相关信息的请求携带数据的标识信息; The network storage device receives a request for querying user data-related information, where the request for querying user data-related information carries identification information of the data;
根据所述数据的标识信息, 确定所述数据的标识信息相关的第二数据, 所述第二数据包括用户存储的数据对象的指示信息和 /或用户存储的数据对 象的相关信息的标识; Determine second data related to the identification information of the data according to the identification information of the data, The second data includes indication information of data objects stored by the user and/or identification of relevant information of data objects stored by the user;
返回携带所述第二数据的查询响应消息; Return a query response message carrying the second data;
接收携带有所述第二数据的擦除请求。 An erasure request carrying the second data is received.
11、 根据权利要求 1或 2或 3所述的数据擦除方法, 其特征在于, 所述 擦除所述第一数据之前, 还包括: 11. The data erasing method according to claim 1 or 2 or 3, characterized in that, before erasing the first data, it further includes:
所述网络存储装置发送擦除所述第一数据的确认请求, 其中所述确认请 求用于提醒所述用户获知擦除所述第一数据的操作; The network storage device sends a confirmation request for erasing the first data, wherein the confirmation request is used to remind the user of the operation of erasing the first data;
接收所述确认请求的响应消息; 以及, 根据所述响应消息确定是否执行 所述擦除第一数据的操作。 Receive a response message of the confirmation request; and, determine whether to perform the operation of erasing the first data according to the response message.
12、 根据权利要求 11所述的数据擦除方法, 其特征在于, 所述确认请求 还包括所述第一数据的呈现信息, 所述呈现信息用于指示所述第一数据包括 的数据对象、 数据内容或者数据范围; 12. The data erasure method according to claim 11, wherein the confirmation request further includes presentation information of the first data, and the presentation information is used to indicate a data object included in the first data. Data content or data range;
相应地, 所述确认请求的响应消息还包括所述用户根据所述第一数据的 呈现信息所选择的第一数据的数据对象、 数据内容或者数据范围。 Correspondingly, the response message of the confirmation request also includes the data object, data content or data range of the first data selected by the user according to the presentation information of the first data.
1 3、 根据权利要求 1或 2或 3所述的数据擦除方法, 其特征在于, 所述 擦除请求来自于所述用户或者所述用户的代理或者监管机构。 13. The data erasure method according to claim 1 or 2 or 3, characterized in that the erasure request comes from the user or the user's agent or regulatory agency.
14、 根据权利要求 1或 2或 3所述的数据擦除方法, 其特征在于, 所述 方法还包括: 14. The data erasure method according to claim 1 or 2 or 3, characterized in that the method further includes:
发送数据擦除响应信息, 所述擦除响应信息用于通知所述用户所述第一 数据已擦除。 Send data erasure response information, the erasure response information is used to notify the user that the first data has been erased.
15、 根据权利要求 1或 2或 3所述的数据擦除方法, 其特征在于, 所述 方法还包括: 15. The data erasure method according to claim 1 or 2 or 3, characterized in that the method further includes:
发送数据擦除进展信息 , 所述擦除进展信息用于通知所述用户所述第一 数据正在擦除或者擦除操作完成的百分比或者擦除操作剩余时间。 Send data erasure progress information, the erasure progress information is used to notify the user that the first data is being erased or the percentage of the erasure operation completed or the remaining time of the erasure operation.
16、 根据权利要求 1或 2或 3所述的数据擦除方法, 其特征在于, 所述 方法还包括: 16. The data erasure method according to claim 1 or 2 or 3, characterized in that: Methods also include:
保存所述数据擦除请求信息和 /或所述数据擦除响应信息。 Save the data erasure request information and/or the data erasure response information.
17、 一种数据擦除方法, 其特征在于, 所述方法包括: 17. A data erasure method, characterized in that the method includes:
接收所述用户发送的擦除请求, 所述擦除请求携带有数据的标识信息; 向网络存储装置发送写数据请求, 所述写数据请求携带所述数据的标识 信息, 以使得所述网络存储装置确定所述数据的标识信息相关的第一数据, 改写所述第一数据。 Receive an erasure request sent by the user, where the erasure request carries the identification information of the data; send a write data request to the network storage device, where the write data request carries the identification information of the data, so that the network storage device The device determines first data related to the identification information of the data, and rewrites the first data.
18、 根据权利要求 17所述的数据擦除方法, 其特征在于, 所述第一数据 包括: 用户存储的数据对象和 /或用户存储的数据对象的相关信息, 其中, 所 述用户存储的数据对象的相关信息包括以下信息中的一种或者几种: 18. The data erasing method according to claim 17, wherein the first data includes: user-stored data objects and/or user-stored data objects related information, wherein the user-stored data Object-related information includes one or more of the following information:
用于恢复用户存储在所述网络存储装置中的数据对象的副本、 快照、 镜 像或者版本信息; Used to restore copies, snapshots, images or version information of data objects stored by users in the network storage device;
用于描述用户存储在所述网络存储装置中的数据对象的内容的信息; 或 者 Information used to describe the content of data objects stored by the user in the network storage device; or
用户存储在所述网络存储装置中的数据对象的隐私信息。 The user's private information of data objects stored in the network storage device.
19、 根据权利要求 17或 18所述的数据擦除方法, 其特征在于, 所述写 数据请求还携带第三数据, 以使得所述网络存储装置将所述第一数据改写成 所述第三数据。 19. The data erasing method according to claim 17 or 18, characterized in that the write data request also carries third data, so that the network storage device rewrites the first data into the third data. data.
20、 一种网络存储装置, 其特征在于, 所述装置包括: 20. A network storage device, characterized in that the device includes:
第一接收单元, 用于接收擦除请求, 所述擦除请求携带有数据的标识信 息, 以及将所述数据的标识信息传输给第一确定单元; The first receiving unit is configured to receive an erasure request, the erasure request carries identification information of the data, and transmit the identification information of the data to the first determination unit;
第一确定单元, 用于从所述第一接收单元接收数据的标识信息, 确定所 述数据的标识信息相关的第一数据, 以及将所述第一数据传输给所述擦除单 元; a first determination unit, configured to receive the identification information of the data from the first receiving unit, determine the first data related to the identification information of the data, and transmit the first data to the erasing unit;
擦除单元, 用于从所述第一确定单元接收所述第一数据, 擦除所述第一 数据。 An erasing unit, configured to receive the first data from the first determining unit and erase the first data.
21、 根据权利要求 20所述的网络存储装置, 其特征在于, 所述擦除单元 用于下列方式的一种或多种: 21. The network storage device according to claim 20, characterized in that the erasure unit is used in one or more of the following ways:
破坏所述第一数据的内容; Destroy the content of the first data;
删除所述第一数据的内容; Delete the content of the first data;
覆盖所述第一数据的内容。 Overwrite the content of the first data.
22、 根据权利要求 21所述的网络存储装置, 其特征在于, 所述擦除单元 用于将所述第一数据的内容所有比特位写成特定值或者随机数据或者用户指 定的数据。 22. The network storage device according to claim 21, wherein the erasing unit is configured to write all bits of the content of the first data into specific values or random data or user-specified data.
23、 根据权利要求 20或 21或 22所述的网络存储装置, 其特征在于, 所 述擦除请求还携带擦除请求标识, 所述擦除请求标识用于通知所述网络存储 装置用户希望对相关数据进行擦除。 23. The network storage device according to claim 20 or 21 or 22, characterized in that the erasure request also carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device that the user wants to Relevant data is erased.
24、 根据权利要求 20或 21或 22所述的网络存储装置, 其特征在于, 所 述数据的标识信息包括用户存储的数据对象的指示信息, 其中, 所述用户存 储的数据对象的指示信息包括下列信息的一种或多种: 数据对象的标识、 文 件夹的标识、 用户账户的标识。 24. The network storage device according to claim 20 or 21 or 22, characterized in that the identification information of the data includes indication information of the data object stored by the user, wherein the indication information of the data object stored by the user includes One or more of the following information: identification of the data object, identification of the folder, identification of the user account.
25、 根据权利要求 24所述的网络存储装置, 其特征在于, 所述第一确定 单元用于根据所述用户存储的数据对象的指示信息, 确定用户存储在所述网 络存储装置中的数据对象; 据对象。 25. The network storage device according to claim 24, wherein the first determining unit is configured to determine the data object stored by the user in the network storage device according to the indication information of the data object stored by the user. ; Data object.
26、 根据权利要求 24所述的网络存储装置, 其特征在于, 所述第一确定 单元还用于根据所述存储在所述网络存储装置中的数据对象的指示信息, 确 定用户存储的数据对象的相关信息, 其中, 所述用户存储的数据对象的相关 信息包括以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装 置中的数据对象的副本、 快照、 镜像或者版本信息; 或者, 用于描述用户存 储在所述网络存储装置中的数据对象的内容的信息; 或者, 用户存储在所述 网络存储装置中的数据对象的隐私信息; 26. The network storage device according to claim 24, wherein the first determining unit is further configured to determine the data object stored by the user according to the indication information of the data object stored in the network storage device. The relevant information of the data object stored by the user includes one or more of the following information: used to restore a copy, snapshot, mirror or version of the data object stored by the user in the network storage device. Information; or, information used to describe the content of data objects stored by the user in the network storage device; or, information stored by the user in the network storage device Private information of data objects in network storage devices;
以及, 所述擦除单元用于擦除所述用户存储的数据对象的相关信息。 And, the erasing unit is used to erase the relevant information of the data object stored by the user.
27、 根据权利要求 20或 21或 22所述的网络存储装置, 其特征在于, 所 述用户的数据的标识信息包括用户存储的数据对象的相关信息的标识, 所述 用户存储的数据对象的相关信息包括以下信息中的一种或者几种: 用于恢复 用户存储在所述网络存储装置中的数据对象的副本、 快照、 镜像或者版本信 息; 用于描述用户存储在所述网络存储装置中的数据对象的内容的信息; 或 者用户存储在所述网络存储装置中的数据对象的隐私信息。 27. The network storage device according to claim 20 or 21 or 22, characterized in that, the identification information of the user's data includes the identification of the relevant information of the data objects stored by the user, and the relevant information of the data objects stored by the user. The information includes one or more of the following information: used to restore copies, snapshots, mirrors or version information of data objects stored by users in the network storage device; used to describe the data objects stored by users in the network storage device Information about the content of the data object; or privacy information of the data object stored by the user in the network storage device.
28、 根据权利要求 27所述的网络存储装置, 其特征在于, 所述第一确定 单元用于根据所述用户存储的数据对象的相关信息的标识, 确定用户存储的 数据对象的相关信息; 28. The network storage device according to claim 27, wherein the first determination unit is configured to determine the relevant information of the data object stored by the user according to the identification of the relevant information of the data object stored by the user;
以及, 所述擦除单元用于擦除所述用户的存储的数据对象的相关信息。 And, the erasing unit is used to erase the relevant information of the user's stored data objects.
29、 根据权利要求 20或 21或 22所述的网络存储装置, 其特征在于, 所 述装置还包括: 29. The network storage device according to claim 20 or 21 or 22, characterized in that the device further includes:
第二接收单元, 用于接收查询用户数据相关信息的请求, 其中, 该查询 用户数据相关信息的请求携带数据的标识信息, 以及将所述数据的标识信息 传输给第二确定单元; The second receiving unit is configured to receive a request for querying user data-related information, wherein the request for querying user data-related information carries the identification information of the data, and transmit the identification information of the data to the second determination unit;
第二确定单元, 用于从所述第二接收单元接收所述数据的标识信息, 根 据所述数据的标识信息, 确定所述数据的标识信息相关的第二数据, 所述第 二数据包括用户存储的数据对象的指示信息和 /或用户存储的数据对象的相 关信息的标识, 以及将所述第二数据传输给发送单元; The second determination unit is configured to receive the identification information of the data from the second receiving unit, and determine the second data related to the identification information of the data according to the identification information of the data, and the second data includes the user The indication information of the stored data object and/or the identification of the relevant information of the data object stored by the user, and transmit the second data to the sending unit;
第一发送单元, 用于从所述第二确定单元接收所述第二数据, 向所述用 户发送携带有所述第二数据的查询响应信息; A first sending unit, configured to receive the second data from the second determining unit, and send query response information carrying the second data to the user;
第三接收单元, 用于接收携带有所述第二数据的擦除请求。 A third receiving unit, configured to receive an erasure request carrying the second data.
30、 根据权利要求 20或 21或 22所述的网络存储装置, 其特征在于, 所 述装置还包括: 第二发送单元, 用于所述网络存储装置发送擦除所述第一数据的确认请 求, 其中所述确认请求用于提醒所述用户获知擦除所述第一数据的操作; 第四接收单元, 用于接收所述确认请求的响应消息; 以及, 根据所述响 应消息确定是否执行所述擦除第一数据的操作。 30. The network storage device according to claim 20, 21 or 22, characterized in that, the device further includes: The second sending unit is used for the network storage device to send a confirmation request for erasing the first data, where the confirmation request is used to remind the user of the operation of erasing the first data; the fourth receiving unit , for receiving a response message of the confirmation request; and, determining whether to perform the operation of erasing the first data according to the response message.
31、 根据权利要求 30所述的网络存储装置, 其特征在于, 所述确认请求 还包括所述第一数据的呈现信息, 所述呈现信息用于指示所述第一数据包括 的数据对象、 数据内容或者数据范围; 相应地, 所述确认请求的响应消息还 包括所述用户根据所述第一数据的呈现信息所选择的第一数据的数据对象、 数据内容或者数据范围。 31. The network storage device according to claim 30, wherein the confirmation request further includes presentation information of the first data, and the presentation information is used to indicate the data objects and data included in the first data. Content or data range; Correspondingly, the response message of the confirmation request also includes the data object, data content or data range of the first data selected by the user according to the presentation information of the first data.
32、 根据权利要求 20或 21或 22所述的网络存储装置, 其特征在于, 所 述擦除请求来自于所述用户或者所述用户的代理或者监管机构。 32. The network storage device according to claim 20 or 21 or 22, characterized in that the erasure request comes from the user or the user's agent or regulatory agency.
33、 根据权利要求 20或 21或 22所述的网络存储装置, 其特征在于, 所 述装置还包括: 33. The network storage device according to claim 20 or 21 or 22, characterized in that the device further includes:
第二发送单元, 用于发送数据擦除响应信息, 所述擦除响应信息用于通 知所述用户所述第一数据已擦除。 The second sending unit is used to send data erasure response information, and the erasure response information is used to notify the user that the first data has been erased.
34、 根据权利要求 20或 21或 22所述的网络存储装置, 其特征在于, 所 述装置还包括: 34. The network storage device according to claim 20 or 21 or 22, characterized in that the device further includes:
第三发送单元, 用于发送数据擦除进展信息, 所述擦除进展信息用于通 知所述用户所述第一数据正在擦除或者擦除操作完成的百分比或者擦除操作 剩余时间。 The third sending unit is used to send data erasure progress information, and the erasure progress information is used to notify the user that the first data is being erased or the percentage of the erasure operation completed or the remaining time of the erasure operation.
35、 根据权利要求 20或 21或 22所述的网络存储装置, 其特征在于, 所 述装置还包括: 35. The network storage device according to claim 20 or 21 or 22, characterized in that the device further includes:
保存单元, 用于保存所述数据擦除请求信息和 /或所述数据擦除响应信 息。 A saving unit, used to save the data erasure request information and/or the data erasure response information.
36、 一种用户终端, 其特征在于, 所述终端包括: 36. A user terminal, characterized in that the terminal includes:
第一发送单元, 用于向网络存储装置发送擦除请求, 所述擦除请求携带 有数据的标识信息, 其中, 所述数据的标识信息包括用户存储的数据对象的 指示信息, 或者所述用户的数据的标识信息包括用户存储的数据对象的相关 信息的标识, 用以所述网络存储装置确定所述数据的标识信息相关的第一数 据, 并擦除所述第一数据。 The first sending unit is used to send an erasure request to the network storage device, the erasure request carries There is identification information of data, wherein the identification information of data includes indication information of data objects stored by the user, or identification information of the user's data includes identification of relevant information of data objects stored by the user, for the network The storage device determines first data related to the identification information of the data, and erases the first data.
37、 根据权利要求 36所述的用户终端, 其特征在于, 所述擦除请求还携 带擦除请求标识, 所述擦除请求标识用于通知所述网络存储装置用户希望对 相关数据进行擦除。 37. The user terminal according to claim 36, wherein the erasure request also carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device that the user wishes to erase relevant data. .
38、 根据权利要求 36或 37所述的用户终端, 其特征在于, 所述终端包 括还包括: 38. The user terminal according to claim 36 or 37, characterized in that the terminal further includes:
第二发送单元, 用于向所述网络存储装置发送查询用户数据相关信息的 请求, 其中, 该查询用户数据相关信息的请求携带数据的标识信息; The second sending unit is configured to send a request for querying user data-related information to the network storage device, wherein the request for querying user data-related information carries the identification information of the data;
第一接收单元, 用于接收所述网络存储装置发送的携带所述第二数据的 查询响应消息; A first receiving unit configured to receive a query response message carrying the second data sent by the network storage device;
第三发送单元, 用于当确定执行擦除时, 向所述网络存储装置发送携带 有所述第二数据的擦除请求。 The third sending unit is configured to send an erasure request carrying the second data to the network storage device when it is determined to perform erasure.
39、 根据权利要求 36或 37所述的用户终端, 其特征在于, 所述终端包 括还包括: 39. The user terminal according to claim 36 or 37, characterized in that the terminal further includes:
第二接收单元, 用于接收所述网络存储装置发送的擦除所述第一数据的 确认请求, 其中所述确认请求用于提醒所述用户获知擦除所述第一数据的操 作; The second receiving unit is configured to receive a confirmation request for erasing the first data sent by the network storage device, where the confirmation request is used to remind the user of the operation of erasing the first data;
第四发送单元, 用于当确定执行擦除时, 向所述网络存储装置发送确认 请求的响应消息。 The fourth sending unit is configured to send a response message confirming the request to the network storage device when it is determined to perform erasure.
40、 根据权利要求 36或 37所述的用户终端, 其特征在于, 所述终端包 括还包括: 40. The user terminal according to claim 36 or 37, characterized in that the terminal further includes:
第三接收单元, 用于接收所述网络存储装置发送的数据擦除响应信息, 所述擦除响应信息用于通知所述用户所述第一数据已擦除; 还用于接收所述 网络存储装置发送的擦除进展信息, 所述擦除进展信息用于通知所述用户所 述第一数据正在擦除或者擦除操作完成的百分比或者擦除操作剩余时间。 The third receiving unit is used to receive the data erasure response information sent by the network storage device, the erasure response information is used to notify the user that the first data has been erased; and is also used to receive the The erasure progress information sent by the network storage device is used to notify the user that the first data is being erased or the percentage of the erasure operation completed or the remaining time of the erasure operation.
41、 一种用户代理, 其特征在于, 所述代理还包括: 41. A user agent, characterized in that the agent further includes:
接收单元, 用于接收用户发送的擦除请求, 所述擦除请求携带有数据的 标识信息, 以及将所述擦除请求传输给发送单元, 其中, 所述数据的标识信 息包括用户存储的数据对象的指示信息, 或者所述用户的数据的标识信息包 括用户存储的数据对象的相关信息的标识; The receiving unit is configured to receive an erasure request sent by the user, the erasure request carries the identification information of the data, and transmit the erasure request to the sending unit, wherein the identification information of the data includes the data stored by the user. The indication information of the object, or the identification information of the user's data includes the identification of the relevant information of the data object stored by the user;
发送单元, 用于从所述接收单元接收所述擦除请求, 向网络存储装置发 送所述擦除请求, 所述擦除请求携带有数据的标识信息, 用以所述网络存储 装置确定所述数据的标识信息相关的第一数据, 并擦除所述第一数据。 A sending unit, configured to receive the erasure request from the receiving unit, and send the erasure request to a network storage device, where the erasure request carries identification information of the data, so that the network storage device determines the erasure request. The identification information of the data is related to the first data, and the first data is erased.
42、 根据权利要求 41所述的用户代理, 其特征在于, 所述接收单元用于 接收查询用户数据相关信息的请求, 其中, 该查询用户数据相关信息的请求 携带数据的标识信息; 所述发送单元用于向所述网络存储装置发送查询用户 数据相关信息的请求; 42. The user agent according to claim 41, wherein the receiving unit is configured to receive a request for querying user data-related information, wherein the request for querying user data-related information carries identification information of the data; the sending The unit is configured to send a request to query user data related information to the network storage device;
以及, 所述接收单元还用于接收所述网络存储装置发送的携带第二数据 的查询响应消息; 所述发送单元用于向所述用户发送携带所述第二数据的查 询响应消息。 And, the receiving unit is further configured to receive a query response message carrying the second data sent by the network storage device; and the sending unit is configured to send a query response message carrying the second data to the user.
43、 一种用户代理, 其特征在于, 所述代理还包括: 43. A user agent, characterized in that the agent further includes:
接收单元, 用于接收所述用户发送的擦除请求, 所述擦除请求携带有数 据的标识信息; A receiving unit, configured to receive an erasure request sent by the user, where the erasure request carries identification information of the data;
发送单元, 用于向网络存储装置发送写数据请求, 所述写数据请求携带 所述数据的标识信息, 以使得所述网络存储装置确定所述数据的标识信息相 关的第一数据, 改写所述第一数据。 A sending unit, configured to send a write data request to a network storage device, where the write data request carries the identification information of the data, so that the network storage device determines the first data related to the identification information of the data, and rewrites the First data.
44、根据权利要求 43所述的用户代理, 其特征在于, 所述第一数据包括: 用户存储的数据对象和 /或用户存储的数据对象的相关信息, 其中, 所述用户 存储的数据对象的相关信息包括以下信息中的一种或者几种: 用于恢复用户存储在所述网络存储装置中的数据对象的副本、 快照、 镜 像或者版本信息; 44. The user agent according to claim 43, characterized in that, the first data includes: data objects stored by the user and/or related information of the data objects stored by the user, wherein, the data objects stored by the user Relevant information includes one or more of the following information: Used to restore copies, snapshots, images or version information of data objects stored by users in the network storage device;
用于描述用户存储在所述网络存储装置中的数据对象的内容的信息; 或 者 Information used to describe the content of data objects stored by the user in the network storage device; or
用户存储在所述网络存储装置中的数据对象的隐私信息。 The user's private information of data objects stored in the network storage device.
45、 根据权利要求 43或 44所述的用户代理, 其特征在于, 所述写数据 请求还携带第三数据, 以使得所述网络存储装置将所述第一数据改写成所述 第三数据。 45. The user agent according to claim 43 or 44, characterized in that the write data request also carries third data, so that the network storage device rewrites the first data into the third data.
46、 一种数据擦除系统, 其特征在于, 所述系统包括根据权利要求 20至 35所述的网络存储装置和根据权利要求 36至 40所述的用户终端; 或者根据 权利要求 20至 35所述的网络存储装置、 根据权利要求 36至 40所述的用户 终端和根据权利要求 41至 42所述的用户代理; 或者根据权利要求 20至 35 所述的网络存储装置和根据权利要求 43至 45所述的用户代理。 46. A data erasure system, characterized in that the system includes the network storage device according to claims 20 to 35 and the user terminal according to claims 36 to 40; or the system according to claims 20 to 35 The network storage device according to claims 36 to 40, and the user agent according to claims 41 to 42; or the network storage device according to claims 20 to 35 and the user terminal according to claims 43 to 45. The user agent.
47、 一种网络存储装置, 其特征在于, 所述装置包括: 47. A network storage device, characterized in that the device includes:
网络接口; Network Interface;
处理器; processor;
存储器; memory;
物理存储在所述存储器中的应用程序, 所述应用程序包括可用于使所述 处理器和所述装置执行以下过程的指令: An application program physically stored in the memory, the application program including instructions that may be used to cause the processor and the device to perform the following processes:
接收擦除请求, 所述擦除请求携带有数据的标识信息; Receive an erasure request, where the erasure request carries identification information of the data;
确定所述数据的标识信息相关的第一数据; Determine the first data related to the identification information of the data;
擦除所述第一数据。 Erase the first data.
48、 根据权利要求 47所述的网络存储装置, 其特征在于, 所述擦除所述 第一数据的方式包括下列方式的一种或多种: 48. The network storage device according to claim 47, wherein the method of erasing the first data includes one or more of the following methods:
破坏所述第一数据的内容; Destroy the content of the first data;
删除所述第一数据的内容; 覆盖所述第一数据的内容。 Delete the content of the first data; Overwrite the content of the first data.
49、 根据权利要求 48所述的网络存储装置, 其特征在于, 所述应用程序 可用于使所述处理器和所述装置执行覆盖所述第一数据的内容过程的指令包 括: 将所述第一数据的内容所有比特位写成特定值或者随机数据或者用户指 定的数据。 49. The network storage device according to claim 48, characterized in that, the instructions for the application program to cause the processor and the device to execute a process of overwriting the content of the first data include: All bits of a data content are written as specific values or random data or user-specified data.
50、 根据权利要求 47或 48或 49所述的网络存储装置, 其特征在于, 所 述擦除请求还携带擦除请求标识, 所述擦除请求标识用于通知所述网络存储 装置用户希望对相关数据进行擦除。 50. The network storage device according to claim 47 or 48 or 49, characterized in that the erasure request also carries an erasure request identifier, and the erasure request identifier is used to notify the network storage device that the user wants to Relevant data is erased.
51、 根据权利要求 47或 48或 49所述的网络存储装置, 其特征在于, 所 述数据的标识信息包括用户存储的数据对象的指示信息, 其中, 所述用户存 储的数据对象的指示信息包括下列信息的一种或多种: 数据对象的标识、 文 件夹的标识、 用户账户的标识。 51. The network storage device according to claim 47 or 48 or 49, characterized in that the identification information of the data includes indication information of data objects stored by the user, wherein the indication information of the data objects stored by the user includes One or more of the following information: identification of the data object, identification of the folder, identification of the user account.
52、 根据权利要求 51所述的网络存储装置, 其特征在于, 所述应用程序 可用于使所述处理器和所述装置执行确定所述数据的标识信息相关的第一数 据, 擦除所述第一数据过程的指令包括: 根据所述用户存储的数据对象的指 示信息, 确定用户存储在所述网络存储装置中的数据对象; 擦除所述用户存 储在所述网络存储装置中的数据对象。 52. The network storage device according to claim 51, wherein the application program can be used to cause the processor and the device to determine the first data related to the identification information of the data, and erase the The instructions of the first data process include: determining the data objects stored by the user in the network storage device according to the indication information of the data objects stored by the user; erasing the data objects stored by the user in the network storage device .
53、 根据权利要求 51所述的网络存储装置, 其特征在于, 所述应用程序 包括可用于使所述处理器和所述装置执行以下过程的指令: 根据所述存储在 所述网络存储装置中的数据对象的指示信息, 确定用户存储的数据对象的相 关信息, 其中, 所述用户存储的数据对象的相关信息包括以下信息中的一种 或者几种: 用于恢复用户存储在所述网络存储装置中的数据对象的副本、 快 照、 镜像或者版本信息; 或者, 用于描述用户存储在所述网络存储装置中的 数据对象的内容的信息; 或者, 用户存储在所述网络存储装置中的数据对象 的隐私信息; 擦除所述用户存储的数据对象的相关信息。 53. The network storage device according to claim 51, wherein the application program includes instructions operable to cause the processor and the device to perform the following processes: The indication information of the data object, determines the relevant information of the data object stored by the user, wherein the relevant information of the data object stored by the user includes one or more of the following information: used to restore the user stored in the network storage Copy, snapshot, mirror or version information of the data object in the device; or, information used to describe the content of the data object stored by the user in the network storage device; or, data stored by the user in the network storage device The private information of the object; Erase the relevant information of the data object stored by the user.
54、 根据权利要求 47或 48或 49所述的网络存储装置, 其特征在于, 所 述用户的数据的标识信息包括用户存储的数据对象的相关信息的标识, 所述 用户存储的数据对象的相关信息包括以下信息中的一种或者几种: 用于恢复 用户存储在所述网络存储装置中的数据对象的副本、 快照、 镜像或者版本信 息; 用于描述用户存储在所述网络存储装置中的数据对象的内容的信息; 或 者用户存储在所述网络存储装置中的数据对象的隐私信息。 54. The network storage device according to claim 47 or 48 or 49, characterized in that: The identification information of the user's data includes the identification of the relevant information of the data objects stored by the user. The relevant information of the data objects stored by the user includes one or more of the following information: used to restore the user's stored data in the network storage. Copies, snapshots, mirrors or version information of data objects in the device; information used to describe the content of data objects stored by users in the network storage device; or privacy of data objects stored by users in the network storage device information.
55、 根据权利要求 54所述的网络存储装置, 其特征在于, 所述应用程序 可用于使所述处理器和所述装置执行确定所述数据的标识信息相关的第一数 据, 擦除所述第一数据过程的指令包括: 根据所述用户存储的数据对象的相 关信息的标识, 确定用户存储的数据对象的相关信息; 擦除所述用户的存储 的数据对象的相关信息。 55. The network storage device according to claim 54, wherein the application program can be used to cause the processor and the device to determine the first data related to the identification information of the data, and erase the The instructions of the first data process include: determining the relevant information of the user-stored data object according to the identification of the relevant information of the user-stored data object; and erasing the relevant information of the user-stored data object.
56、 根据权利要求 47或 48或 49所述的网络存储装置, 其特征在于, 所 述应用程序包括可用于使所述处理器和所述装置执行以下过程的指令: 网络 存储装置接收查询用户数据相关信息的请求, 其中, 该查询用户数据相关信 息的请求携带数据的标识信息; 根据所述数据的标识信息, 确定所述数据的 标识信息相关的第二数据, 所述第二数据包括用户存储的数据对象的指示信 息和 /或用户存储的数据对象的相关信息的标识; 返回携带所述第二数据的查 询响应消息; 接收携带有所述第二数据的擦除请求。 56. The network storage device according to claim 47 or 48 or 49, characterized in that the application program includes instructions that can be used to cause the processor and the device to perform the following processes: the network storage device receives query user data A request for related information, wherein the request for querying user data related information carries the identification information of the data; according to the identification information of the data, determine the second data related to the identification information of the data, and the second data includes user storage indication information of the data object and/or identification of relevant information of the data object stored by the user; return a query response message carrying the second data; receive an erasure request carrying the second data.
57、 根据权利要求 47或 48或 49所述的网络存储装置, 其特征在于, 所 述应用程序可用于使所述处理器和所述装置执行擦除所述第一数据过程之前 的指令包括: 57. The network storage device according to claim 47 or 48 or 49, characterized in that the application program can be used to cause the processor and the device to execute instructions before erasing the first data process:
发送擦除所述第一数据的确认请求, 其中所述确认请求用于提醒所述用 户获知擦除所述第一数据的操作; Send a confirmation request for erasing the first data, wherein the confirmation request is used to remind the user of the operation of erasing the first data;
接收所述确认请求的响应消息; 以及, 根据所述响应消息确定是否执行 所述擦除第一数据的操作。 Receive a response message of the confirmation request; and, determine whether to perform the operation of erasing the first data according to the response message.
58、 根据权利要求 57所述的网络存储装置, 其特征在于, 所述确认请求 还包括所述第一数据的呈现信息, 所述呈现信息用于指示所述第一数据包括 的数据对象、 数据内容或者数据范围; 相应地, 所述确认请求的响应消息还 包括所述用户根据所述第一数据的呈现信息所选择的第一数据的数据对象、 数据内容或者数据范围。 58. The network storage device according to claim 57, wherein the confirmation request further includes presentation information of the first data, and the presentation information is used to indicate that the first data includes The data object, data content or data range; accordingly, the response message of the confirmation request also includes the data object, data content or data range of the first data selected by the user according to the presentation information of the first data.
59、 根据权利要求 47或 48或 49所述的网络存储装置, 其特征在于, 所 述擦除请求来自于所述用户或者所述用户的代理或者监管机构。 59. The network storage device according to claim 47 or 48 or 49, characterized in that the erasure request comes from the user or the user's agent or regulatory agency.
60、 根据权利要求 47或 48或 49所述的网络存储装置, 其特征在于, 所 述应用程序包括可用于使所述处理器和所述装置执行以下过程的指令: 发送 数据擦除响应信息, 所述擦除响应信息用于通知所述用户所述第一数据已擦 除。 60. The network storage device according to claim 47 or 48 or 49, characterized in that the application program includes instructions that can be used to cause the processor and the device to perform the following processes: sending data erasure response information, The erasure response information is used to notify the user that the first data has been erased.
61、 根据权利要求 47或 48或 49所述的网络存储装置, 其特征在于, 所 述应用程序包括可用于使所述处理器和所述装置执行以下过程的指令: 发送 数据擦除进展信息, 所述擦除进展信息用于通知所述用户所述第一数据正在 擦除或者擦除操作完成的百分比或者擦除操作剩余时间。 61. The network storage device according to claim 47 or 48 or 49, wherein the application program includes instructions that can be used to cause the processor and the device to perform the following processes: sending data erasure progress information, The erasure progress information is used to notify the user that the first data is being erased or the percentage of the erasure operation completed or the remaining time of the erasure operation.
62、 根据权利要求 47或 48或 49所述的网络存储装置, 其特征在于, 所 述应用程序包括可用于使所述处理器和所述装置执行以下过程的指令: 保存 所述数据擦除请求信息和 /或所述数据擦除响应信息。 62. The network storage device according to claim 47 or 48 or 49, characterized in that the application program includes instructions that can be used to cause the processor and the device to perform the following process: save the data erasure request information and/or the data erasure response information.
63、 一种用户代理, 其特征在于, 所述代理包括: 63. A user agent, characterized in that the agent includes:
网络接口; Network Interface;
处理器; processor;
存储器; memory;
物理存储在所述存储器中的应用程序, 所述应用程序包括可用于使所述 处理器和所述代理执行以下过程的指令: An application program physically stored in the memory, the application program including instructions operable to cause the processor and the agent to perform the following processes:
接收所述用户发送的擦除请求, 所述擦除请求携带有数据的标识信息; 向网络存储装置发送写数据请求, 所述写数据请求携带所述数据的标识 信息, 以使得所述网络存储装置确定所述数据的标识信息相关的第一数据, 改写所述第一数据。 Receive an erasure request sent by the user, where the erasure request carries the identification information of the data; send a write data request to the network storage device, where the write data request carries the identification information of the data, so that the network storage device The device determines first data related to the identification information of the data, and rewrites the first data.
64、 根据权利要求 63所述的网络存储装置, 其特征在于, 所述第一数据 包括: 用户存储的数据对象和 /或用户存储的数据对象的相关信息, 其中, 所 述用户存储的数据对象的相关信息包括以下信息中的一种或者几种: 用于恢 复用户存储在所述网络存储装置中的数据对象的副本、 快照、 镜像或者版本 信息; 用于描述用户存储在所述网络存储装置中的数据对象的内容的信息; 或者用户存储在所述网络存储装置中的数据对象的隐私信息。 64. The network storage device according to claim 63, wherein the first data includes: user-stored data objects and/or related information of user-stored data objects, wherein, the user-stored data objects The relevant information includes one or more of the following information: used to restore copies, snapshots, mirrors or version information of data objects stored by users in the network storage device; used to describe the data objects stored by users in the network storage device Information about the contents of the data objects in the network storage device; or privacy information of the data objects stored by the user in the network storage device.
65、 根据权利要求 63或 64所述的网络存储装置, 其特征在于, 所述写 数据请求还携带第三数据, 以使得所述网络存储装置将所述第一数据改写成 所述第三数据。 65. The network storage device according to claim 63 or 64, characterized in that the write data request also carries third data, so that the network storage device rewrites the first data into the third data. .
PCT/CN2012/088049 2012-12-31 2012-12-31 Data erasure method, device and system WO2014101186A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201280003366.3A CN103443757B (en) 2012-12-31 2012-12-31 Data method for deleting, device and system
PCT/CN2012/088049 WO2014101186A1 (en) 2012-12-31 2012-12-31 Data erasure method, device and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2012/088049 WO2014101186A1 (en) 2012-12-31 2012-12-31 Data erasure method, device and system

Publications (1)

Publication Number Publication Date
WO2014101186A1 true WO2014101186A1 (en) 2014-07-03

Family

ID=49696203

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/088049 WO2014101186A1 (en) 2012-12-31 2012-12-31 Data erasure method, device and system

Country Status (2)

Country Link
CN (1) CN103443757B (en)
WO (1) WO2014101186A1 (en)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11303718B2 (en) * 2014-06-05 2022-04-12 Lenovo (Singapore) Pte. Ltd. Method and device to manage temporary content on a mobile device
CN105824839A (en) * 2015-01-06 2016-08-03 中兴通讯股份有限公司 Method and apparatus for safe deletion of data in mobile terminal
CN107346210B (en) * 2016-05-06 2020-08-14 阿里巴巴集团控股有限公司 Hard disk data erasing method, server and system
CN106250386A (en) * 2016-07-08 2016-12-21 乐视控股(北京)有限公司 The method and apparatus deleting object in object storage
CN106843768B (en) * 2017-01-25 2020-06-23 北京百度网讯科技有限公司 Hard disk data erasing method and device
CN109558065B (en) * 2017-09-25 2020-11-27 杭州海康威视系统技术有限公司 Data deleting method and distributed storage system
CN107765996A (en) * 2017-09-25 2018-03-06 青岛海信移动通信技术股份有限公司 The method for deleting and device of a kind of data

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101799743A (en) * 2009-02-05 2010-08-11 株式会社日立制作所 Method and apparatus for logical volume management
CN102196422A (en) * 2010-03-11 2011-09-21 北京明朝万达科技有限公司 Method for preventing leakage of lost file of handheld communication terminal
CN102571949A (en) * 2011-12-31 2012-07-11 河海大学 Network-based data self-destruction method
US20120239632A1 (en) * 2011-03-02 2012-09-20 International Business Machines Corporation Methods for secure multi-enterprise storage

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101389096A (en) * 2007-09-13 2009-03-18 深圳华为通信技术有限公司 Method and terminal device for erasing terminal data
CN101800968B (en) * 2010-02-08 2013-06-05 中兴通讯股份有限公司 Establishing method of data path actively launched by mobile terminal and ASN

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101799743A (en) * 2009-02-05 2010-08-11 株式会社日立制作所 Method and apparatus for logical volume management
CN102196422A (en) * 2010-03-11 2011-09-21 北京明朝万达科技有限公司 Method for preventing leakage of lost file of handheld communication terminal
US20120239632A1 (en) * 2011-03-02 2012-09-20 International Business Machines Corporation Methods for secure multi-enterprise storage
CN102571949A (en) * 2011-12-31 2012-07-11 河海大学 Network-based data self-destruction method

Also Published As

Publication number Publication date
CN103443757B (en) 2017-12-15
CN103443757A (en) 2013-12-11

Similar Documents

Publication Publication Date Title
WO2014101186A1 (en) Data erasure method, device and system
TWI599900B (en) Apparatus, method, and computer program for providing secure file-deletion function
US10178077B2 (en) Preventing persistent storage of cryptographic information using signaling
US8352785B1 (en) Methods for generating a unified virtual snapshot and systems thereof
US7769721B2 (en) Data recovery method in differential remote backup for a NAS system
US10108501B2 (en) Terminal backup and recovery method
US20130066839A1 (en) Restore manager
WO2013181957A1 (en) Method and system for data recovery of mobile terminal
JP2009237843A (en) File management system, mobile terminal, and mobile terminal program
US10430292B2 (en) Snapshot deletion in a distributed storage system
JP2019508974A (en) Computer-implemented method for performing backup of object set by client and computer-implemented method for restoring backup of object set by client
CN107710164A (en) As a kind of disaster recovery of service
US20120265831A1 (en) System and Method for Transmitting and Filtering Instant Messaging Information
US10430110B2 (en) Implementing a hybrid storage node in a distributed storage system
JP4933822B2 (en) Data erasing system, management server, data erasing method and program
JP2009217556A (en) Information processing system, information terminal, and program
WO2024032770A1 (en) Data deletion method and electronic device
KR20120018965A (en) System and method for providing file backup, restore and delete data perfectly service for mobile terminal and portable computing apparatus device
WO2020078430A1 (en) Information storage and memory card recovery method and apparatus, electronic device, and storage medium
JP5433069B1 (en) Backup device, backup program and backup system
US10452308B2 (en) Encoding tags for metadata entries in a storage system
JP5015044B2 (en) Information processing system, information terminal, and program
US20230418741A1 (en) Data storage device management system
JP2010257087A (en) Information processor, communication system, and program
Jochims et al. Effectiveness of Mobile Wiping Applications

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12891310

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12891310

Country of ref document: EP

Kind code of ref document: A1