摘要
随着信息产业的快速发展,移动存储已经得到普及应用,同时也给内网中的敏感数据带来了巨大的安全隐患。文章在驱动层设计了一个C/S模式的移动介质安全管理系统。在系统加载介质时即对介质进行强审计.系统基于可信计算的一些理论对内网进行可信域的划分,形成内网敏感数据的保护区。通过与系统服务端、客户端的通信,系统完成对介质的身份认证,分域管理及日志记录等功能。系统达到安全控制用户移动存储介质的目的,有效防止内网中敏感数据泄露事故的发生。
With the rapid development of information industry,the mobile storage medium has been of universal application,but at the same time it has given the sensitive data within the network under an enormous security risk.This paper studys a safety management system for mobile media of C/S model at device driver layer of operating system,and it audited the media strongly while loading it.The system divided the intranet into some trusted region based on the trusted computing theory and formed the protecting area of the sensitive data.Through communications with the server and the client,it can complete the authentication,sub-domain management and logging functions of the USB device.The system controls the user-removable storage media within the network safely and prevents sensitive data leaking accidents.
出处
《计算机与数字工程》
2010年第4期111-114,共4页
Computer & Digital Engineering
基金
科技部科研院所技术开发研究专项基金资助
关键词
驱动层
强审计
移动介质
可信域
driver-layer
strong audit
mobile media
trusted region
