针对目前云存储技术存在的数据泄露和数据篡改等安全问题,结合HDFS数据完整性校验机制的特点,设计并实现了一种基于HDFS的数据传输存储安全技术方案.对用户上传至HDFS中的数据文件实施AES加密,文件以密文形式存储,同时应用RSA算法保障AES密钥的安全,可有效防止数据在传输和存储过程中被泄露.设计了基于HDFS的文件密文和文件明文两种存储格式,用户可自主选择是否进行加密.通过安全性分析和性能测试,验证了方案的安全性和可行性.%Aimed at the security issues such as data leakage and data tampering in cloud storage technology,combined with the characteristics of HDFS data integrity verification mechanism,a kind of data security technical solution is designed and implemented,which is based on data transmission and data storage of HDFS.The data uploaded to HDFS is encrypted by AES algorithm and stored in cipher,and the AES secret key is encrypted by RSA algorithm.This solution can effectively avoid the leakage of data transmission and storage.The file stored in two kinds of form,cipher-form and plaintext-form.The user can choose either one to encrypt the file.On the basis of the security analysis and experimental data of the performance test,the security and viability of this solution are verified.
展开▼