It proposed a novel secure cloud storage model (ASOM), based on HDFS.Through isolating the meta-data from the physical storage and the communication between Data nodes and metadata sub -servers, the ASOM model can guarantee secure meta-data management .The main advantages of our ap-proach include avoiding the superposition of complex security policies and the mistrust between the users and the platform .Furthermore, our security storage service can be easily integrated into the cloud compu-ting environment .%针对基于HDFS的云存储平台对元数据绝对全权管理控制问题,提出元数据自主组织模型ASOM,通过分析DataNode与NameNode之间的交互过程,ASOM设计并实现了元数据子服务,通过提取HDFS中DataNode元数据信息直接跟元数据子服务器交互,并且由元数据子服务器处理文件与块、块与DataNode 之间的映射关系。通过对HDFS源代码进行分析编译和模块替换,搭建原型系统进行测试,测试结果表明:对NameNode中的元数据进行必要的安全隔离保证了用户对元数据的控制与管理,可有效避免平台管理员对元数据可能的恶意操作和安全隐患。
展开▼