A system and a method for detecting intrusion based on distributed storage device

摘要

The present invention relates to a distributed storage device that can detect an intrusion by itself. More specifically, the distributed storage system according to the present invention, i) monitoring the read / write operation of storage node module, ii performing a) entry of the file, and to break repair the damaged data upon detection management node module, iii) intrusion detection but through a set node module, and iv) the network to set up the directory includes a client node module for requesting a read / write to a file, wherein the management node module is sent file when the storage node is requested to the file read / write operation analyzing the version information to detect the penetration of the files on the storage node. ; Intrusion detection system and method according to the invention is therefore detect intrusions by the own information of the data stored in the storage device, the existing system, and network intrusion detection system or primary security techniques own failure by breaking into such as a firewall even when it can not be detected it can provide integrity and availability of the data. In addition, the intrusion detection system and method according to the invention is therefore based on the storage system performs the intrusion detection techniques, the most vulnerable problem was authenticated possible the detection of illegal data leakage and changes by internal users in the existing data security Do.