CN103729324A - Security protection device of cloud storage file based on USB3.0 interface - Google Patents

Abstract

The invention relates to the technical field of computer information security and particularly relates to a security protection device of a cloud storage file based on a USB3.0 interface. The security protection device structurally comprises a central processor, an encryption module and a USB communication controller, wherein the central processor and the encryption module finish operation and encryption collaboratively; the USB communication controller finishes a communication function and provides a USB3.0 high-speed interface. The security protection device has extremely-high data transmission speed to solve the transmission bottleneck between a peripheral device and a computer, and simultaneously is compatible to a USB2.0 interface to guarantee wide application range.

Description

A kind of cloud storage file safety guard based on USB3.0 interface

Technical field

The present invention relates to computer information safety technique field, particularly a kind of cloud storage file safety guard based on USB3.0 interface.

Background technology

Cloud computing is paid and use pattern as a kind of IT infrastructure, a kind of information service payment and use pattern, and a kind of novel computation schema of sharing information resources based on internet, enjoys industry and national governments to pay close attention in recent years.Cloud computing can be comprised of with the resource being virtualized by dynamic update a series of, these resources are shared by the user of all cloud computings and can be easily by accesss to netwoks, user, only need to be according to the resource that need to lease cloud computing of individual or group without the technology of grasping cloud computing.

Cloud storage is in the conceptive extension of cloud computing and a development new concept out, refer to by functions such as cluster application, gridding technique or distributed file systems, a large amount of various dissimilar memory devices in network are gathered to collaborative work by application software, a system of data storage and Operational Visit function is externally provided jointly.When the core of cloud computing system computing and processing is the store and management of mass data, in cloud computing system, just need to configure a large amount of memory devices, cloud computing system is just transformed into a cloud storage system so, so cloud storage is a cloud computing system take data store and management as core.

Instantly, all cloudy stores service business provide all cloudlike dish, net dish etc. in cloud stores service, user can use cloud stores service at any time, everywhere, to user, provides many convenience.But also can there is doubt in user when using cloud stores service: 1. user data transmission is to cloud stores service business, whether can unauthorized access and the leakage of serviced business; 2. can data be guaranteed not to be held as a hostage when upload and download.If sum up in the point that in the service scenarios that cloud storage provides, data mainly face the security challenge of two links: 1. storage security in cloud; 2. transmission security in cloud.

Data encryption is the important technology guaranteeing data security, before arriving, are widely used in information security system in the cloud computing epoch always, after the arriving of cloud computing epoch, encryption technology is still used to ensure cloud computing service security as important safety supports technology.Inevitable, encryption technology remains the primary selection that solves above-mentioned two cloud storages challenge link.

At present, to data encryption, there are two kinds of ways of realization of software and hardware in industry, software cryptography depends on host computer and completes encryption and decryption process, its advantage is that distribution is simple, cost is relatively low, but have performance issue, if the performance of host's machine is lower, it is relatively long that it completes the needed time of encryption and decryption.Its advantage of hardware encipher is that self hardware can be born part or all of encryption and decryption and calculates, thereby shared the computational resource of host computer, software mode has good performance relatively, and shortcoming is that on ordinary meaning, the cost of hardware is higher with respect to software, and it is more convenient that distribution is not so good as form of software.

On hardware is realized, also have larger difference, be mainly reflected in the calculated performance of internal calculation chip and the interface that externally connects on; Because the processing power type selecting difference of hardware vendor to inside chip, the key elements such as the processing dominant frequency of chip and storage space, directly cause the performance of hardware encipher device to have height to distinguish.External communication interface is the indispensable path of UNICOM's encryption device and subscriber computer, easily becomes the bottleneck place of transmission performance, and this is also the key point that becomes restriction hardware setting performance.

Summary of the invention

In order to solve the problem of prior art; the invention provides a kind of cloud storage file safety guard based on USB3.0 interface; it provides the high-speed interface of USB3.0; by encryption mechanism is provided; protection user uploads to the file of cloud storage in the security of transmission storage link, resists the safety in cloud storage transmission and storage link for user data, simultaneously; USB3.0 high-speed interface guarantees data rate, avoids the ink-bottle effect of transmission interface.

The technical solution adopted in the present invention is as follows:

A kind of cloud storage file safety guard based on USB3.0 interface; comprise central processing unit, encrypting module and usb communication controller; wherein; central processing unit and encrypting module have been worked in coordination with computing and encryption; usb communication controller completes communication function, and described usb communication controller provides USB3.0 high-speed interface.

Usb communication controller is compatible USB2.0 interface simultaneously, for communicating by letter with subscriber computer.

A kind of cloud storage file safety guard based on USB3.0 interface of the present invention, device is comprised of hardware and software two parts, and outward appearance shows as USB flash disk form, and hardware components consists of shell and built-in chip.The effect of software is the interface that this device of manipulation is provided on computers to user.The major function of device is that the file of upper download cloud storage space is carried out to encryption and decryption.

Built-in chip is the core component of this device, mainly comprises central processing unit, encrypting module and usb communication controller; Computing and encryption function have been worked in coordination with by central processing unit and encrypting module, and communication function is completed by usb communication controller.

The built-in central processor core of hardware unit (CPU), central processing unit provides high primary frequency arithmetic speed; Built-in AES symmetric key encryption algorithm processing module; Data encrypting and deciphering has been worked in coordination with by central processing unit and AES encrypting module.

This device provides USB3.0 high-speed interface, supports UASP transmission mode, supports high-speed transfer; Compatible USB2.0 interface simultaneously, for communicating by letter with subscriber computer.

The beneficial effect that technical scheme provided by the invention is brought is:

A kind of cloud storage file safety guard based on USB3.0 interface of the present invention, its function is that the user file to using cloud storage is encrypted protection; Workflow is real-time encrypted to first user file being carried out by this device in this locality before cloud storage space in user's upload file, and then uploads; When user uses file, first from cloud storage space, download to this locality, then utilize this device to carry out real time decrypting to encrypt file.

This device can effectively be protected the confidentiality of user file, the compatible All Files type of encryption scope and file size, and protected file is in the confidentiality of storage and transmission link, and then protection user's privacy.This device has independently CPU, provides encryption and decryption computing at a high speed, the load that effectively alleviates host CPU; The USB3.0 interface that this device correspondence with foreign country is used, supports UASP transmission mode, has the data rate being exceedingly fast, and has solved the transmission bottleneck of peripheral unit and intercomputer; Compatible USB2.0 interface, has guaranteed the good scope of application simultaneously.

Accompanying drawing explanation

Fig. 1 is the structural representation of a kind of cloud storage file safety guard based on USB3.0 interface of the present invention.

Embodiment

For making the object, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing, embodiment of the present invention is described further in detail.

Embodiment mono-

A kind of cloud storage file safety guard based on USB3.0 interface; comprise central processing unit, encrypting module and usb communication controller; wherein; central processing unit and encrypting module have been worked in coordination with computing and encryption; usb communication controller completes communication function, and described usb communication controller provides USB3.0 high-speed interface.

Usb communication controller is compatible USB2.0 interface simultaneously, for communicating by letter with subscriber computer.

Principle of work of the present invention:

(1) environment structure

(1) the cloud storage file safety guard based on USB3.0 interface;

(2) personal computer, including, but not limited to the desktop computer of internal USB 3.0 or USB2.0 interface, notebook etc.

(2) workflow

(1) this device to the ciphering process of user file is: 1. insert this and install to user personal computer USB interface; 2. by USB interface, receive user's input file (file); 3. by central processing unit and AES encrypting module, user file is encrypted; 4. after having encrypted, by USB interface, to subscriber computer, export encrypted result;

(2) this device to the decrypting process of user file is: 1, insert this and install to user personal computer USB interface; 2, by USB interface, receive the encrypt file (file) of user's input; 3, by central processing unit and AES encrypting module, user file is decrypted; 4, by USB interface, to subscriber computer, export encrypted result after having deciphered.

The foregoing is only preferred embodiment of the present invention, in order to limit the present invention, within the spirit and principles in the present invention not all, any modification of doing, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.

Claims (2)

1. the cloud storage file safety guard based on USB3.0 interface; comprise central processing unit, encrypting module and usb communication controller; wherein; central processing unit and encrypting module have been worked in coordination with computing and encryption; usb communication controller completes communication function; it is characterized in that, described usb communication controller provides USB3.0 high-speed interface.

2. a kind of cloud storage file safety guard based on USB3.0 interface according to claim 1, is characterized in that, described usb communication controller is compatible USB2.0 interface simultaneously, for communicating by letter with subscriber computer.

Images