Dissertation > Excellent graduate degree dissertation topics show

Converged IP and FC storage system security architecture design and implementation

Author: LiRui
Tutor: ZhouJingLi
School: Huazhong University of Science and Technology
Course: Computer System Architecture
Keywords: Fusion storage Storage Area Network Storage Security Access Control
CLC: TP333
Type: Master's thesis
Year: 2011
Downloads: 14
Quote: 0
Read: Download Dissertation

Abstract


With the rapid development of information technology , individuals and organizations on the growing demand for information storage , storage area networks are so widely used. However, the storage area network fiber channel storage area network with an Ethernet storage area network advantages and disadvantages, if we can both fusion , it is possible to carry out the complementary advantages , to meet the needs of various users . Both Fibre Channel storage area network or Ethernet storage area network is a security problem, but when the two are fused together, turn the emergence of new security issues. Therefore, the need for such a converged storage system for analysis and research, to design appropriate security system to ensure that the entire storage system security and reliability . Storage system security mainly in the following aspects: security authentication , access control, data security dynamic and static data security. Combined with the characteristics of fusion systems for Challenge Handshake Authentication Protocol has been improved to achieve a storage controller to store user and safety certification . Because the Fibre Channel protocol is different from the IP protocol , Fibre Channel initiator using Challenge Handshake Authentication Protocol is used for authentication -band authentication, and IP initiator is in-band authentication . Presents a group and role -based access control model , with user groups to control user access to the device , with the role to control user data read and write operations , enabling users to store multiple levels of access control . In dynamic data transmitted over Ethernet easily be intercepted , stolen or modified , so the initiator and the storage controller IP is established between the C / S mode virtual private network to protect it . Using IEEE1619 standard proposed XTS-AES encryption algorithm to static data on the storage device to encrypt stored , while the encryption key for unified allocation and management to ensure that the storage device is lost when the static data security. Test results show that : the design solutions for the converged storage system provides a full range of security, both programs use a virtual private network technology and the XTS-AES encryption algorithm to increase the overall system overhead is not large.

Related Dissertations

  1. Study on Channel Allocation of Multi-Channel MAC Protocol in Ad-Hoc Network,TN929.5
  2. Research on MAC Protocol for WIreless Sensor Network,TN915.04
  3. Research and Implementation on Smartcard Database Management System,TP311.52
  4. SNMP-based network management system Fibre Channel switch design,TN915.07
  5. Identity-Based Authentication System Research and Implementation,TN918.1
  6. Electronic file operations safety monitoring technology research,TP309
  7. Origins sensor data privacy protection technology research and application,TP393.08
  8. Dynamic Context -based access control to achieve active WEB,TP393.08
  9. J2EE-based removable storage devices electronic document security management system design and implementation,TP311.52
  10. For cross-border exchange of information visualization analysis of access control policy,TP393.08
  11. Extended model based on RBAC rights management system design and implementation,TP311.52
  12. Java Message Service Mechanism Research and Application,TP311.52
  13. A high- security access control model for Web application research,TP393.08
  14. Research on Policy Integration Mechanism of Hybrid Hierarchy Based Multi-domains,TP393.08
  15. Implementation and Improvement of the MAC Layer of Zigbee Protocol Based on ARM7 Platform,TP212.9
  16. Study and Implementation of Performance Optimization SAN Cluster File System,TP316.7
  17. Studies of Access Control of Wireless Sensor Network,TP212.9
  18. Hard security access control Research and Implementation,TP333.35
  19. Research and Development of Single Sign-on and Authorization Manage System in Hospital Information System,TP311.52
  20. Research and Implementation on Access Control for Intranet Terminal Based on Policy,TP393.08
  21. The Research and Implementation of Security Architecture Based on RBAC Model in Web Application,TP393.08

CLC: > Industrial Technology > Automation technology,computer technology > Computing technology,computer technology > Electronic digital computer (not a continuous role in computer ) > Memory
© 2012 www.DissertationTopic.Net  Mobile