关键词: 数据安全, 分布式存储系统, 可信计算技术, 认证中心, 密钥管理

Abstract: With the advent of the data age, data security has become more and more important. This paper presents a data protection method based on trusted computing technology in distributed storage system. The distributed storage system architecture includes clients, data servers and metadata servers that records or maps data to a real storage node based on a distributed algorithm. The distributed storage system runs data and metadata servers on machines which support trusted computing technology. In order to verify the identity of each server in the storage system and the identity of users, the system adds an authentication center to maintain the trusted status. The authentication center runs on the server with trusted computing functions. The data protection scheme proposed in this paper provides a set of effective protection mechanism based on the trusted computing technology for distributed storage system.

Key words: data security, distributed storage system, trusted computing technology, authentication center, key management