Abstract: With the rapid development of cloud storage technology, more and more enterprises and individuals store in the cloud. However, data security has become a “nightmare” for its development. Based on this, a data encryption protection mechanism for cloud storage environment is proposed in this paper. This method adopts different encryption strategies according to different data types, and achieve efficient encryption and decryption of structured data and unstructured data. In order to ensure Chinas cyber security and public interest, this paper uses Chinese cryptographic algorithms SM2, SM3 and SM4 instead of foreign cryptographic algorithms. Finally, this paper uses Java language and BS architecture to design and implement a cloud storage encryption system. The simulation experiment demonstrates the correctness and rationality of the design, the design has a certain application value. The solution integrates the terminal data security, network transmission security and data storage security technologies to effectively ensure the integrity, confidentiality, and availability of the cloud data.

Key words: SM2, SM3, SM4, structured data, unstructured data, integrity

摘要： 随着云存储技术的迅猛发展，越来越多的企业和个人将数据存放在云端，然而数据的安全性却成为其发展的“噩梦”.基于此，提出了一种针对云存储环境下的数据加密保护机制，根据不同的数据类型采取不同的加密策略，实现了结构化数据和非结构化数据的高效加解密.同时为确保我国网络安全和社会公众利益，在算法的选择上摒弃了国外密码技术，均采用国产密码算法，方案中使用了国产密码算法SM2,SM3,SM4.最后使用Java语言，采用BS架构的方式设计并实现了一套云存储加密系统，通过仿真实验论证了设计的正确性和合理性，具有一定的应用价值.该方案集终端数据安全、网络传输安全、数据存储安全技术于一体，有效地确保了云数据的完整性、保密性、可用性.

关键词: SM2, SM3, SM4, 结构化数据, 非结构化数据, 完整性