公开(公告)号：KR1020030055702A

公开(公告)日：2003-07-04

申请号：KR1020010085757

申请日：2001-12-27

Applicant: 한국전자통신연구원

Inventor： 임재덕 ,  유준석 ,  은성경 ,  고종국 ,  두소영 ,  김정녀

IPC: G06F9/06

CPC classification number: G06F21/6218 ,  G06F2221/2107 ,  G06F2221/2113

Abstract: PURPOSE: A file security system using a security level and a method for managing an encryption key are provided to encrypt or decrypt a file having the security level by using the encryption key of each security level, and to offer the file to a user, or save the file in a disk. CONSTITUTION: The disk(130) stores the encryption key matched with the security level set by an access control module(120), a key file storing the encryption key, and the file encrypted by the encryption key. A kernel memory(140) stacks the encryption key stored in the disk(130) according to the driving of the encryption file system(110). The encryption file system(110) draws out the encryption key matched with the security level of the file to read or stored by the user from the kernel memory(140), and transmits the file decrypted or encrypted by the encryption key to the user, or stores the file in the disk.

Abstract translation: 目的：提供使用安全级别的文件安全系统和用于管理加密密钥的方法，以通过使用每个安全级别的加密密钥对具有安全级别的文件进行加密或解密，并将文件提供给用户，或 将文件保存在磁盘中。 构成：磁盘（130）存储与由访问控制模块（120）设置的安全等级相匹配的加密密钥，存储加密密钥的密钥文件和通过加密密钥加密的文件。 内核存储器（140）根据加密文件系统（110）的驱动堆叠存储在盘（130）中的加密密钥。 加密文件系统（110）从内核存储器（140）中提取与用户要读取或存储的文件的安全级别匹配的加密密钥，并将用加密密钥解密或加密的文件发送给用户， 或将文件存储在磁盘中。