| Linux is a operation system of multi-user and multi-tasks. It not only inherited the powerful, stable performance characteristics of Unix system, is still more than a lot of aspects of Unix. Such as simple and efficient process of scheduling, support for kernel threads, virtual file system, the module mechanism, and a strong network of support. In recent years, because of Linux, high-performance, low price, which has been widely used in many areas. A lot of individuals and businesses have turned to Linux operating system, and development and basic research on it's open source become more and more. With the current ongoing large-scale network applications, especially large-scale storage requirements, distributed systems and virtual storage system come into the world. Linux platform for the development of distributed systems has become today's mainstream. At present, the most popular large-scale distributed systems are based on Linux or Unix variant as a development platform.Digital Organzation System[1] is a Linux-based platform for virtual storage systems. Its core idea is gathered on a variety of network storage resources to form a single virtual space to provide a unified image to the application software. And it ensure the high availability data to meet the needs of large-scale network applications. In a traditional P2P distributed storage of data for all users are open, but with the increase of sharing resources and user scales, there will exist some security problem. In some specific system, highly sensitive resources can only be open to certain users, so there must set access control mechanism.This article has analyzed the current Linux security strategy, through a combination of Digital Organzation System and Digital Organzation System FS characteristics, described how to design and implementation Digital Organzation System access security subsystem.Because Digital Organzation System have a high file meta-data management efficiency, the access and modify access control information which is the additional property of file meta-data also have a very high efficiency. And the Digital Organzation System FS's good compatibility, allows local user to set the file access control property very easy. And this security subsystem have a very convenient interface and based role access mechanism, so that Greatly reduce the workload of the administrator. |
PDF Full Text Request