Research And Implementation Of Data Transparent Monitoring And Protection System For Windows

With the popularization of digital office,electronic documents bring many conveniences and there are also many security risks.If without restriction on the use and transmission of confidential documents,it is very likely to cause all kinds of troubles to companies and even to the country.Therefore,data leakage prevention has become a hot issue of current concern and research.First of all,the domestic and foreign mainstream data leakage prevention products are analyzed,and finds that most products can only provide a single data leakage prevention method,which can't achieve comprehensive protection of document data.Therefore,the concept of an overall solution of “transparent protection beforehand,behavioral control during events,and post-examination review” was proposed.Through the analysis of the Windows file system and network structure,and adopt filter drive technology to achieve comprehensive protection of the document data.Secondly,according to the actual network environment,using the layered thought of software,the hierarchical structure of the system is designed,and a data monitoring and protection system model with Control,Server,and Client is proposed.At the Control,the Control policies are formulated and issued in a unified manner;the Server is responsible for collecting and storing the behavior data and processing the I/O data between the systems;the Client is able to protect confidential documents and contorl user behavior,without affecting the user's operating habits and user can't perceive.At the same time,according to the concept of collaborative work,the system's policy issuing and data collection workflow is designed.Finally,according to the model,a transparent data monitoring and protection system is implemented.On the Control,the management control strategy and data collection are realized;on the Server,the high-performance I/O data processing and data operations are realized through the completion port and the ADO data interface;on the Client,through the Minifilter driver framework and Windows filtering platform,transparent protection of document data and user behavior control are realized.