Download Latest Version
datasec-0.1-2.6.18.tar.gz (12.8 kB)
Get an email when there's a new version of Datasec
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| README datasec-0.1-1-2.6.18 .txt | 2011-11-09 | 2.5 kB | |
| README datasec-0.1-2.6.18 .txt | 2011-11-08 | 2.4 kB | |
| Totals: 2 Items | 4.9 kB | 0 | |
Datasec version 0.1
Any suggestion or comments, please mail to
ZhongWen i_zw@qq.com,
Wang Yuwen ryuwen@gmail.com.
This version is developed and tested on the Linux kernel 2.6.18.
1. Description,
Datasec works in Linux kernel as a dynamic module for the file data protection. It can get a file extend name list and protect file in this pattern list through encoding the data stream from user to disk or decoding the data from disk to user automatically and transparently. When we switch this disk to another machin without right decoding module and right passport, the encoded data can not be recover to the original data. Now it supports the Linux kernel 2.6.18 on desktop or mobile.
2. Features,
1) Encoding the file data from user to disk
2) Decoding the file data from user to user
3) Proc entry to enable and disable the encoding and decoding
4) Update the file extend name list in run time.
3. Compile,
1) Download the datasec-0.1-2.6.18.tar.gz
2) Extract it.
tar -zxvf datasec-0.1-2.6.18.tar.gz
3) Make it.
make
4) Then there are 2 kernel modules fs.ko and bs.ko
bs.ko is the basic kernel module, it should be install into kernel firstly.
fs.ko is the file system encoding and decoding kernel module.
4. Usage,
1) Switchsu - to the root user
2) Install the bs.ko module
insmod bs.ko
3) Install the fs.ko module
insmod fs.ko
4) Get the current module information and control entries
Find the control/information/filelist from the /proc/fsec.
5) Config the filelist to the kernel
echo "*.txt|*.cert|*.jpg" >/proc/fsec/filelist
Then the kernel module will encode the data during the file storing and decoding the data during the file loading.
6) Add the encrypto policy to the module
For example, we need protect the txt file and only accessed by vi . Wen can add this policy,
echo "vi,*.txt,,,,,"> /proc/fsec/control
The void parameters are prepare for later and further use.
7) Enable the module start working
echo "enable" > /proc/fsec/control
8) Get the module encrypto policys and running status
cat /proc/fsec/information
9) Disable the module
echo "disable" > /proc/fsec/control
10) Of course, anyone can add the shell script to start and config automatically.
5. Next Step,
1) Support more kernel verison, try update to 3.1 or higher.
2) Improve the current functions.
