The issues of multidimensional structure data protection in multidimensional storage systems of data processing centers of a future (Industry 4.0 paradigm) railway transport infrastructure are considered. Several protection subsystems are considered: the quantum key generation channel protection subsystem, which, in turn, is a supporting one for 1) the subsystem of user data transmission, equipped with high-speed encryption hardware, and 2) the subsystem of data integrity monitoring and data regeneration in fail-safe data storage systems. Thus, two hierarchically nested levels of information protection are considered: 1) external level – provision of confidentiality and integrity monitoring of data transferred between data processing centers, and 2) internal level – cryptographic control over data integrity in their storage systems. To ensure normal operation of the second (internal) level, the author’s method of data integrity monitoring based on the synthesis of so-called cryptocode constructs is chosen. These constructs aggregate the properties of cryptographic information protection methods (hash functions) and redundant coding methods. In the operation of such storage systems, the occupied and free spaces are subject to estimation on a regular basis. In addition, data received for storage are classified according to the measure of their value (priority). As data and/or physical/logical structure of the storage system degrades (failures, faults, intentional harmful attacks), two important functions are jointly fulfilled: 1) regeneration (restoration) of data for which the signs of their integrity violation have been ascertained, 2) when the free memory space shrinks below the critical limit, the data with the lowest value (priority) is erased and the vacated space is filled with higher-priority data. In this case, the level of data redundancy is adaptable to the degree of the storage system degradation.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Regeneration of Multidimensional Data Arrays in the Course of Degradation of Their Storage Systems Through the Use of High-Speed Secure Communication Channels with Quantum Key Distribution

  • Nicolay Kramskoi,
  • Alexander Kurakin,
  • Sergey Dichenko,
  • Oleg Finko

摘要

The issues of multidimensional structure data protection in multidimensional storage systems of data processing centers of a future (Industry 4.0 paradigm) railway transport infrastructure are considered. Several protection subsystems are considered: the quantum key generation channel protection subsystem, which, in turn, is a supporting one for 1) the subsystem of user data transmission, equipped with high-speed encryption hardware, and 2) the subsystem of data integrity monitoring and data regeneration in fail-safe data storage systems. Thus, two hierarchically nested levels of information protection are considered: 1) external level – provision of confidentiality and integrity monitoring of data transferred between data processing centers, and 2) internal level – cryptographic control over data integrity in their storage systems. To ensure normal operation of the second (internal) level, the author’s method of data integrity monitoring based on the synthesis of so-called cryptocode constructs is chosen. These constructs aggregate the properties of cryptographic information protection methods (hash functions) and redundant coding methods. In the operation of such storage systems, the occupied and free spaces are subject to estimation on a regular basis. In addition, data received for storage are classified according to the measure of their value (priority). As data and/or physical/logical structure of the storage system degrades (failures, faults, intentional harmful attacks), two important functions are jointly fulfilled: 1) regeneration (restoration) of data for which the signs of their integrity violation have been ascertained, 2) when the free memory space shrinks below the critical limit, the data with the lowest value (priority) is erased and the vacated space is filled with higher-priority data. In this case, the level of data redundancy is adaptable to the degree of the storage system degradation.