t r nh

t o

cc

GIO TRNH

AN TON H THNG THNG TIN

MC LC

MC

TRANG

1. LI TA ........................................................................................................... 3 2. GII THIU V M UN MN HC................................................................ 5 3. S QUAN H THEO TRNH T HC NGH............................................. 6 4.CC HNH THC HC TP CHNH TRONG M UN/MN HC ................... 8 5. BI 1: PHN TCH CC NGUYN NHN DN N MT AN TON TRONG H THNG THNG TIN ................................................................................... 9 6.BI 2: LU TR H THNG THNG TIN TRN CC THIT B LU TR .... 17 7.BI 3: VIRUS TIN HC V CCH PHNG CHNG ......................................... 49 8.BI 4: MT S BIN PHP AN TON CHO CC H THNG MY TNH ...... 58 9.BI 5: MT S PHNG THC M HO V GII M D LIU ................... 68 10.BI 6: XY DNG K HOCH BO V H THNG THNG TIN TRN MY TNH ........................................................................................................ 80 11.TI LIU THAM KHO ..................................................................................... 100

BI 1 Tn bi: PHN TCH CC NGUYN NHN DN N MT AN TON TRONG H THNG THNG TIN Gii thiu :
Khi ni n an ton thng tin (ATTT), iu u tin ngi ta thng ngh n l xy dng tng la (Firewall) hoc mt ci g tng t ngn chn cc cuc tn cng v xm nhp bt hp php. Cch tip cn nh vy khng hon ton ng v bn cht ATTT khng n thun ch l s dng mt s cng c hoc mt vi gii php no m m bo ATTT cho mt h thng cn c mt ci nhn tng qut v khoa hc hn.

Mc tiu thc hin:

Xc nh tt c nhng nguyn nhn dn n d liu trn my tnh b mt Phn tch nhng nguyn nhn a n vic r r thng tin

Ni dung chnh: 1.1 Vai tr quan trng ca thng tin trong mt n v. Vy an ton thng tin l g?
Khng th m bo an ton 100%, nhng ta c th gim bt cc ri ro khng mong mun di tc ng t mi pha ca cc lnh vc hot ng kinh t x hi . Khi cc t chc, n v tin hnh nh gi nhng ri ro v cn nhc k nhng bin php i ph v ATTT, h lun lun i n kt lun: nhng gii php cng ngh (k thut) n l khng th cung cp s an ton. Nhng sn phm Anti-virus, Firewalls v cc cng c khc khng th cung cp s an ton cn thit cho hu ht cc t chc. ATTT l mt mt xch lin kt hai yu t: yu t cng ngh v yu t con ngi. 1. Yu t cng ngh: bao gm nhng sn phm nh Firewall, phn mm phng chng virus, gii php mt m, sn phm mng, h iu hnh v nhng ng dng nh: trnh duyt Internet v phn mm nhn Email t my trm. 2. Yu t con ngi: L nhng ngi s dng my tnh, nhng ngi lm vic vi thng tin v s dng my tnh trong cng vic ca mnh.

Hai yu t trn c lin kt li thng qua cc chnh sch v ATTT.

Theo ISO 17799, An Ton Thng Tin l kh nng bo v i vi mi trng thng tin kinh t x hi, m bo cho vic hnh thnh, s dng v pht trin v li ch ca mi cng dn, mi t chc v ca quc gia. Thng qua cc chnh sch v ATTT , lnh o th hin ch v nng lc ca mnh trong vic qun l h thng thng tin. ATTT c xy dng trn nn tng mt h thng cc chnh sch, quy tc, quy trnh v cc gii php k thut nhm mc ch m bo an ton ti nguyn thng tin m t chc s hu cng nh cc ti nguyn thng tin ca cc i tc, cc khch hng trong mt mi trng thng tin ton cu. Nh vy , vi v tr quan trng ca mnh , c th khng nh vn ATTT phi bt u t cc chnh sch trong con ngi l mt xch quan trng nht.

Con ngi khu yu nht trong ton b qu trnh m bo an ton thng tin . Hu nh phn ln cc phng thc tn cng c hacker s dng l khai thc cc im yu ca h thng thng tin v a phn cc im yu rt tic li do con ngi to ra. Vic nhn thc km v khng tun th cc chnh sch v ATTT l nguyn nhn chnh gy ra tnh trng trn. n c l vn s dng mt khu c quy nh rt r trong cc chnh sch v ATTT song vic tun th cc quy nh li khng c thc hin cht ch. Vic t mt mt khu km cht lng, khng thay i mt khu nh k, qun l mt khu lng lo l nhng khu

Phng php nh gi cht lng h thng ATTT

C l khng mt v lnh o no dm khng nh ni b cng ty l thc s an ton v tin cy. Trong bi cnh nn kinh t th trng nh hin nay, s canh tranh din ra gay gt thm ch gia cc nhn vin trong ni b cng ty: tranh dnh khch hng , mc ch thng tin hoc cc mc ch khng lnh mnh khc. mt s t chc, li dng s lng lo trong qun l v ATTT, nhn vin c nhng hnh vi bt lng nh ly cp thng tin mt, chim ot ti khon khch hng , n cp tin thng qua h thng tn dng Theo thng k, khong 70% cc ri ro v ATTT l xut pht t ni b trong t chc. Mt trong nhng cu hi lun c t ra trc cc nh lnh o v cc nh qun tr thng tin l: H thng thng tin ca t chc an ton n mc no? Cu hi ny l mi quan tm ln nht v cng l vn nhy cm nht trong cc khu qun l h thng thng tin. Tr li cu hi ny tht khng n gin nhng khng phi l khng c cu tr li. gii p vn trn, ch yu da vo hai phng php nh gi ATTT nh sau: + Phng php nh gi theo cht lng ATTT ca h thng bng cch cho im.V d: h thng t 60/100 im hoc 60% + Phng php nh gi theo s lng thit b - cng ngh bo mt. Trong thc t , phng php nh gi theo cht lng l phng php duy nht nh gi mc an ton ca cc ti nguyn trong h thng thng tin. Vit Nam, vic nh gi ATTT theo cht lng l hon ton mi. Ngi ta d ng nhn vic trang b mt cng c ATTT nh (Firewall, Anti-virus) l m bo c ATTT cho h thng. Cht lng ATTT phi c nh gi trn ton b cc yu t m bo tnh an ton cho h thng t t chc, con ngi, an ninh vt l, qun l ti nguyn n vic s dng cc cng c k thut. Ni cch khc, cht lng ATTT c nh gi trn c s thc thi cc chnh sch v ATTT trong h thng. Cc chnh sch ny c chun ho v c cng nhn l cc tiu chun v ATTT p dng trn phm vi ton th gii.

Phng php nh gi theo s lng khng c s dng. Tiu chun nh gi v cht lng ATTT.
Vic nh gi mc ATTT ca cc t chc thng c tin hnh theo kinh nghim v da trn cc quy nh mang tnh cm tnh , cc b ca t chc m khng tnh n cc tiu chun c th gii cng nhn . Vi nm trc y, Vin Tiu chun ca Anh (BSI) cng vi mt s t chc thng mi khc nh Shell, National Westminster Bank, Midland Bank nghin cu v xut mt tiu chun v ATTT. n nm 1995, tiu chun ny c cng nhn l tiu chun quc gia v qun l ATTT - BS7799. Tiu chun ny c lp vi m hnh hot ng ca cc cng ty. Lnh o cng ty, cc CSO/CIO da trn c s cc tiu chun ny thit lp cc chnh sch ATTT cho n v mnh. Ngay sau khi r a i, BS7799 c s dng 27 nc bao gm cc nc thuc khi lin hip Anh cng 4

nh mt s quc gia khc nh Thy S, H Lan... n nm 2000, T chc tiu chun th gii ISO trn c s BS7799 xy dng tiu chun ISO 17799 v tiu chun ny tr th nh tiu chun quc t v qun l cht lng ATTT (ISO/IEC 17799). Tnh n thng 2/2005 c khong hn 1000 t chc nhn chng ch ISO 17799 trong c Hitachi, Nokia,

Nhng phn c bn ca ISO 17799:

1. Chnh sch chung 2. An ninh nhn s (Personel Security) 3. Xc nh, phn cp v qun l ti nguyn (Asset Identification, Classification & Control). 4. An ninh vt l (Physical Security). 5. An ninh t chc (Security Organization). 6. Qun tr IT v mng (IT operations and network management). 7. Qun l truy cp v cc phng php (Access control & methods). 8. Pht trin HT v bo tr (System development & maintenance). 9. Tnh lin tc trong kinh doanh v k hoch phc hi sau s c (Bussiness Continuty & Disaster Recovery Planning) 10. Ph hp h thng vi cc yu t v lut php, o c (Low, Inestigation and Ethics).

Hnh 1.1 Nhng phn c bn ca ISO 17799

Chnh sch v an ton thng tin c t chc theo m hnh kim t thp.Cch t chc ny gip cho cc nh lnh o qun l cht lng an ton thng tin mt cch khoa hc v hiu qu. Trn nh kim t thp m t cc chnh sch c p dng trong t chc .Ti sao ta phi thit lp chnh sch ny ? Phm vi v i tng tc ng ca chnh sch? . Khng c mt chnh sch p dng chung cho mi n v. Trong mt t chc c nhiu b phn , tng b phn li c chc nng nhim v khc nhau, tnh cht v cch t chc thng tin cng khc nhau .B phn kinh doanh c m hnh thit k h thng ring vi c s d liu mang c th kinh doanh , b phn sn xut ,b phn nghin cu cng c cu trc h thng v c s d liu ca ring mnh .Trnh nhn thc v an ton thng tin cng rt chnh lch . Chnh v vy khi thit lp cc chnh sch ,nh qun l cn xc nh r mc ch ca chnh sch c thit lp , i tng thc thi , phm vi tc ng Lp th hai trn m hnh m t cc quy tc ,quy nh thc thi cc chnh sch . thc hin cc chnh sch ta phi lm g ? H thng cc quy tc ATTT c th hin trn 10 lnh vc ln bao hm cc quy nh t t chc , con ngi , an ninh vt l n cc cng c k thut an ton thng tin .Cc quy tc c xy dng trn m hnh IT chun ca t chc v th hin

c tnh c th ca t chc .Thng qua vic thc thi cc quy tc , c th nh gi cht lng an ton thng tin ca mt t chc thng qua kim ton (Audit) . Lp th ba l lp cui cng ca m hnh . y l cc quy trnh , cc gii php h tr thc thi cc quy tc , quy nh trn.N tr li cho cu hi lm nh th no thc thi cc quy nh trn ? Cc nh qun tr an ton thng tin (CSO) cng cc qun tr IT thit lp cc quy trnh ny v ph bin n mi nhn vin trong t chc ,v d Quy trnh thay i mt khu,Quy trnh ci t cc chng trnh dit virut ,chng cc chng trnh c hi v.v.Cc quy trnh ny c th lin quan n nhiu chnh sch v i tng s dng khc nhau.

Vic p dng ISO 17799 em li li ch g cho t chc?

Vic p dng cc tiu chun v ATTT theo ISO 17799 lm tng nhn thc cho i ng cn b nhn vin v ATTT. Xy dng mt mi trng an ton, c kh nng min dch trc cc ri ro, gim thiu cc nguy c do con ngi gy ra. Tiu chun ISO 17799 ra nhng nguyn tc chung trong qu trnh thit k , xy dng h thng thng tin mt cch khoa hc, gip cho vic qun l h thng tr nn sng sa, an ton, minh bch hn. Chng ta xy dng mt bc tng ngi an ton (Secure People Wall) trong t chc. Mt mi trng thng tin an ton, trong sch s c tc ng khng nh n vic gim thiu chi ph vt cht u t cho ATTT vn d rt tn km. V lu di, vic nhn c chng ch ISO 17799 l mt li khng nh thuyt phc vi cc i tc, cc khch hng v mt mi trng thng tin an ton v trong sch . To iu kin thun li cho s hi nhp mt mi trng thng tin lnh

1.1 Vn o to ngun nhn lc

Theo IDG vo khong nm 2006 s bng n mt ngh mi trong lnh vc IT ngh an ton thng tin.Chc danh CSO (Chief Security Officer) tr nn quen thuc trong lnh vc IT. Cp nht v nng cao kin thc v ATTT v nhn thc v vai tr ca n trong h thng IT l mt iu rt quan trng v cp bch v xt cho cng hnh ng ca con ngi l yu t quyt nh . Mc d ATTT c bit n rng ri nhng yu t con ngi thng t c cc t chc quan tm n. i vi nhng nh qun tr, h cn mt chnh sch an ton v mt chng trnh nhn thc cng nh nh gi cht lng v ATTT nhng tic rng hin nay cha c nhiu gii php thc s quan tm vo vn lm sao tng cng s vng chc cho mi lin kt vn d rt yu t ny trong mt xch ATTT

Hin nay, mt s doanh nghip ti Vit Nam c s chuyn bin tch cc trong vn nhn thc v ATTT. H sn sng u t ngn sch o to ngun nhn lc nhm to nn tng vng chc v nhn thc v kin thc ATTT cho i ng nhn vin ca doanh nghip. in hnh l nh: S Khoa hc v Cng ngh ng Nai, Cng ty Bo him Bo Minh, Fujitsu Vietnam, Ngn hng Chu ... Bn cnh vn cn nhiu doanh nghip nht l cc doanh nghip va v nh vn cha tip cn v hiu ht tm quan trng ca vic thit lp cc chnh sch v ATTT v qun l tiu chun cht lng ATTT theo ISO 17799 thc s vn cn xa l v mi m i vi h.

1.2 Phn tch nhng nguyn nhn a n thng tin trn a b mt

-RAID controller b hng.( Redundant Array of Independent Disks) -Ngi dng v hoc khng lu thay a mi khi a b h,gy ra s h hng ca a khc trong cng mt RAID. -D liu RAID registry trong b nh b hng. -Tng v tt in p t ngt, thm ha t nhin. -Li do ngi s dng, v tnh xa thng tin hoc li phn mm ca a cng. -Ngi s dng reconfigure dung lng a cng sai. -Virus tn cng hoc ngi s dng v tnh nh dng sai mt a cng trong h thng RAID. RAID l ch vit tt ca Redundant Array of Independent Disks. Ban u, RAID c s dng nh mt gii php phng h v n cho php ghi d liu ln nhiu a cng cng lc. V sau, RAID c nhiu bin th cho php khng ch m bo an ton d liu m cn gip gia tng ng k tc truy xut d liu t a cng. Tuy nhin vic mt d liu t RAID khng phi l chuyn khng c, v ngi s dng thng cm thy ch quan v RAID nn thiu s sao lu d liu cn thit. Cc loi RAID: RAID 0: Cn c gi l "Striped Volume", n c s dng gia tng s truy cp d liu. Trong cu hnh RAID 0 ny n c th h tr t 2 disks cho n 32 physical disks, d liu c chia u ra trn cc disks, v n lm vic nh l mt logical khi (Volume). Mc d n c gi l RAID (Redundancy Array of Inexpesive Disk), nhng tht s trong cu hnh ny n khng c "Redundancy". Vi cu hnh RAID ny, nu mt trong hai disk ca khi RAID ny rt th s truy cp d liu vo khi ny s b mt ht. RAID 1: Cu hnh RAID ny cn c gi l cu hnh "Khi Phn Chiu" (Mirrored Volume), trong cu hnh ny d liu c mirrored gia hai physical disks cho mc ch redundancy. Vi RAID 1 tt c nhng d liu c vit v volume th nht trong khi mirrored th n s c vit v volume th hai trong khi ny bi fault tolerant driver ftdisk.sys. D liu v vy c m bo an ton hn Raid 0. RAID 1+0: L s kt hp ca Raid 0 v Raid 1 vi s hin din ca Fault Tolerance a ra mt h thng hon ho c u im ca c hai loi Raid,s nhanh nhy ca Raid 0 v s an ton ca Raid 1.Tuy nhin chi ph cho mt h thng ny kh t v phi cn t nht 4 a cng c th thit lp. RAID 5: RAID 5 thng c bit nh l "Stripe set with parity". Trong cu hnh RAID ny, n s dng t nht l 3 v nhiu nht l 32 physical disks, khng ch ring d liu c phn phi u trn cc disk m nhng thng tin lin kt cng c phn phi trn cc disks, chc chn rng d liu s c cu thnh li nu mt trong nhng disk c lp b rt. Ni ng hn l nu bt k disk no trong khi ny b rt th bn c th thay i mt disk mi v n s t ng cu hnh li (Rebuild) tt c nhng d liu b mt. Cc loi RAID khc: Ngoi cc loi c cp trn, bn cn c th bt gp nhiu loi RAID khc nhng chng khng c s dng rng ri m ch gii hn trong cc h thng my tnh phc v mc ch ring, c th k nh: Level 2 (Error-Correcting Coding), Level 3 (Bit-Interleaved Parity), Level 4 (Dedicated Parity Drive), Level 6 (Independent Data Disks with Double Parity), Level 10 (Stripe of Mirrors, ngc li vi RAID 0+1), Level 7 (thng hiu ca tp on Storage Computer, cho php thm b m cho RAID 3 v 4), RAID S (pht minh ca tp on EMC v c s dng trong cc h thng lu tr Symmetrix ca h). Bn cnh cn mt s bin th khc, v d nh Intel Matrix Storage cho php chy kiu RAID 0+1 vi ch 2 cng hoc RAID 1.5 ca DFI trn cc h BMC 865, 875. Chng tuy c nhiu im khc bit nhng a phn u l bn ci tin ca cc phng thc RAID truyn thng.

1.3 Phn tch nhng nguyn nhn a n r r thng tin trn my tnh

R r thng tin trong doanh nghip qua th nh: Thng thng, mi ngi c th dng nhng thit b kiu ny t do trong gi lm vic m khng cn s cho php ca cp trn. Th nh c nhn vin mang i khp phng v cm vo cng USB sao chp bi ht c sn trong my tnh ca ngi khc. Tuy nhin, s lng lo ny s tip tay cho bt c ai cng c th lu ton b thng tin trn my tnh no vo trong th nh dung lng ln mt cch c ch ht sc nhanh chng. R rng, trong khi nhiu hng tiu tn c ni tin bo v mnh thot khi nguy c t virus, spyware, spam..., th h li qun li cnh bo mun thu ca cc chuyn gia bo mt rng him ha ln nht bao gi cng nm chnh bn trong mi cng ty. Mt s hng thc hin nhiu bin php ngn cn vic sao chp d liu t my tnh vo th nh v my nghe nhc, nhng cm dng nhng thit b ny l v l v s khng th thc hin c trn thc t. Do , cc cng ty cn trang b nhng cng c, ng dng tinh vi c th ghi li hot ng ca ngi trong mng ni b trnh tht thot d liu, r r thng tin hoc nhim virus R r thng tin trong doanh nghip qua my tnh xch tay: Trong nhiu trng hp, nhn vin mang thng tin ca cng ty ra khi vn phng bng chic laptop. Tuy nhin, h khng bo v s an ton cho chng v t ra ngi ngn khi dng cc c ch m ha nh ci password cho my v cc tp tin. Alan Paller, Gim c Hc vin SANS chuyn nghin cu vn bo mt my tnh, gii thch l do l nu h qun mt khu th s khng m c tp tin v cc thao tc ny c v lm chm cng vic ca h. iu ny khin cc nh sn xut my tnh lu tm v bt u tch hp c ch m ha vo sn phm. V d nh h iu hnh Windows Vista ca Microsoft s gip ngi s dng d dng m ha d liu ca mnh hn. Cc cng ty c lng ln nhn vin di ng cng bt u quan tm n iu ny. V d nh hng t vn ti chnh Ernst & Young vi 30.000 my tnh xch tay phc v cho cng ty ang m ha tt c ni dung trn my sau v thng tin v 243.000 khch hng ca h cha trong mt chic laptop b nh cp, bao gm tn, a ch, thng tin th tn dng.

1.4 Mt s bin php khc phc.

Cc chuyn gia a ra li khuyn vi cc bc sau: 1. Phi kim sot d liu Chc chn bn khng th no kim sot c thng tin nhy cm hay thng tin bn quyn trn mng nu ngay c v tr ca chng nm u bn cng khng bit. D liu nhy cm ca mt t chc thng c phn phi rng ri qua mng ni b. D liu quan trng thng khng ch nm trong c s d liu (CSDL) m c khi c trong th in t, my tnh c nhn v i khi ng vai tr nh kiu i tng d liu trong cng Web. Thng tin nhy cm cng c nhiu kiu khc nhau, nh m s th tn dng, m s bo mt x hi (CMT, th sinh vin). Cc b mt thng mi c th c tm thy trong nhiu loi file, vn bn khc nhau theo kiu thng tin lin h khch hng, hp ng, chi tit k thut pht trin sn phm. Trin khai quy nh kim sot cho tt c cc loi d liu thng khng mang li hiu qu v khng thc t. Thay vo , hy phn loi tng lp d liu v chn ra quy nh kim sot ph hp nht cho mi loi. Bn cng c th s dng mt s cng c r sot mng t ng v xc nh v tr d liu nhy cm. Nhiu hng cung cp cc loi cng c ny nh Reconnex, Tablus, Websense. S lng sn phm ca cc hng ngy cng phong ph. Nhiu trong s c th phn tch d liu thnh nhiu loi khc nhau, da trn quy nh do cng ty t ra. 2. Gim st ni dung di ng Khi cc cng ty s dng Website trong giao dch thng mi v lin kt vi nhiu mng

thuc v i tc, nh cung cp hay khch hng th vn sng cn l phi theo di c ci g ang din ra, ang tri ni qua cc mng. Gim st ni dung l phn c s ct li trong chin lc bo v d liu ca nhiu cng ty. Vi qu nhiu im ra mng cho d liu, iu quan trng nht l phi gim st c lu lng mng. Tt c cc hng sn xut nh Vericept Corp., Vontu Inc., Oakley Networks Inc., Reconnex v Websense u bn mt lot sn phm c chc nng kim tra, r sot e-mail, trnh tin nhn tc thi (Instant Messaging), h thng chia s file peer-to-peer, qu trnh post Web v c cc website FTP nhm pht hin v tm kim hot ng xm phm d liu hay vi phm quy tc t ra trong cng ty. Cc cng c ny c t gn cng vo mng v c thit k a ra cnh bo khi pht hin gi d liu ng ng. Nhiu sn phm c th c dng thc p cc hot ng nh loi b hay m ho d liu khi d liu c truyn ra ngoi. V d, mt trong s l cc cng c lc ni dung, cho php bn thy c tt c nhng g ang n hoc ang ra ngoi mng. Nh Bowers ca cng ty hng u Wyeth nhn xt: Chng ti gim st c tt c cc cng v tt c giao thc truyn ti ni dung khi hng ny trin khai cng c lc ni dung. 3. Hy mt n c s d liu c cha nhng thng tin qu bu ca cng ty ng dng li vic bit ai ang truy cp c s d liu. Bn cn cn phi phi bit khi no, u, nh th no v ti sao h li thc hin truy cp ny. Nhiu cng c h tr c xy dng, cho php cc cng ty gim st truy cp hay cc hot ng trn c s d liu. Bn c th dng sn phm ca Imperva Inc., Guardium Inc., Application Security Inc. v Lumigent Technologies Inc. Chng c thit k nhm mc ch gip bn bit ngi dng hay admin no ang lm vic trn c s d liu vi c quyn truy cp, hay chnh sa, copy, xo, download s lng ln tp hp cc file, hoc a ra cc cnh bo khi ai c gng thc hin mt trong cc hot ng trn. Cc sn phm ny cng cung cp du vt kim tra kh r rng theo di khi c ngi vi phm quy nh ca doanh nghip. M ho d liu nhy cm trong c s d liu l mt phng php khc ng xem xt. 4. Gii hn c quyn ngi dng Hu ht cc cng ty u cung cp nhiu c quyn cho ngi dng hn so vi cn thit. l nhn nh ca Amichai Shulman, gim c cng ngh ca Imperva. Gim st truy cp d liu cc k quan trng ca ngi dng v theo di truy cp khng xc nh vi d liu mc nguy him cao l nhng bc khng th thiu. To quy nh truy cp nhm gii hn c quyn mng ca ngi dng mt cch cht ch. Ch cho php truy cp lp d liu tng ng cn thit cho cng vic ca tng kiu ngi dng, ng thi thit lp cc iu khin nhm bt buc nhn vin trong cng ty phi tun th quy nh ni b xy dng. V d, a ra cnh bo khi ai vn bnh thng ch lm vic vi 10 tp ti liu mi ngy, t nhin bt u truy cp s vi lng ln hn. Vic a ra quyt nh iu khin truy cp cho thnh vin ni b v ngi ngoi l kh n gin, Matt Kesner - gim c cng ngh ca Fenwick & West LLC, hng lut c tr s ti Califoocnia (M) khng nh. Nhng i khi ngi bn ngoi li cn truy cp hp php d liu ca doanh nghip vi s lng ngang bng hoc thm ch ln hn nhu cu ca nhn vin ni b. V d, cc mng Extranet client ca Fenwick & West ang c s dng thng xuyn bi khch hng hp tc vi nhn vin u quyn ca hng. i khi, ngi dng bn

ngoi hng th vi d liu ca doanh nghip hn nhiu so vi ngi trong ni b cng ty. 5. Quan tm ti cc im cui S pht trin nhanh chng ca th trng thit b di ng nh laptop, cc my xch tay khc, th nh USB hay my nghe nhc iPod ngy cng to iu kin cho nhng k c xu trong ni b cng ty n cp d liu d dng hn. Cc cng ty cn phi pht trin hot ng iu khin v gim st tp trung ho. Trong , thit b phi c gn vo mng v h thng doanh nghip, quy nh r d liu no c download, upload hay lu tr ti u. Thc hin c cc cng vic ny l c mt thch thc. Nhng bn khng cn qu lo lng, v mt s sn phm ca cc hng nh Code Green Networks Inc., ControlGuard Inc. v SecureWave SA s gip bn d dng hn khi tin hnh cc hot ng mong mun. Trc y, c rt t cng ty t cc kim sot hiu qu vo ng ni cn thit cho php h gim st h thng ni b mt cch cht ch v theo di c qu trnh di chuyn hay truyn vn ca d liu, Alex Bakman - gim c iu hnh ca Ecora Software Corp khng nh. iu c ngha l hot ng ph hoi tng din ra khng kn khng trng trong sut thi gian di. 6. Tp trung ho d liu bn quyn tr tu i vi mt cng ty ln, vic bo v bn quyn tr tu ri rc trn nhiu h thng l iu khng th. Do , lu tr cc d liu ny trong mt h thng th vin ti nguyn tp trung ho bt c khi no c th l bin php an ton v tin li trong trong bo mt cng nh chia s thng tin. Thng thng, ngi ta t tt c trng vo trong mt r, Ira Winkler - chuyn vin t vn bo mt t do v ph trch chuyn mc Computerworld.com v von. Nhng trong trng hp ny, bo v mt h thng s d dng hn l bo v v s h thng con nm ri rc ca n.

Cu hi v bi tp:
1. 2. Trnh by cc phng php nh gi cht lng h thng ATTT. Phn tch nhng nguyn nhn a n thng tin trn a b mt ? Nu cc bin php khc phc .

3. Phn tch nhng nguyn nhn a n r r thng tin trn my tnh? Trnh by cc bin php khc phc.

10

BI 2 Tn bi : LU TR H THNG THNG TIN TRN CC THIT B LU TR M bi : ITPRG03-19.2 Gii thiu : Lu tr d liu an ton v khoa hc l vic rt quan trng trong lnh vc cng
ngh thng tin. Bi hc cung cp cc kin thc c s v hnh thc, cch thc v thit b lu tr, phc hi bo v h thng d liu.

Mc tiu thc hin:

S dng c cc thit b lu tr thng dng Sao lu d liu di nhiu hnh thc. Phc hi d liu trong mt s trng hp S dng c mt s phn mm tin ch v phn mm cng c phc hi, bo v cho h thng thng tin.

Ni dung chnh: I.
1.

Cu trc ca th mc v tp tin trn my n v trn h thng mng my tnh.

T chc a T chc a l mt trong nhng c trng c bn ca h iu hnh. a mi mua

hoc a s dng vi mt iu hnh khc khng tng thch vi h iu hnh ang s dng th khng th dng c. Lc ny ta phi tin hnh t chc a cho c cu trc m h iu hnh hin ang dng hiu c. T chc a cho php qun l c cc d liu c ghi trn a nh cc tp tin, qun l vng nh, c/ghi thng tin,... Vic t chc a thng c tin hnh bng chng trnh nh dng a: FORMAT. Khi gi chng trnh ny bng lnh FORMAT chng trnh s t ng thi hnh cc bc cn thit t chc a (nh dng a). Chng trnh ny t chc a nh sau : To ra cc rnh (track) trn b mt a, chia s sector trn 1 rnh, nh s Byte trn mi sector. Sao chp to tp tin mi (boot record) To bng cp pht a cho tp tin: bng FAT To th mc gc (root directory) Xc nh vng ghi tn, vng lu tr d liu. a trc khi s dng phi c nh dng (format) mi c th lu tr d liu ln c. Mi h iu hnh c cch t chc a ring. HH Windows 98 t chc cu trc a theo dng FAT (file allocation table). Khi nh dng a, HH s chia mi mt a ra thnh nhng ng trn ng tm (track) c nh s t ngoi vo trong v bt u t 0. 11

 Mi track c chia thnh nhiu on nh gi l cung t (sector), cc cung t c nh s bt u t 1. Mi cung t thng cha 512 bytes. D liu s c lu trn tng cung t.

Sector

Track

Hnh 1 .2: cch phn chia mi mt a khi c nh dng. 2. Th mc v tp tin 2.1 Tp tin: a) Tp tin (file) :Tp tin l hnh thc, n v lu tr thng tin trn a ca h iu hnh. Ni dung ca tp tin l thng tin cn lu tr. Tp tin (vit tt cho tp thng tin; cn c gi l tp, tp tin, file) l mt tp hp ca thng tin c t tn. Thng thng th cc tp tin ny cha trong cc thit b lu tr nh a cng, a mm, CD, DVD cng nh l cc loi chip in t dng k thut flash c th thy trong cc nh c giao din USB. Ni cch khc, tp tin l mt dy cc bit c tn v c cha trong cc thit b lu tr d liu k thut s. b) c im Mt tp tin lun lun kt thc bng 1 k t c bit (hay du kt thc) c m ASCII l 255 h thp phn. K t ny thng c k hiu l EOF ( End Of File). Mt tp tin c th khng cha mt thng tin no ngoi tr tn v du kt thc. Tuy nhin, iu ny khng h mu thun vi nh ngha v bn thn tn ca tp tin cng cha thng tin. Nhng tp tin ny gi l tp tin rng hay tp tin trng. di (kch thc) ca tp tin c th ch ph thuc vo kh nng ca my tnh, kh nng ca h iu hnh cng nh vo phn mm ng dng dng n. n v nh nht dng o di ca tp tin l byte. di ca tp tin khng bao gm di ca tn tp tin v du kt thc. c) Thuc tnh Nhng c tnh v gii hn ca tp tin gi l thuc tnh ca tp tin. Cc loi thuc tnh Ty theo h thng tp tin m cc thuc tnh ny c th khc nhau. Th d cc thuc tnh trn h thng tp tin FAT bao gm: Archive: lu tr. Trn cc h iu hnh DOS th thuc tnh ny c nh khi mi khi tp tin b thay i, v b xa khi thc hin lnh backup sao lu d liu. Hidden: n. Khi mt tp tin c thuc tnh ny th cc chng trnh lit k cc tp tin theo mc nh s b qua, khng lit k tp tin ny. Ngi s dng vn c th lm vic trn tp tin ny nh bnh thng. Read-only: ch c. Khi mt tp tin c thuc tnh ny th cc chng trnh x l tp tin theo mc nh s khng cho php xa, di chuyn tp tin hoc thay i ni dung 12

tp tin. Cn cc thao tc khc nh i tn tp tin, c ni dung tp tin vn c cho php. System: thuc v h thng. Mt tp tin c thuc tnh ny s chu cc hn ch bao gm cc hn ch ca thuc tnh Hidden v cc hn ch ca thuc tnh Read-only, ngha l khng b lit k, khng th xa, di chuyn, thay i ni dung. Thuc tnh ny ch yu dng cho cc tp tin quan trng ca h iu hnh. Sub-directory (hay directory): th mc con. Nhng tp tin c thuc tnh ny c x l nh l th mc. Th mc l tp tin dng c bit, ni dung khng cha d liu thng thng m cha cc tp tin v cc th mc khc. Ngoi ra, cn rt nhiu thuc tnh khc ca cc tp tin m ty theo h iu hnh s c nh ngha thm vo. Th d i vi h iu hnh Linux cc tp tin c th c thm cc thuc tnh nh cc quyn s dng tp tin, c im ca tp tin, v thng tin v cc loi tp tin nh l cc loi tp tin lin kt mm, cc socket, cc pipe ... Lu : Cc thuc tnh ca mt tp tin thng khng nh hng n ni dung thng tin ca tp tin nhng li nh hng rt nhiu n chc nng v vic x dng tp tin. Th d cc tp tin khng c thuc tnh cho php thi hnh th khng th xem l mt phn mm kh thi c mc d ni dung ca n c th ch cha cc ch th my tnh. Cch lm tp tin tr nn kh thi l thay i thuc tnh kh thi ca n hay l phi thay i phn ui ca tn tp tin (nh l trng hp ca h iu hnh Windows DOS) d) nh dng Cu trc ca mt tp tin nh ngha cch thc m tp tin c cha, c thc thi, v th hin trn cc thit b (nh mn hnh hay my in) gi l nh dng ca tp tin. nh dng ny c th n gin hay phc tp. nh dng ca tp tin ph thuc vo nhiu yu t trong quan trng nht bao gm: H iu hnh khc nhau v kin trc my tnh khc nhau c th i hi cc nh dng cho tp tin mt cch khc nhau. Th d: Trn cng mt kin trc Intel, tp tin vn bn dng n gin nht to nn bi h iu hnh Linux cng c s khc nhau vi tp tin vn bn ca Windows (hay DOS). D nhin, cc tp tin vn bn ny li cng khng th c c trn cc my dng h iu hnh Mac OS (chng khc nhau hon ton v mt kin trc my tnh) nu khng c cc tin ch c bit chuyn i nh dng. Tp tin dng cho cc mc tiu khc nhau cng s c cc nh dng khc nhau. Ngoi s rng buc v nh dng ca h iu hnh, cc tp tin dng trong cc ng dng hay cc phn mm khc nhau cng s khc nhau v s khc nhau ny ty thuc vo kin trc ca cc ng dng x dng cc tp tin . Th d d hiu nht l nh dng ca mt tp tin vn bn phi khc vi nh dng ca mt tp tin hnh nh hay tp tin m thanh. Cc tp tin dng cho cng mt mc tiu cng c th c nh dng khc nhau tu theo nh sn xut no thit k ra n. Th d: Trong cc tp tin hnh v ha th cc tp tin kiu Bitmap (cc tp hnh c ui l .bmp) c nh dng hon ton khc vi cc tp tin kiu Tagged Image File Format (ui ca lai tp tin ny l .tif) v cng khc vi tp tin kiu Joint Photographic Experts Group (vi cc ui c dng .jpg hay .jpeg). e) Tn Ty theo h iu hnh m c th c cc qui c v tn tp tin. di ca tn tp tin ty thuc vo h thng tp tin. Ty thuc vo h thng tp tin v h iu hnh m s c mt s k t khng c dng cho tn tp tin. Th d: Trn h iu hnh Microsoft Windows, khng c dng cc k t sau trong tn tp tin: \ / : * ? " < > | Theo truyn thng c ca h thng DOS v Windows, tn tp tin thng bao gm hai phn: phn tn v phn m rng (cn gi l phn ui). Tuy nhin, tn ca mt tp tin khng nht thit phi c phn m rng ny.

13

Th d v cu trc bit ca tp tin ASCII

Hnh 1.3 : cu trc bit ca tp tin ASCII Trong hnh trn l hai tp tin vn bn dng n gin dng m ASCII. Tp tin "hoso.txt" l tp tin son ra bng lnh edit ca h iu hnh Windows. Tp tin th nh, "hoso2.txt", li c son tho bng lnh vi trong h iu hnh Linux. Hy lu qui c xung hng ca tp tin trong Windows s bao gm hai byte: du CR (cariage return) c gi tr ASCII l 0x0D v du LF (line feed) c gi tr 0x0A; trong khi , Linux ch cn du LF l . iu ny cho thy s khc nhau v nh dng. 2.2 Th mc Th mc (Directory, FOLDER) : Khi s lng tp tin trn a nhiu n hng trm, hng ngn tp tin th vic tm li mt hay mt nhm cc tp tin no s kh khn. d dng tm kim, cn to cc th mc cha cc tp tin cng ch , chc nng vo trong mt th mc. Th mc l hnh thc, n v qun l tp tin ca h iu hnh. Ni dung ca th mc l cc tp tin m n qun l. Cc th mc trn a c t chc theo dng phn cp, cc th mc xut pht t mt th mc chnh trn a gi l th mc gc (root directory). V cch t chc th mc trn a ging nh mt ci cy nn s th mc trn a gi l cy th mc (directory tree). Th mc gc c k hiu \ do chng trnh nh dng a to ra. Cc th mc c to trong qu trnh lm vic gi l cc th mc con (subdirectory). Trn a khng c sn cy th mc ca n. Khi nh dng a h iu hnh to ra th mc gc. Sau ngi s dng s to ra cc th mc con khi cn. Mt s th mc c cc chng trnh to ra trong lc ci t. Cc tp tin nn c t trong th mc con, ng t ngay vo th mc gc. Mt khi s lng tp tin c lu tr trn b nh ngoi ln ti 1 con s kh ln th nht thit phi a ra khi nim th mc. Khi nim ny cng gn ging nh h thng th mc trong th vin (khi mi tp tin c th v nh 1 cun sch). Nu s sch khng l trong th vin khng c t chc theo mt trt t hp l m c chung vo mt ch th khi mun tm 1 cun sch (theo 1 ch no m ta cha bit tn ca cun sch chng hn), ta phi nhn vo tng cun mt, v khng phi th nhn tip qua cun khc cho n khi tm c. Cch lm c th khin ta phi mt 1 khong thi gian rt kinh khng, nht l khi cun sch mun tm khng c trong th vin th ta vn phi xem ht tt c mi cun sch trong th vin mi bit c l khng c! khc phc tr ngi ngi ta t chc h thng th mc: danh mc tn sch c lit k theo tng ch , trong mi ch li c th c nhiu ch con. Vic t chc phn cp dng cy nh vy chc chn s gip cho thi gian tm kim 1 cun sch theo 1 ch no d cha bit tn sch cng s rt nhanh. Ni dung cc tp tin cn a dng hn ni dung ca cc quyn sch (khng ch l ti liu vn bn bnh thng m cn c th l hnh nh, m thanh, nhc, phim, tr chi, chng trnh cc loi...), v s lng tp tin trn b nh ngoi cng rt nhiu khin cho vic tm kim & s dng chng cng s rt kh khn nu nh ta cng chung vo 1 ch m khng t chc

14

theo mt trt t hp l. Do t chc h thng th mc phn cp trn b nh ngoi l rt cn thit, gii quyt nhu cu trn. Tm li, khi nim th mc cng c a ra bi h iu hnh, vic tm kim & s dng tp tin c hiu qu. Mi th mc c th cha cc tp tin v cc th mc con bn trong (d nhin trong mi th mc cng c th ch cha ton tp tin, hoc ch cha ton th mc con, hoc ang l th mc rng khng cha g c).

II. Cch lu tr d liu qua h thng bng FAT (FAT 16, FAT 32, FAT NTFS...) T chc h thng tp tin trn a
1. Cc nhn xt & phn tch cn thit: c th lu tr c thng tin /d liu vo a & truy xut, s dng c cc d liu trn a mt cch hiu qu th cn phi a ra nhng phn tch, nhn xt sau: i) Phi xc nh cc v tr cn trng ( c th lu d liu vo a) ii) Mi sector (hoc tng qut hn l mi block) ch thuc ti a 1 tp tin, tc nu sector cha ni dung ca 1 tp tin th trong sector s khng c ni dung ca tp tin khc ( d qun l, khng b nhm ln thng tin gia 2 tp tin) iii) Tn & cc thuc tnh ca tp tin cn c lu ring vo 1 vng ( tc truy xut d liu nhanh hn) iv) Phi c thng tin v tr bt u ca ni dung tp tin (do phn tch trn) v) Ni dung tp tin khng bt buc phi lin tc (phi cho php c lu tr vo cc vng khc nhau khi cn phn mnh) vi) Phi bit cc v tr cha ni dung tp tin (do phn tch trn) vii) Phi bit cc v tr b h viii) Ni dung tp tin nn lu tr theo n v l CLUSTER (l dy N sector lin tip d qun l & vic truy xut c nhanh hn) 2. Cluster 2.1. Khi nim n v c ghi trn a l sector, nhng n v lu tr ni dung tp tin khng phi l mt sector m l mt cluster gm N sector lin tip i v tr lu gi ni dung tp tin trong cc phn tch trn s tn ti trn vng d liu (vng DATA) ni cha ni dung tp tin. 2.2. L do pht sinh khi nim Cluster i) Nu sector trn vng d liu qu nhiu th c th s kh hoc khng qun l c, khi qun l trn cluster s d dng hiu qu hn. ii) Ni dung tp tin thng chim nhiu sector v c th khng lin tc, v thi gian c ghi mt ln n sector lin tip thng nhanh hn nhiu so vi thi gian c ghi n ln m mi ln ch 1 sector. Do ti u thi gian truy xut tp tin th cn chn n v truy xut l mt khi nhiu sector. 2.3. Hnh thc t chc a s c chia thnh 2 vng: vng d liu (DATA) cha ni dung tp tin v vng h thng (SYSTEM) cha cc thng tin qun l. Vng SYSTEM c kch thc nh hn nhiu so vi vng DATA v phi truy xut mi khi s dng a nn thng nm ngay u a, phn cn li thuc v vng DATA. Trn vng DATA l mt dy cc Cluster lin tip c nh ch s theo th t tng dn (bt u t 0, 1 hay 2 ty theo H iu Hnh). Nh vy nu vng DATA c SD sector & bt u ti sector SS, mi Cluster chim SC sector, Cluster u tin c nh ch s l FC, th a s c tng cng SD/Sc Cluster v Cluster C s bt u ti sector: SS + (C FC ) * SC V d, nu a c kch thc 4014 sector, vng SYSTEM chim 11 sector, mi cluster chim 4 sector, Cluster u tin c nh ch s l 2; th phn b Cluster trn a s nh sau: Cluster 2 ... Cluster 3 Cluster 4 ... ... Cluster 1001

15

0 1 ... 10 11 12 13 14 15 16 17 18 19 20 21 22 DATA AREA SYSTEM AREA Hnh 1.4 : phn b Cluster trn a

... 4007 4008 4009 4010

( 3 sector 4011, 4012, 4013 s khng thuc cluster no v khng c s dng) 2.4. Kch thc Cluster S sector trn 1 cluster nn l ly tha ca 2 v c gi tr ln hay nh l ty theo a. Nu ta chn kch thc cluster cng ln th s cng lng ph a v mt tp tin c kch thc nh vn phi dng mt cluster gm nhiu sector lu, nhng khi s hn ch c s phn mnh ca tp tin v v vy tp tin c th an ton hn & truy xut nhanh hn. Kch thc ca Cluster ph thuc vo kh nhiu yu t: dung lng a, tc truy xut 1 dy sector trn a, kch thc ca a s tp tin s lu vo a, s cluster ti a m h thng c th qun l, nhu cu ca ngi s dng, Trn cc a cng hin ti th Cluster thng c kch thc 4, 8 hoc 16 sector. V d: -Vi a mm 1.44 MB bnh thng (c 2880 sector), nu ta cho 1 cluster chim 1000 sector th s rt khng hp l. V khi ta ch c th chp c ti a 2 tp tin vo a, du mi tp ch c kch thc l 1byte! Tuy nhin nu ta ch ton chp vo a cc tp tin c kch thc gn 1000 sector th s khng cn s lng ph na. -Vi h thng ch c th qun l ti a M Cluster, nu vng DATA ca a c 100M sector th ta phi cho mi Cluster ti thiu 100 sector mi c th qun l c ton b vng DATA 3. Bng qun l Cluster 3.1. Khi nim L 1 dy phn t, mi phn t thng l 1 con s nguyn c dng qun l 1 cluster trn vng d liu. Vic qun l y c th l cho bit cluster tng ng ang trng thi trng, h, hay ang cha ni dung ca 1 tp tin, v cho php xc nh danh sch cc cluster cha ni dung ca tp tin. C th dng 1 bng p ng cc nhu cu trn, nhng cng c th t chc nhiu bng mi bng phc v cho 1 nhu cu. 3.2 L do pht sinh a ni dung tp tin vo a th phi xc nh cc cluster cn trng (phn tch (i)), c ni dung tp tin trn a th phi xc nh c danh sch cc cluster cha ni dung tp tin (phn tch (vi)), tuy c th lu thng tin qun l ngay trn cluster nhng khi truy xut rt chm nn nht thit phi lp ra bng ny qun l truy xut nhanh hn. 3.3. Hnh thc t chc xc nh cc cluster trng, h, hay thuc trng thi lun l c bit no (nhng trng thi ch mang 1 trong 2 gi tr: C Khng) ta c th qun l theo dng ch mc: mi phn t ca bng qun l l 1 con s ni ln trng thi ca cluster mang ch s tng ng. mc n gin ta ch cn qun l 2 trng thi lun l l cluster trng & cluster h. Danh sch cc cluster h c th lu trc tip (c bao nhiu cluster h th danh sch c by nhiu phn t), v s cluster h trn a s rt t. Vic qun l cluster trng c th dng hnh thc bitmap (mi bit qun l 1 cluster tng ng): nu mun bit cluster K l trng hay khng ta xem gi tr ca bit K l 0 hay 1. Ta cng c th qun l vng trng bng cch lu 1 danh sch cc phn t, mi phn t cha v tr bt u & kch thc ca vng trng tng ng. Vic xc nh mt trng thi lun l ca cluster c th thit k kh n gin, vn ch yu l hnh thc t chc c th xc nh chui cc cluster cha ni dung ca 1 tp tin, c mt s hnh thc c bn nh sau: 1. 3.3.1 Lu tr ni dung tp tin trn dy cluster lin tip ... 2. 3.3.2 S dng cu trc danh sch lin kt ... 3. 3.3.3 S dng cu trc danh sch lin kt kt hp ch mc:

16

Ta t chc 1 bng cc phn t nguyn (dy s nguyn), mi phn t c dng qun l 1 cluster trn vng d liu theo dng ch mc (phn t K qun l cluster K). Vi qui nh: . Nu phn t K trn bng c gi tr l FREE th cluster K trn vng d liu ang trng thi trng. . Nu phn t K trn bng c gi tr l BAD th cluster K trn vng d liu s c h thng hiu l trng thi h. . Nu phn t K trn bng c gi tr khc FREE v khc BAD th cluster K trn vng d liu ang cha ni dung ca 1 tp tin. Khi ny ta cn bit c cluster k tip cha ni dung ca tp tin: nu phn t K ca ba?ng c gi tr L v L = EOF th cluster K l cluster cui cng ca tp tin, nu L EOF th phn k tip ca ni dung tp tin nm ti cluster L (qun l theo dng danh sch lin kt). Nh vy hnh thc t chc ny c th p ng c tt c cc nhu cu qun l cluster: xc nh cluster trng, h, hay ang cha ni dung tp tin, v chui cc cluster cha ni dung ca mt tp tin (khi bit cluster bt u). V d, nu ni dung bng qun l Cluster ca a trn nh sau:

Hnh 2.4: Bng qun l Cluster trn a 0 1 2 3 4 5 6 7 8 9 10 11 12 13 ... 1001 (cc phn t t 13 n 1001 u c gi tr l FREE) th t y c th xc nh lc ny trn a ang c 2 cluster h, 990 cluster trng, 8 cluster cha ni dung tp tin. C th l: -Cc cluster h: 4, 10 -Cc cluster trng: 8, 13, 14, 15, , 1001 -Cc cluster cha ni dung tp tin: 2, 3, 5, 6, 7, 9, 11, 12. Trong c 3 tp tin: + tp tin I chim 3 cluster theo ng th t l: 2, 3, 5. + tp tin II chim 1 cluster duy nht l: 6. + tp tin III chim 4 cluster theo ng th t l: 9, 7, 11, 12. Lu : Phn t u tin ca bng c ch s l 0 nn nu Cluster u tin ca vng DATA c nh ch s l FC > 0 th FC phn t u tin ca bng (t 0 .. FC -1) s khng c dng qun l Cluster, m bo tnh cht ch mc (phn t mang ch s K qun l trng thi ca Cluster mang ch s K). Khi ny khng gian b lng ph hon ton khng ng k, nhng vic qun l truy xut th tin li hn, ta cng c th tn dng phn khng gian tng ng vi FC phn t u bng ny lu 1 thng tin qun l no . Gi tr ca cc phn t trn bng: Ta cn phi t ra 3 gi tr hng c bit l FREE, BAD v EOF tng ng vi 3 trng thi cluster: trng, h, hoc l cluster cui ca ni dung tp tin, ta cng c th t thm 1 s gi tr c bit na cho nhng trng thi c bit khc ca cluster (nu c) hoc 1 s gi tr dnh ring phc v cho nhng nhu cu trong tng lai. Nhng gi tr cn li s tng ng vi trng thi cluster ang cha ni dung tp tin v lc gi tr ca phn t cng chnh l ch s ca cluster k tip. Cc hng c bit (v dnh ring nu c) phi khc vi cc gi tr c th c trn ch s cluster th cluster tng ng mi c th s dng c. V d, vi hnh trn, nu ta t hng EOF = 7 th tp tin III s b hiu lm l ch chim ng mi cluster 9 ch khng phi chim 4 cluster! Mi phn t trn bng nn l 1 con s nguyn dng c th qun l c nhiu cluster hn, khi ny cc hng c bit nu trn s khng th l s m m phi chim nhng gi tr ln nht c th biu din c, v ch s ca cluster cui cng trn vng DATA buc

17

phi nh hn nhng gi tr hng c bit ny. Trong trng hp cluster u tin c nh ch s l FC v FC > 0 th cng c th s dng cc gi tr 0..FC-1 cho nhng hng c bit trn. 3.4. Kch thc ca bng qun l Cluster Mi phn t trn bng l 1 con s nguyn nn pht sinh vn phi lu tr mi s nguyn bng bao nhiu bit. Ta c th cn c vo ch s cluster cui cng trn vng DATA xc nh gi tr ti a cn biu din c ca mi phn t v gi tr ca cc hng c bit suy ra s bit ti thiu ca mi phn t, n gin c th dng 16bit hoc 32bit cho mi phn t ty theo a c kch thc nh hay ln. Vn phc tp nm ch lm sao xc nh s phn t ca bng, cng nh s cluster trn vng DATA. V khi to (nh dng) a th ta ch c kch thc ca a, ch khng c kch thc vng DATA, v khng th t t ra kch thc cho n nh vi nhng thnh phn khc. Ta c th gii quyt bng cch gi nh kch thc ca bng l 1 sector & kim chng li xem c hp l hay khng, nu khng th tng dn kch thc ca bng cho n khi hp l. 3.5. T chc qun l cluster trn h iu hnh DOS & Windows 9x Bng qun l cluster trn DOS & Windows 9x c gi l FAT (File Allocation Table), c t chc theo hnh thc danh sch lin kt kt hp ch mc. Trn DOS mi phn t ca bng FAT c biu din bng 1 con s nguyn 12bit hoc 16bit (bng FAT tng ng c tn l FAT12 hoc FAT16). Trn Windows cng c 2 loi FAT trn v c thm loi FAT32 (mi phn t c lu bng 32bit). Nu phn t K ca FAT c gi tr L th trng thi ca Cluster K l: Gi tr ca L FAT12 0 Trng FF7 H FFF Cluster cui ca tp tin Cha ni dung tp tin v 2 .. FEF c cluster k sau l L FAT16 0 FFF7 FFFF 2 .. FFEF FAT32 0 FFFFF7 FFFFFF 2..FFFFEF

Trng thi ca Cluster K

Hnh 1.5 : Trng thi ca Cluster K C mt s gi tr tuy vn thuc phm vi biu din nhng khng th c vi L (v d, vi FAT12 l cc gi tr 1, FF0 .. FF6, FF8 .. FFE), y l cc gi tr dnh ring c d phng c th s dng cho nhng trng thi c bit khc ca cluster trong nhng phin bn sau ca h iu hnh, khi s vn c c s tng thch gia cc phin bn c & mi. Chnh v gi tr 0 c dng biu din trng thi cluster trng nn s khng th tn ti cluster mang ch s 0 trn vng d liu, DOS & Windows nh ch s ca cluster u tin trn vng d liu l 2 (FC = 2) Cng t nhng gi tr tng ng vi trng thi cluster cha ni dung tp tin bng trn, ta c th suy ra s cluster ti a m bng FAT12 c th qun l c l FEE (tc 4078d, ch khng phi l 2 = 4096), v FAT16 l FFEE (tc 65518d). Nh vy nu s cluster trn DATA khng qu 4078 th h thng s dng FAT12 qun l, nu s cluster ln hn 4078 nhng khng qu 65518 th s dng FAT16, v ln hn 65518 th s dng FAT32. Tuy nhin l qui c mc nh ca h iu hnh, ta cng c th ch nh loi FAT cn s dng, v d vng DATA c 2004 cluster th dng FAT16 qun l vn c. Bng qun l cluster rt quan trng nn DOS & Windows thng lu thm N bng backup phng trnh h hng (N0, thng l 1). Cc bng FAT c lu tr k tip nhau trn 1 vng gi l vng FAT. 18
12

Vi bng FAT12, vic truy xut mt phn t hi phc tp: n v truy xut trn RAM l 1 byte nhng mi phn t li c kch thc 1.5 byte. Ta c th xc nh 2 byte tng ng cha gi tr ca phn t, ly gi tr s nguyn khng du 2byte ti ri dng cc php ton x l trn bit truy xut c con s 1.5 byte tng ng. V d, ni dung 12 byte u ca bng FAT l: F0 FF FF 03 40 00 FF 7F FF AB CD EF offset 0 1 2 3 4 5 6 7 8 9 A B th 8 phn t u tng ng ca bng FAT l: FF0 FFF 003 004 FFF FF7 DAB EFC phnt 0 1 2 3 4 5 6 7 V kch thc bng FAT12 l kh nh (ti a 12 sector) nn vic truy xut 1 phn t c n gin ngi ta thng c ton b cc sector trn bng FAT vo 1 vng m ri t vng m ny xy ng ra 1 mng s nguyn 2byte m mi phn t ca mng mang gi tr ca phn t tng ng trn bng FAT. Khi cn lu bng FAT vo a th li thc hin thao tc ngc li: t mng s nguyn 2 byte to ra dy byte tng ng ca FAT a vo vng m v lu vng m vo cc sector cha FAT trn a. 4. Bng th mc 4.1 Khi nim v RDET (Root Directory Entry Table): L 1 dy phn t (entry), mi phn t cha tn & cc thuc tnh ca 1 tp tin trn th mc gc ca a (hoc l phn t trng cha thuc v 1 tp tin no ht). V d, nu m hnh thuc tnh tp tin c thit k ch gm cc thnh phn: tn chnh (chui ti a 4 k t), tn m rng (chui ti a 2 k t), kch thc tp tin (s nguyn 2 byte) th RDET s nh sau: Offset

Hnh 1.6 : RDET 4.2 L do pht sinh khi nim RDET T phn tch (iii). 4.3 Kch thc RDET S entry trn RDET c qui nh bi chng trnh nh dng (format) a, con s ny s ln hay nh l ty theo dung lng ca a (nhng chc chn l s khng qu ln v s tp tin trn a d rt nhiu th s tp tin th mc gc cng khng nn qu nhiu, s gy kh khn cho vic qun l ca ngi s dng). S entry trn RDET khng bt buc phi l 1 gi tr chnh xc m cho php dao ng mt t, v vy ta c th iu chnh hn ch lng ph khng gian lu tr trn sector. V d, nu mi entry c kch thc 32 byte & ta d nh t chc 50 entry cho RDET th khng hay lm, c th iu chnh li thnh 48 entry hoc 64 entry.

19

4.4 Cu trc Entry ca DOS

ArchiveDirectoryaLabelSystemHidden ReadOnly

+ ReadOnly: thuc tnh ch c, khi tp tin c thuc tnh ny h thng s khng cho php sa hoc xa. + Hidden: thuc tnh n, trng thi mc nh h thng s khng hin th tn ca cc tp tin ny khi lit k danh sch tp tin. + System: thuc tnh h thng, cho bit tp tin c phi thuc h iu hnh khng + a Label: thuc tnh nhn a, trn RDET ch c ti a 1 entry c thuc tnh ny, khi entry khng phi tng ng vi tp tin m c dng cha nhn ca a l 1 chui ti a 11 k t c lu 11 byte u tin ca entry + Directory: thuc tnh th mc, nu entry c thuc tnh ny th tp tin tng ng khng phi l mt tp tin bnh thng m l mt tp tin th mc. Mi th mc trn DOS c lu tr ging nh mt tp tin bnh thng, ni dung ca tp tin th mc ny l danh mc nhng tp tin v th mc con ca n. + Archive: thuc tnh lu tr, cho bit tp tin c backup hay cha (bng lnh backup ca h iu hnh), y l thuc tnh hu nh khng c s dng v t khi c nhu cu backup tt c cc tp tin m ch cn lu nhng tp tin cn thit. Khi ta xa tp tin, entry tng ng phi c chuyn sang trng thi trng, nhng 20

trng thi trng lc ny khng phi l 32 byte ca entry c chuyn sang gi tr 0 m ch c byte u tin c i thnh E5. V tt c cc k t ca tn tp tin u khng th c m l 0 hoc E5 nn bit 1 entry c trng hay khng ta ch cn nhn gi tr byte u tin ca entry: nu khc 0 v E5 th khng phi l entry trng. Mi khi tm entry trng s dng h thng tm theo th t t u tr i nn nu ta gp 1 entry trng c byte u l 0 th tt c cc entry pha sau cng l nhng entry trng dng cha tng uc s dng (32 byte trn entry u l 0) 4.5 Bng th mc con SDET (Sub Directory Entry Table): 4.5.1 Khi nim: Mi th mc trn DOS c lu tr ging nh mt tp tin bnh thng. Ni dung ca tp tin th mc ny l mt dy entry, mi entry cha tn & thuc tnh ca nhng tp tin v th mc con thuc th mc ang xt ging y nh cc entry trn RDET, dy entry ny c gi l SDET. C th ni mt cch n gin rng SDET l ni dung ca tp tin th mc. SDET c cu trc t chc ging nh RDET nhng c lu tr ngay trn vng DATA (v l ni dung tp tin). Trn a c ng 1 RDET nhng c th c rt nhiu SDET v cng c th khng c bng SDET no. 4.5.2 L do pht sinh Nu s tp tin trn a c th nhiu th nht thit phi a ra khi nim th mc trnh chuyn tt c mi tp tin trn a phi lu chung vo 1 ni rt kh qun l. V cc thuc tnh ca th mc kh ging vi cc thuc tnh ca tp tin bnh thng nn c th t ra khi nim th mc l mt tp tin c bit v t chc lu tr nh mt tp tin bnh thng, khng cn phi a ra mt thit k khc cho vic t chc lu tr h thng th mc. 4.5.3 Kch thc SDET S entry trn SDET c th rt nh m cng c th rt ln, ph thuc vo s lng tp tin & th mc con bn trong th mc ang xt ch khng b qui nh 1 con s c nh nh trn RDET. V SDET nm trn vng DATA nn ti u s entry ca SDET thng c t sao cho khng b lng ph khng gian trn cluster. V d, nu entry c kch thc 32 byte v cluster c c kch thc 32 sector th s entry ca SDET s l bi ca 512. 4.5.4 Bng SDET trn DOS Lun c 2 entry . v .. u bng m t v chnh th mc ny v th mc cha ca n. Cu trc mi entry trn SDET cng ging nh entry trn RDET, ch khc s lng entry & v tr lu gi ni dung entry trn SDET l khng c nh. V SDET lun chim trn cluster nn thuc tnh kch thc tp tin trn entry tng ng vi th mc s khng cn s dng v lun c DOS gn l 0. Nh vy khi to 1 th mc th s entry trong SDET ca th mc s l SC/32 (SC l kch thc cluster), trong entry u tin c phn tn l . v phn cn li lu cc thng tin v th mc ny, entry th hai c phn tn l .. (2 byte u ca entry lu k t . v 9 byte k sau lu khong trng) v phn cn li lu cc thng tin v th mc cha ca th mc ny, t entry th ba tr i u l entry trng (32byte u mang gi tr 0). Nu chp vo trong th mc con ny nhiu hn (SC/32 -2) tp tin th bng SDET hin ti khng s entry qun l, khi ny kch thc bng SDET s c h thng cho tng thm bng cch tm cluster trng trn vng DATA v lu ni dung cc entry pht sinh thm vo cluster mi ny (v phn cn li ca cluster nu c cng c lu cc entry trng nh trn cluster u tin). 1. 5. Boot Sector 2. 5.1 Khi nim L sector u tin ca a, cha mt on chng trnh nh np h iu hnh khi khi ng my v cc thng s quan trng ca a: kch thc cluster, kch thc bng th mc, kch thc bng qun l cluster, ... 5.2 L do pht sinh Cc bng qun l cluster & bng th mc p ng cc phn tch nu trn, nhng tht s c th thc hin c cc thao tc truy xut a ta cn phi bit c v tr & kch thc ca tng thnh phn trn a. V a c th c kt ni vo mt h thng khc nn thng tin v cc thnh phn ca a phi c lu ngay trn chnh a bt

21

c h thng no cng c th hiu. Sector u tin ca a l ni thch hp nht cha cc thng tin quan trng ny. 5.3 Hnh thc t chc Cc thng s quan trng ch chim 1 kch thc nh nn ta c th qui c mt vng nh trn sector dng cha cc thng s ca a (phn cn li l on chng trnh np h iu hnh khi khi ng), mi thng s c qui nh nm ti mt offset c th c nh no . Trong trng hp tng kch thc cc thng s v phn chng trnh np h iu hnh ln hn 512byte th c th dng tip nhng sector k sau lu 5.4 T chc thng tin trong BootSector ca DOS & Windows 5.4.1 Boot Sector ca h iu hnh DOS Offset S byte ngha 0 (0h) 3 (3h) 11 (0Bh) 13 (0Dh) 14 (0Eh) 16 (10h) 17 (11h) 19 (13h) 21 (15h) 22 (16h) 24 (18h) 26 (1Ah) 28 (1Ch) 32 (20h) 36 (24h) 37 (25h) 38 (26h) 39 (27h) 43 (2Bh) 54 (36h) 62 (3Eh) 510 (1FDh) 3 8 2 1 2 1 2 2 1 2 2 2 4 4 1 1 1 4 11 8 448 2 Lnh nhy n u on m Boot (qua khi vng thng s) Tn cng ty /version ca HH S byte ca sector S sector ca cluster S sector trc bng FAT S lng bng FAT S Entry ca RDET S sector ca a K hiu loi a S sector ca FAT S sector 1 track (tnh theo sector) S lng u c (head) Khong cch t ni m t a n u a Kch thc a (nu s 2 byte ti offset 13h l 0) K hiu vt l ca a cha a (0 : mm, 80h: cng) Dnh ring K hiu nhn din HH SerialNumber ca a a Label Dnh ring on chng trnh Boot np tip HH khi khi ng my Du hiu kt thc BootSector /Master Boot (lun l AA55h) Hnh 1.7 : Boot Sector ca h iu hnh DOS V d, vi a c na u ca Boot Sector nh sau: EB 3C 90 4D 53 57 49 4E-34 2E 31 00 02 10 01 00 .<.MSWIN4.1..... 02 00 02 00 00 F8 FF 00-3F 00 FF 00 3F 00 00 00 ........?...?... C2 EE 0F 00 80 00 29 DE-1C 49 15 20 20 20 20 20 ......)..I.20 20 20 20 20 20 46 41-54 31 36 20 20 20 33 C9 FAT16 3. 8E D1 BC F0 7B 8E D9 B8-00 20 8E C0 FC BD 00 7C ....{.... .....|38 4E 24 7D 24 8B C1 99-E8 3C 01 72 1C 83 EB 3A 8N$}$....<.r...:66 A1 1C 7C 26 66 3B 07-26 8A 57 FC 75 06 80 CA f..|&f;.&.W.u...02 88 56 02 80 C3 10 73-EB 33 C9 8A 46 10 98 F7 ..V....s.3..F... 66 16 03 46 1C 13 56 1E-03 46 0E 13 D1 8B 76 11 f..F..V..F....v. 60 89 46 FC 89 56 FE B8-20 00 F7 E6 8B 5E 0B 03 `.F..V.. ....^.. C3 48 F7 F3 01 46 FC 11-4E FE 61 BF 00 00 E8 E6 .H...F..N.a..... 00 72 39 26 38 2D 74 17-60 B1 0B BE A1 7D F3 A6 .r9&8-t.`....}..61 74 32 4E 74 09 83 C7-20 3B FB 72 E6 EB DC A0 at2Nt... ;.r....FB 7D B4 7D 8B F0 AC 98-40 74 0C 48 74 13 B4 0E

22

.}.}....@t.Ht...BB 07 00 CD 10 EB EF A0-FD 7D EB E6 A0 FC 7D EB .........}....}.E1 CD 16 CD 19 26 8B 55-1A 52 B0 01 BB 00 00 E8 .....&.U.R...... th ta c th suy ra thng tin v cc thnh phn nh sau: . 2 byte t byte trn mi sector ca a l: 0200h = 512d (byte) . Gi tr ca byte t sector trn mi cluster ca a l: 10h = 16d (sector) . 2 byte t sector trc vng FAT l: 0001h = 1d (sector) . Gi tr ca byte t bng FAT ca a l: 02h = 2d (bng) . 2 byte t entry trn bng RDET l: 0200h = 512d (entry) Kch thc bng RDET l 512*32/512 = 32 (sector). . 2 byte t c bng FAT l: 00FFh = 255d (sector) . 4 byte t ng s sector trn a l: 000FEEC2h = 1044162d (v 2 byte ti offset 13 u l 00 nn kch thc a c ly 4 byte ti offset 20) T cc thng s trn ta c th tnh ra c kch thc ca vng h thng l: S sector trc FAT + S FAT * Kch thc FAT + Kch thc RDET = 1 + 2*255 + 32 = 543 (sector) Vy sector u tin ca vng d liu c ch s l 543, m mi cluster chim 16 sector, nn cluster 2 s chim 16 sector t 543 n 558, cluster 3 s chim 16 sector t 559 n 574. Tng qut, cluster k s chim 16 sector bt u ti sector c ch s 543 + 16*(k-2) 6. Tng kt M hnh t chc tp tin trn mt a file ca h iu hnh tng qut lun bao gm cc thnh phn chnh l: vng d liu cha ni dung tp tin, thng c t chc di n v khi (cluster) gm nhiu sector h thng hot ng ti u; vng h thng cha cc thng tin qun l, bao gm bng qun l cluster qun l cc khi trn, bng th mc qun l cc tp tin & cc thuc tnh lin quan, ngoi ra thng c mt hoc mt s sector cha cc thng tin qun l cc vng trn. Vi cc a c t chc theo dng FAT ca h iu hnh DOS & Windows, cc thnh phn c t chc theo th t nh sau: ... BootSector Area ... FAT Area ... RDET DATA Area ...

Hnh 2.8 : Th t t chc ca cc thnh phn Trn thc t c rt nhiu h iu hnh khc nhau, khng ch l cc h iu hnh trong my tnh PC m cn c nhng h iu hnh trong my nh s, my quay phim, my thu m, in thoi di ng,... Mi h iu hnh c th t chc h thng tp tin trn a theo nhng kin trc khc nhau, nhng vi nhng thit b lu tr c kch thc khng ln th qun l cluster theo phng php danh sch lin kt kt hp ch mc l thch hp, v tng thch nhau a s h iu hnh u c cu trc a c thit k theo dng FAT nh trn. C th l a mm, a cng b ti & cc loi th nh (Flash Memory) thng c nh dng dng FAT v c th s dng trn cc loi my tnh & h iu hnh khc nhau m khng cn nh dng li theo cu trc trn h thng mi. Vi a mm 1.44MB bnh thng th cc thnh phn c phn b c th nh sau: Sector

23

Hnh 2.9 Cc thnh phn phn b ca a mm 1.44MB bnh thng

III.

nh dng a cng, a mm, a Flash

1. Cc phn tch cn thit c th lu tr c thng tin /d liu vo h thng lu tr & truy xut, s dng c cc d liu trn h thng lu tr mt cch hiu qu th cn phi tun t thc hin cc cng on: 1. a ra khi nim tp tin, th mc, a. 2. Xy dng m hnh thuc tnh & chc nng trn tp tin & th mc. 3. T chc c hnh thc lu tr tp tin /th mc & cc hnh thc qun l cn thit khc trn a. 4. Vit thut gii & chng trnh thc hin cc chc nng cn thit vi cc tp tin /th mc trn a. Cng on th t c th ni ngn gn l ci t cc chc nng trn a, nhng chc nng c bn phi c trc tin l: nh dng a, chp tp tin vo a, lit k danh sch tp tin trn a, c ni dung tp tin, xa tp tin. 2. nh dng a 2.1 Khi nim a c th s dng c th thao tc u tin phi tin hnh chnh l nh dng (format) a. Chc nng ny c th do ngi s dng thc hin cng c th do nh sn xut hoc ngi phn phi lm gim ty theo loi thit b. Bi v khi cha thi hnh chc nng nh dng th a ch l mt dy sector c ni dung rc (nhng gi tr ngu nhin khng ng vi nhng gi tr cn thit theo qui nh), do khng th thc hin c cc thao tc truy xut tp tin trn a v khng bit trn a ang c nhng tp tin no, nm ti u, ch no cn trng, kch thc cluster l bao nhiu,... Nh vy vic nh dng a chnh l xc nh cc thng s ca tng thnh phn trn a (v tr, kch thc ca cluster, bng qun l cluster, bng th mc, ...) v a cc gi tr thch hp vo nhng thnh phn . chng trnh h iu hnh c th truy xut c 1 a bt k th h iu hnh phi cn c vo nhng thng s ny m hiu c t chc tp tin trn a, t mi thc hin c cc chc nng chp, xa, xem, sa, ... Mun c 1 a trng c th s dng bnh thng th sau khi xc nh v tr & kch thc ca cc thnh phn qun l, ta cn phi lu cc thng s quan trng vo BootSector, sau lu vo cc entry trn bng th mc cc gi tr tng ng vi trng thi trng, cc phn t trn bng qun l cluster cng vy tr cc phn t tng ng vi cc cluster b h (d nhin nu h thng c qun l n trng thi cluster h v khi ny cc phn t qun l cluster h cng phi c gn cho cc gi tr ph hp). Vn c v ln nht trong chc nng nh dng chnh l vic xc nh kch thc bng qun l cluster. V khi thc hin chc nng ny th h thng ch c kch thc a & kch thc sector - cc thng s cn li phi t xc nh. Cc thng s khc c th t phn quyt khng c chnh xc lm cng khng gy nh hng ln, nhng kch thc ca bng qun l cluster phi c tnh chnh xc m tnh c th phi qua nhng bc l lun nht nh ch khng th tnh trc tip. Vi mt a c nh dng ta cng c th nh dng li, khi ny c 2 trng hp: . nh dng li hon ton (full format): to ra nhng dng thc mi ph hp hn

24

cho a, cc thng s ca tng thnh phn trn a s c xc nh li. Chc nng ny d nhin cng c dng cho nhng a cha c nh dng. . nh dng nhanh (quick format): chp nhn gi li cc thng s c ca a, ch cp nht li trng thi cc cluster ang cha d liu thnh trng thi trng v cho tt c entry trn bng th mc gc v trng thi trng. Chc nng ny tng ng vi vic xa tt c mi tp tin & th mc ang tn ti trn a, nhng thi gian thi hnh rt nhanh c th nhanh hn thi gian xa 1 tp tin! 2.2 nh dng cho a (full format) 2.2.1 Thut gii: (u vo: tn a, kch thc a, kch thc sector, 2 hm c /ghi sector; u ra: a trng c ni dung BootSector, bng qun l clustor, bng th mc hp l) . Bc 1: Xc nh gi tr hp l cho cc thng s cn thit ngoi tr kch thc bng qun l cluster. . Bc 2: Tnh kch thc bng qun l cluster da vo cc thng s bit. . Bc 3: Lu gi tr cc thng s trn vo cc offset qui c trn BootSector. . Bc 4: Lu gi tr tng ng vi trng thi trng vo cc entry trn bng th mc. . Bc 5: Kho st cc cluster trn vng d liu xc nh nhng cluster h. . Bc 6: Lu gi tr tng ng vi trng thi trng /h vo cc phn t trn bng qun l cluster 2.2.2 nh dng a theo kin trc FAT12 /FAT16 -Bc 1: T kch thc a (SV) v nhng tiu ch t ra phn quyt gi tr thch hp cho kch thc cluster (SC), kch thc RDET (SR), s bng FAT (nF), s sector ca vng BootSector (SB cn gi l s sector trc FAT). o -Bc 2: Tnh kch thc bng FAT (SF) v loi FAT bng hnh thc th & sai da trn ng thc SB + nF*SF +SR + SD = SV o (gi s SF =1, t suy ra kch thc vng d liu (SD) v kim chng li xem 2 thng s ny c ph hp nhau khng, nu khng hp l th th SF =2, 3, 4, ... cho n khi hp l) -Bc 3: Lu gi tr cc thng s trn vo cc offset t 3 36h theo ng v tr & kch thc m t trong bng tham s a. -Bc 4: To 1 vng m c kch thc (SR * 512) byte mang ton gi tr 0 v lu vo SR sector bt u ti sector (SB + nF*SF ) o -Bc 5: Ghi xung & c ln tng cluster t cluster 2 n cluster SD /SC +1. Nu ni dung c c ging ni dung ghi th cho phn t mang ch s tng ng trn bng FAT gi tr 0, ngc li nu khng ging hoc khng thnh cng trong vic c /ghi th gn cho o phn t mang ch s tng ng trn bng FAT gi tr FF7 hoc FFF7 (ty theo loi FAT xc nh bc 2). -Bc 6: To 1 vng m c kch thc (SF * 512) byte & a cc gi tr ca bng FAT vo vng m ri lu vo SF sector bt u ti sector SB. Nu nF > 1 th lu tip vo cc v tr SB + SF , SB + 2*SF ,..., SB + (nF-1)*SF . * Mt s v d v vic xc nh kch thc bng FAT -V d 1: Xt a tng ng trn a mm 1.44MB (c 2880 sector, mi sector c 512 byte), cc tp tin trn a c th truy xut nhanh & an ton hn ta c th cho SC = 4 (sector), SB = 1 (sector), SR = 32 (entry) = 2 (sector), nF = 2. Thay cc gi tr trn vo ng thc SB + nF*SF +SR + SD = SV ta c 1 + 2SF +2 + SD = 2880 (sector), hay 2SF + SD = 2877 (sector)

25

(*) (*) SD < 2877 (sector) = 719.25 (cluster) Loi FAT ti u nht (v mt kch thc) l FAT12, v SD < 4079 (cluster) * Gi s SF = 1 (sector): (*) SD = 2877 -2SF = 2875 (sector) = 718.75 (cluster) (v mi cluster chim 4 sector). . Vng d liu c 718 cluster, nn bng FAT phi c 718 + 2 = 720 phn t, do SF = (720*1.5)/512 = 2.1x (sector) . Bng FAT phi chim 3 sector mu thun vi gi thit SF = 1. Vy kch thc bng FAT ca a ny khng th l 1 sector * Gi s SF = 2 (sector): tng t, ta vn thy mu thun, tc kch thc bng FAT phi ln hn 2 sector. * Gi s SF = 3 (sector): (*) SD = 2877 -2SF = 2871 (sector) = 717.75 (cluster) (v mi cluster chim 4 sector). . . Vng d liu c 717 cluster, nn bng FAT phi c 717 + 2 = 719 phn t, do SF = (719*1.5)/512 = 2.1x (sector) Bng FAT phi chim 3 sector ph hp vi gi thit SF = 3. Vy kch thc bng FAT ca a ny l 3 sector.

-V d 2: Xt a tng ng trn a mm 1.44MB (c 2880 sector, mi sector c 512 byte), cc tp tin trn a c th truy xut nhanh & an ton hn ta c th cho SC = 1 (sector), SB = 1 (sector), SR = 224 (entry) = 14 (sector), nF = 2. Thay cc gi tr trn vo ng thc SB + nF*SF +SR + SD = SV ta c 1 + 2SF +14 + SD = 2880 (sector), hay 2SF + SD = 2865 (sector) (*) (*) SD < 2865 (sector) = 2865 (cluster) Loi FAT ti u nht (v mt kch thc) l FAT12, v SD < 4079 (cluster) * Gi s SF = 1 (sector): (*) SD = 2865 -2SF = 2863 (sector) = 2863 (cluster) (v mi cluster chim 1 sector). . Vng d liu c 2865 cluster, nn bng FAT phi c 2865 + 2 = 2867 phn t, do SF = (2867*1.5)/512 = 8.3x (sector) . Bng FAT phi chim 9 sector mu thun vi gi thit SF = 1. Vy kch thc bng FAT ca a ny khng th l 1 sector * Tng t, vi SF t 2 n 8 sector ta vn thy mu thun, tc kch thc bng FAT phi ln hn 8 sector. * Gi s SF = 9 (sector): (*) SD = 2865 -2SF = 2847 (sector) = 2847 (cluster) (v mi cluster chim 1 sector).

) Vng d liu c 2847 cluster, nn bng FAT phi c 2847 + 2 = 2849 phn t, do SF = (2849*1.5)/512 = 8.3x (sector) ) Bng FAT phi chim 9 sector ph hp vi gi thit SF = 9. Vy kch thc bng FAT ca a ny l 9 sector. -V d 3: Xt a c kch thc 4000000 sector, ta c th cho SB = 3 sector, SR = 512 entry = 32 sector, nF = 2. Cc thng s c th i sang 1 s gi tr khc cng c, nhng SC trong trng hp ny khng th phn 1 cch ty tin v s cluster ti a m kin trc FAT cho php ch l 65518 (vi trng hp FAT16, cn vi FAT12 ch l 4078). V vng h thng c kch thc rt nh nn SD s gn bng SV. Vy SC t nht cng gn bng

26

4000000/65518 = 61.xx (sector). y l 1 con s qu ln cho SC, nhng tha tiu chun SC l ly tha ca 2 th ta phi cho SC=64 sector v d nhin loi FAT c s dng trong trng hp ny phi l FAT16 ch khng th dng FAT12. Thay cc gi tr trn vo ng thc SB + nF*SF +SR + SD = SV ta c 3 + 2SF + 32 + SD = 4000000 (sector), hay 2SF + SD = 3999965 (sector) (*) * Gi s SF = 1 (sector): (*) SD = 3999965 - 2SF = 3999963 (sector) = 62499.4x (cluster) (v mi cluster chim 64 sector). . Vng d liu c 62499 cluster, nn bng FAT phi c 62499 + 2 = 62501 phn t, do SF = (62501*2)/512 = 244.1x (sector) . Bng FAT phi chim 245 sector mu thun vi gi thit SF = 1. Vy kch thc bng FAT ca a ny khng th l 1 sector * Tng t, vi SF t 2 n 244 ta vn thy mu thun, tc kch thc bng FAT phi ln hn 244 sector. * Gi s SF = 245 (sector): (*) SD = 3999965 - 2SF = 3999475 (sector) = 62491 (cluster) (v mi cluster chim 64 sector).

. .

) Vng d liu c 62491 cluster, nn bng FAT phi c 62491 + 2 = 62493 phn t, do SF = (62493*2)/512 = 244.1x (sector) ) Bng FAT phi chim 245 sector ph hp vi gi thit SF = 245. Vy kch thc bng FAT ca a ny l 245 sector. 2.3 nh dng nhanh (quick format) 2.3.1 Thut gii: (u vo: tn a cn format li; u ra: a trng c thng s cc thnh phn qun l khng thay i) Bc 1: c BootSector xc nh cc thng s cn thit. Bc 2: c bng qun l cluster vo b nh. Bc 3: Gi nguyn danh sch cc cluster h (nu c) & cho cc trng thi cc cluster cn li thnh trng. Bc 4: Lu li bng qun l cluster vo a. Bc 5: To 1 vng m c kch thc bng kch thc bng th mc gc & a vo vng m cc gi tr tng ng vi cc entry trng. Bc 6: Ghi vng m trn vo v tr lu tr bng th mc gc ca a. 2.3.2 nh dng a theo kin trc FAT12 /FAT16 -Bc 1: c BootSector xc nh cc thng s SB, SF, nF, SR. -Bc 2: c bng FAT vo mng aFAT trn b nh. -Bc 3: Gn gi tr FREE (gi tr 0) vo cc phn t c gi tr khc BAD (FF7 vi FAT12 hoc FFF7 vi FAT16) trn mng aFAT. -Bc 4: Lu li mng aFAT trn vo nF bng FAT trn a (lu vo SF sector bt u ti sector SB, nu nF > 1 th lu tip vo cc v tr SB + SF , SB + 2*SF ,..., SB + (nF-1)*SF ) -Bc 5: To 1 vng m kch thc SR (byte) c ni dung cc byte u l 0. -Bc 6: Lu li vng m trn vo bng RDET trn a (lu vo SR sector bt u ti sector (SB + nF*SF ) ) 3. c ni dung tp tin trn a 3.1 Khi nim y l thao tc truy xut a c thc hin nhiu nht, cng l thao tc thng 27

xuyn ca h thng my tnh. M tc truy xut b nh ngoi (ni cha tp tin) chm hn nhiu so vi b nh trong, do tng tc hot ng ca my tnh ng thi c th bo mt d liu, kim chng s hp l, khng vi cc s c c th gy h hng, ... khi truy xut tp tin ngi ta thng dng ti nhiu h thng Cache, nhiu k thut ti u & cc x l khc. Tuy nhin c th d dng hn cho vic nm c mt cch c bn t chc lu tr tp tin & c ch hot ng ca h thng qun l tp tin, cc thut gii c trnh by sau y ch nu cch gii quyt c bn, chn phng nht - khng quan tm nhiu n vic ti u & cc x l nng cao khc. Ta bit v c bn c 2 loi tp tin khc nhau: tp tin bnh thng v tp tin th mc (cn gi l th mc con). Cho nn trc mt c th thy c 2 thao tc khc nhau: c ni dung tp tin bnh thng & c ni dung bng th mc con (tc ni dung tp tin th mc). Nhng tht ra 1 tp tin bnh thng cng nh 1 th mc cng c th nm trong 1 th mc con no , v vy c th phn ra ti 4 thao tc tng i ring bit: c ni dung 1 tp tin bnh thng th mc gc ca a, c ni dung 1 th mc con nm th mc gc ca a, c ni dung 1 tp tin bnh thng 1 th mc con ca a, v c ni dung 1 th mc con nm trong 1 th mc con no ca a. 3.2 c ni dung tp tin th mc gc ca a 3.2.1 Thut gii: (u vo: tn a, tn tp tin cn ly ni dung; u ra: ni dung ca tp tin) Bc 1: c BootSector ca a xc nh cc thng s cn thit (v tr & kch thc ca bng th mc gc & bng qun l cluster, kch thc cluster, v tr bt u ca vng d liu,...) Bc 2: c bng th mc gc vo b nh. Bc 3: Tm trn bng th mc gc va c entry c phn tn ging vi tn tp tin cn ly ni dung (nu khng c th thng bo tp tin khng tn ti & thot). Bc 4: c bng qun l cluster vo b nh. Bc 5: T ni dung bng qun l cluster va c & thng tin ca entry tm c bc 3 suy ra danh sch nhng cluster cha ni dung tp tin. Bc 6: c nhng cluster tng ng vi danh sch trn & ghp cc ni dung c c li theo ng th t ta c ni dung tp tin (ring phn ni dung trn cluster cui ch ly N byte, vi N = <kch thc tp tin> MOD <kch thc cluster>). 3.2.2 c ni dung tp tin th mc gc ca a c kin trc FAT12 /FAT16 -Bc 1: c BootSector xc nh cc thng s SB, SF, SR, SC, SS. -Bc 2: c bng RDET vo b nh. -Bc 3: Tm trn bng RDET va c entry c phn tn ging vi tn tp tin cn ly ni dung (nu khng c th thng bo tp tin khng tn ti & thot). -Bc 4: c bng FAT vo mng aFAT trn b nh. -Bc 5: T ch s cluster bt u f1 trong entry tm c bc 3 xc nh dy cc phn t k tip f2, f3, f4 , ... theo cng thc fi+1= aFAT [ fi ] cho n khi gp ch s fN c aFAT[ fN ] = EOF. -Bc 6: c nhng cluster f1, f2, f3 , ..., fN & ghp cc ni dung c c li theo ng th t ta c ni dung tp tin (ring phn ni dung trn cluster fN ch ly M byte, vi M = <kch thc tp tin> MOD SC ). 3.3 c ni dung mt th mc con th mc gc ca a Vic s dng ni dung tp tin bnh thng v ni dung ca tp tin th mc l hon ton khc nhau. Nhng nu t chc lu tr tp tin th mc ging nh tp tin bnh thng th vic c ni dung bng th mc con cng s ging nh c ni dung tp tin bnh thng. Ring i vi a c t chc theo cu trc FAT12 /FAT16 th phn ni dung tp tin th mc trn cluster cui cng c s dng ht ch khng nh tp tin bnh thng c th ch

28

chim 1 phn. V cng v vy trng <kch thc tp tin> trong entry ca tp tin th mc s khng c s dng (lun c gn l 0), d bng th mc c kch thc bao nhiu i na. 3.4 c ni dung tp tin trong mt th mc con ca a Entry cha cc thng tin v tp tin cn c s nm trong bng th mc con ca th mc cha tp tin . C th thy mt vn trc tin l th mc con cha tp tin c th ang nm trong 1 th mc con khc, v th mc con ny li c th nm trong 1 th mc con khc na. Nh vy c c ni dung tp tin trc tin ta phi xc nh ng dn n ni cha tp tin (l mt dy cc th mc con m th mc trc l cha ca th mc sau), t ng dn ny ta s ln lt c & phn tch cc bng th mc con cui cng c c bng th mc con ca th mc cha tp tin. Gi s cc th mc con trong ng dn c gi theo th t l th mc con cp 1, th mc con cp 2, ... th hnh thc xc nh ni dung ca bng th mc con cp N l: -Tm entry tng ng vi th mc con cp 1 trong bng th mc gc v suy c ni dung ca tp tin ny (bng th mc con cp 1). -Tm entry tng ng vi th mc con cp 2 trong bng th mc con cp 1 trn v suy c ni dung ca tp tin th mc con cp 2 (bng th mc con cp 2). o -Tm entry tng ng vi th mc con cp 3 trong bng th mc con cp 2 trn v suy c ni dung ca tp tin th mc con cp 3 (bng th mc con cp 3) -Tm entry tng ng vi th mc con cp N trong bng th mc con cp (N-1) trn v suy c ni dung ca tp tin th mc con cp N (bng th mc con cp N) 3.4.1 Thut gii: (u vo: tn a, ng dn & tn tp tin cn ly ni dung; u ra: ni dung tp tin ) Bc 0: Phn tch ng dn xc nh s cp (gi s l N) & tn ca cc th mc con cc cp. Bc 1: c BootSector ca a xc nh cc thng s cn thit (v tr & kch thc ca bng th mc gc & bng qun l cluster, kch thc cluster, v tr bt u ca vng d liu,...) Bc 2: c bng th mc gc vo b nh. Bc 3: c bng qun l cluster vo b nh. Bc 4: Bt u t bng th mc gc ln lt suy ra cc bng th mc con cc cp k tip & cui cng c bng th mc con cha entry ca tp tin (th mc con cp N) Bc 5: Tm trn bng th mc hin ti entry c phn tn ging vi tn tp tin cn ly ni dung (nu khng c th thng bo tp tin khng tn ti & thot). Bc 6: T ni dung bng qun l cluster c bc 3 & thng tin ca entry tm c bc trn suy ra danh sch nhng cluster cha ni dung ca tp tin. Bc 7: c nhng cluster tng ng vi danh sch trn & ghp cc ni dung c c li theo ng th t ta c ni dung tp tin (ring phn ni dung trn cluster cui ch ly N byte, vi N = <kch thc tp tin> MOD <kch thc cluster>). Thut gii chi tit cho Bc 4: Bc 4.1: K = 1. Bc 4.2: Tm trn bng th mc hin ti entry c phn tn ging vi tn th mc con cp K (nu khng c th thng bo ng dn sai & thot). Bc 4.3: T ni dung bng qun l cluster c bc 3 & thng tin ca entry tm c bc trn suy ra danh sch nhng cluster cha ni dung tp tin th mc con cp K. Bc 4.4: c nhng cluster tng ng vi danh sch trn & ghp cc ni dung c c li theo ng th t ta c ni dung bng th mc con ca th mc cp K. 29

Bc 4.5: Gn bng th mc hin ti l bng th mc con trn Bc 4.6: Nu K < N th tng K thm 1 v quay li bc 4.2.

3.4.2 c ni dung tp tin th mc con ca a c kin trc FAT12 /FAT16 -Bc 0: Phn tch ng dn xc nh s cp N & tn cc th mc con cc cp. -Bc 1: c BootSector xc nh cc thng s SB, SF, SR, SC, SS. -Bc 2: c bng RDET vo b nh. -Bc 3: c bng FAT vo mng aFAT trn b nh. -Bc 4: Bt u t RDET ln lt suy ra cc SDET cc cp k tip cho n khi c SDET ca th mc con cp N -Bc 5: Tm trn bng SDET trn entry c phn tn ging vi tn tp tin cn ly ni dung (nu khng c th thng bo tp tin khng tn ti & thot). -Bc 6: T ch s cluster bt u f1 trong entry tm c bc trn xc nh dy cc phn t k tip f2, f3, f4 , ... theo cng thc fi+1= aFAT [ fi ] cho n khi gp ch s fN c aFAT[ fN ] = EOF. -Bc 7: c nhng cluster f1, f2, f3 , ..., fN & ghp cc ni dung c c li theo ng th t ta c ni dung tp tin (ring phn ni dung trn cluster fN ch ly M byte, vi M = <kch thc tp tin> MOD SC ). Ghi ch: Ta cng c th kt hp cc bc 5,6,7 vo bc 4. 3.5 c ni dung th mc trong mt th mc con ca a Bi ton ny c gii quyt chc nng k trc (bng cch thc hin t u cho n ht bc 4). 4. Lu gi tp tin vo a 4.1 Khi nim Sau thao tc u tin l nh dng a, chc nng k tip c nh hng n ni dung lu tr trn a l a tp tin vo a, chc nng ny s c thc hin nhiu ln trong qu trnh s dng a. Vic a 1 tp tin vo a c th l chp 1 tp tin t ni khc vo a, to 1 tp tin trn a, hoc to 1 th mc con trn a. Khi a ang trng thi trng th cc thao tc ch c th thc hin trn th mc gc ca a, nhng khi a c th mc con th nhng thao tc trn c th thc hin trong 1 th mc con no ca a. Ta c th phn ra 4 thao tc tng i ring bit: a 1 tp tin bnh thng vo th mc gc ca a, to 1 th mc con th mc gc ca a, a 1 tp tin bnh thng vo 1 th mc con no ca a, to 1 th mc con trong 1 th mc con no ca a. 4.2 a 1 tp tin bnh thng vo th mc gc ca a 4.2.1 Thut gii: (u vo: tn a, tn & cc thuc tnh ca tp tin, ni dung tp tin; u ra: tn, cc thuc tnh & ni dung tp tin c lu vo a theo ng cu trc lu tr thit k - khng nh hng n cc ni dung ang c sn trn a) Bc 1: c BootSector ca a xc nh cc thng s cn thit (v tr & kch thc ca bng th mc gc & bng qun l cluster, kch thc cluster, v tr bt u ca vng d liu,...) Bc 2: c bng th mc gc vo b nh. Bc 3: Tm trn bng th mc gc va c 1 entry trng (nu khng c th thng bo ht ch lu tr & thot). Bc 4: T kch thc tp tin & kch thc cluster xc nh s cluster N m tp tin phi chim (= <kch thc ni dung tp tin>/<kch thc cluster>) Bc 5: c bng qun l cluster vo b nh.

30

 Bc 6: Tm trn bng N phn t tng ng vi trng thi cluster trng (nu khng c N phn t th thng bo khng dung lng trng lu ni dung tp tin & thot) Bc 7: iu chnh li gi tr N phn t trn thnh trng thi ca cluster cha ni dung tp tin (theo ng th t ) Bc 8: a vo entry th mc tm c bc 3 tn & cc thuc tnh ca tp tin. Bc 9: Lu li entry va iu chnh vo bng th mc gc ca a. Bc 10: Lu li bng qun l cluster vo a. Bc 11: Phn ni dung tp tin ra thnh nhng phn c kch thc bng kch thc cluster v lu chng vo N cluster tng ng vi N phn t tm c bc 6. 4.2.2 a mt tp tin vo th mc gc ca a c kin trc FAT12 /FAT16 -Bc 1: c BootSector xc nh cc thng s SB, SF, nF, SR, SC, SS. -Bc 2: c bng RDET vo b nh. -Bc 3: Tm trn bng RDET va c 1 entry trng (nu khng c th thng bo ht ch lu tr & thot). -Bc 4: Xc nh s cluster N m tp tin s chim ( N=<kch thc ni dung tp tin>/SC). -Bc 5: c bng FAT vo mng aFAT trn b nh. -Bc 6: Tm trn mng aFAT N phn t f1, f2, ..., fN c gi tr 0 (nu khng c N phn t th thng bo khng dung lng trng lu ni dung tp tin & thot). -Bc 7: iu chnh li gi tr N phn t trn theo cng thc: aFAT [ fi ] = fi+1, vi i t 1 n (n-1), v aFAT [ fN ] = EOF. -Bc 8: a vo entry th mc tm c bc 3 tn & cc thuc tnh ca tp tin (trng cluster bt u c gn gi tr f1) -Bc 9: Lu li entry va iu chnh vo RDET ca a. -Bc 10: Lu li mng aFAT trn vo nF bng FAT trn a. -Bc 11: Phn vng ni dung tp tin ra thnh nhng on c kch thc bng SC v lu chng vo cc cluster tng ng mang ch s f1, f2, ..., fN trn vng DATA. 4.3 To 1 th mc con th mc gc ca a 4.3.1 Thut gii: (u vo: tn a, tn & cc thuc tnh ca th mc; u ra: mt th mc rng c to ra trn th mc gc ca a theo ng cu trc lu tr thit k - khng nh hng n cc ni dung ang c sn trn a) Bc 1: c BootSector ca a xc nh cc thng s cn thit Bc 2: c bng th mc gc vo b nh. Bc 3: Tm trn bng th mc gc va c 1 entry trng. Bc 4: c bng qun l cluster vo b nh. Bc 5: Tm trn bng 1 phn t tng ng vi trng thi cluster trng. Bc 6: iu chnh li gi tr phn t trn thnh trng thi ca cluster cha ni dung tp tin (v l cluster cui) Bc 7: a vo entry th mc tm c bc 3 tn & cc thuc tnh ca tp tin th mc. Bc 8: Lu li entry va iu chnh vo bng th mc gc ca a. Bc 9: Lu li phn t va iu chnh bc 6 vo bng qun l cluster ca a. Bc 10: To 1 vng m c kch thc bng kch thc cluster v a vo 31

vng m ni dung ca bng th mc con tng ng vi 1 th mc rng Bc 11: Lu vng m trn vo cluster tng ng vi phn t tm c bc 6. 4.3.2 To 1 th mc con trn th mc gc ca a c kin trc FAT12 /FAT16 -Bc 1: c BootSector xc nh cc thng s SB, SF, nF, SR, SC, SS. -Bc 2: c bng RDET vo b nh. -Bc 3: Tm trn bng RDET va c 1 entry trng. -Bc 4: c bng FAT vo b nh. -Bc 5: Tm trn bng FAT va c 1 phn t C mang gi tr 0. -Bc 6: iu chnh li gi tr phn t trn thnh EOF. -Bc 7: a vo entry th mc tm c bc 3 tn & cc thuc tnh ca tp tin (trng cluster bt u c gn gi tr l C) -Bc 8: Lu li entry va iu chnh vo RDET ca a. -Bc 9: Lu li phn t va iu chnh bc 6 vo cc bng FAT ca a. -Bc 10: To 1 vng m c kch thc bng SC v a vo vng m ni dung ca bng th mc con tng ng vi 1 th mc rng (2 entry u c tn l . v .., cc entry cn li u mang gi tr 0. -Bc 11: Lu vng m vo cluster C ca a. 4.4 a 1 tp tin bnh thng vo 1 th mc con ca a 4.4.1 Thut gii: (u vo: tn a, ng dn n ni cha tp tin, tn & cc thuc tnh ca tp tin, ni dung tp tin; u ra: tn, cc thuc tnh & ni dung tp tin c lu vo a ng ch & ng cu trc lu tr thit k - khng nh hng n cc ni dung ang c sn trn a) Bc 0: Phn tch ng dn xc nh s cp (gi s l N) & tn ca cc th mc con cc cp. Bc 1: c BootSector ca a xc nh cc thng s cn thit (v tr & kch thc ca bng th mc gc & bng qun l cluster, kch thc cluster, v tr bt u ca vng d liu,...) Bc 2: c bng th mc gc vo b nh. Bc 3: c bng qun l cluster vo b nh. Bc 4: Bt u t bng th mc gc ln lt suy ra cc bng th mc con cc cp k tip & cui cng c bng th mc con cha entry ca tp tin (th mc con cp N) Bc 5: Tm trn bng th mc cp N trn 1 entry trng (nu khng c th ni thm 1 cluster trng vo ni dung bng th mc trn).* Bc 6: T kch thc tp tin & kch thc cluster xc nh s cluster N m tp tin phi chim (= <kch thc ni dung tp tin>/<kch thc cluster>) Bc 7: Tm trn bng qun l cluster c c bc 3 N phn t tng ng vi trng thi cluster trng (nu khng c N phn t th thng bo khng dung lng trng lu ni dung tp tin & thot) Bc 8: iu chnh li gi tr N phn t trn thnh trng thi ca cluster cha ni dung tp tin (theo ng th t ) Bc 9: a vo entry th mc tm c bc 5 tn & cc thuc tnh ca tp tin. Bc 10: Lu li entry va iu chnh vo bng th mc con cp N trn. Bc 11: Lu li bng qun l cluster vo a. 32

 Bc 12: Phn ni dung tp tin ra thnh nhng phn c kch thc bng kch thc cluster v lu chng vo N cluster tng ng vi N phn t tm c bc 6. 4.4.2 a mt tp tin vo 1 th mc con ca a c kin trc FAT12 /FAT16 -Bc 0: Phn tch ng dn xc nh s cp N & tn cc th mc con cc cp. -Bc 1: c BootSector xc nh cc thng s SB, SF, SR, SC, SS. -Bc 2: c bng RDET vo b nh. -Bc 3: c bng FAT vo mng aFAT trn b nh. -Bc 4: Bt u t RDET ln lt suy ra cc SDET cc cp k tip cho n khi c SDET ca th mc con cp N -Bc 5: Tm trn bng SDET trn 1 entry trng (nu khng c th ni thm 1 cluster trng vo ni dung bng th mc trn). -Bc 6: Xc nh s cluster N m tp tin s chim ( N=<kch thc ni dung tp tin>/SC). -Bc 7: Tm trn mng aFAT N phn t f1, f2, ..., fN c gi tr 0 (nu khng c N phn t th thng bo khng dung lng trng lu ni dung tp tin & thot). -Bc 8: iu chnh li gi tr N phn t trn theo cng thc: aFAT [ fi ] = fi+1, vi i t 1 n (n-1), v aFAT [ fN ] = EOF. -Bc 9: a vo entry th mc tm c bc 5 tn & cc thuc tnh ca tp tin (trng cluster bt u c gn gi tr f1) -Bc 10: Lu li entry va iu chnh vo SDET ca th mc con cp N trn. -Bc 11: Lu li mng aFAT trn vo nF bng FAT trn a. -Bc 12: Phn vng ni dung tp tin ra thnh nhng on c kch thc bng SC v lu chng vo cc cluster tng ng mang ch s f1, f2, ..., fN trn vng DATA. 4.5 To mt th mc trong mt th mc con c sn 4.5.1 Thut gii: (u vo: tn a, ng dn n ni th mc con c sn, tn & cc thuc tnh ca th mc con cn to; u ra: mt th mc rng c to ra trong th mc con ch ra theo ng cu trc lu tr thit k - khng nh hng n cc ni dung ang c sn trn a) Bc 0: Phn tch ng dn xc nh s cp (gi s l N) & tn ca cc th mc con cc cp. Bc 1: c BootSector ca a xc nh cc thng s cn thit (v tr & kch thc ca bng th mc gc & bng qun l cluster, kch thc cluster, v tr bt u ca vng d liu,...) Bc 2: c bng th mc gc vo b nh. Bc 3: c bng qun l cluster vo b nh. Bc 4: Bt u t bng th mc gc ln lt suy ra cc bng th mc con cc cp k tip & cui cng c bng th mc con cha entry ca tp tin (th mc con cp N) Bc 5: Tm trn bng th mc hin ti 1 entry trng. Bc 6: Tm trn bng qun l cluster 1 phn t tng ng vi trng thi cluster trng. Bc 7: iu chnh li gi tr phn t trn thnh trng thi ca cluster cha ni dung tp tin (v l cluster cui) Bc 8: a vo entry th mc tm c bc 5 tn & cc thuc tnh ca tp tin th mc. Bc 9: Lu li entry va iu chnh vo bng th mc con hin ti.

33

 Bc 10: Lu li phn t va iu chnh bc 7 vo bng qun l cluster ca a. Bc 11: To 1 vng m c kch thc bng kch thc cluster v a vo vng m ni dung ca bng th mc con tng ng vi 1 th mc rng Bc 12: Lu vng m trn vo cluster tng ng vi phn t tm c bc 6. 4.5.2 To th mc trong 1 th mc con ca a c kin trc FAT12 /FAT16 -Bc 0: Phn tch ng dn xc nh s cp N & tn cc th mc con cc cp. -Bc 1: c BootSector xc nh cc thng s SB, SF, SR, SC, SS. -Bc 2: c bng RDET vo b nh. -Bc 3: c bng FAT vo mng aFAT trn b nh. -Bc 4: Bt u t RDET ln lt suy ra cc SDET cc cp k tip cho n khi c SDET ca th mc con cp N -Bc 5: Tm trn bng SDET trn 1 entry trng (nu khng c th ni thm 1 cluster trng vo ni dung bng th mc trn). -Bc 6: Tm trn mng aFAT va c 1 phn t C mang gi tr 0. -Bc 7: iu chnh li gi tr phn t trn thnh EOF. -Bc 8: a vo entry th mc tm c bc 5 tn & cc thuc tnh ca tp tin (trng cluster bt u c gn gi tr l C) -Bc 9: Lu li entry va iu chnh vo SDET ca th mc con cp N trn. -Bc 10: Lu li phn t va iu chnh bc 7 vo cc bng FAT ca a. -Bc 11: To 1 vng m c kch thc bng SC v a vo vng m ni dung ca bng th mc con tng ng vi 1 th mc rng (2 entry u c tn l . v .., cc entry cn li u mang gi tr 0. -Bc 11: Lu vng m vo cluster C ca a.

IV.

Phc hi nguyn trang khi b xo nhm hoc format nhm .

1. Cu d liu b mt Khi bn xa mt tp tin hay th mc no trong h thng, thc cht lnh ny ch nh du " xa" trong Directory Entry v nhng thng tin lin quan trong File Allocation Table - FAT (vi phn vng nh dng FAT/FAT32) hoc nh du "xo trong Master File Table - MFT Entry (vi phn vng nh dng NTFS). Lc ny, cc vng (cluster) cha d liu ca tp tin xem nh trng v c tnh l dung lng cha dng n ca a cng mc d d liu vn tn ti. Khi d liu mi c ghi vo, lc ny d liu c mi thc s b xa i v ghi bng d liu mi. Chng ta (v c h iu hnh) u khng th "nhn" thy c nhng d liu b nh du xa nhng nhng phn mm cu d liu vn nhn thy chng khi qut qua b mt a. V vy chng ta mi cn n nhng phn mm ny trong vic khi phc d liu. C rt nhiu phn mm gip bn thc hin vic ny, t min ph cho n c ph nh Ontrack Easy Recovery, Winternals Disk Commander, Active Uneraser, PC Inspector File Recovery, Drive Rescue... Mi phn mm u c nhng im mnh - yu ring, nhng nhn chung, kh nng "cu h" ty thuc rt nhiu vo cu trc d liu trn a cng v nhng thao tc c nh hng n cc vng d liu. 2. Cu trc d liu trn a Trc tin, chng ta cng tham kho qua cch thc thng tin ca mt tp tin c lu tr trn a cng. Vi phn vng FAT, d liu c lu tr ti 3 ni trn a cng, bao gm: Directory Entry cha thng tin v tp tin gm tn, dung lng, thi gian to v s hiu cluster u tin cha d liu ca tp tin; FAT cha s hiu cc cluster c s dng cho

34

tp tin v cc cluster cha d liu ca tp tin (vng Allocation). Vi phn vng NTFS, d liu c lu tr trong MFT (Master File Table) Entry v vng Allocation (hnh minh ha). Bt k phn mm cu d liu no cng c gng tm li nhng thng tin t 3 ni ny c th khi phc y ni dung ca mt tp tin, nu thiu (hoc mt) mt trong nhng thng tin ny, d liu khng ton vn hoc khng th khi phc (xem bng). Nh vy, xem xt cc trng hp trn th kh nng khi phc d liu thng kh thp. Trng hp cc cluster ca Allocation b hng hoc b chp , bn hu nh khng th khi phc c v d liu b xa v chp bi d liu mi. V l thuyt, bn vn c th ly li d liu c vi k thut MFM (Magnetic Force Microscope) tuy nhin k thut ny khng c p dng rng ri trn thc t v mt nhiu thi gian v chi ph rt cao. Allocation Directory Entry FAT Tp tin c khi phc y Tp tin c khi phc nhng c th ni dung khng y hoc khng th c c. Tp tin c th c khi phc nhng khng y thng tin Khng th khi phc d vn c th nhn thy tn ca tp tin. Khng th khi phc v khng cn du vt ca tp tin

Allocation

MFT Tp tin c khi phc y Tp tin c th c khi phc nhng khng y thng tin Khng th khi phc d vn c th nhn thy tn ca tp tin. Khng th khi phc v khng cn du vt ca tp tin

3. Kh nng phc hi d liu - Tp tin b xa: Nh cp trn, vic xa tp tin s nh du xa trong Director Entry v nhng thng tin lin quan trong bng FAT hoc MFT Entry. V l thuyt, kh nng khi phc y tp tin ny l cao. Tuy nhin, kt qu thc t i khi khng c nh mong i v mt s nguyn nhn: sau khi xa, ngi dng c gng thc hin mt s thao tc nhm ly li d liu, HH ghi d liu mi vo cc cluster c nh du xa... - Phn vng b xa (hoc to li) nhng cha nh dng (format): Hu ht d liu u c th khi phc c trong trng hp ny v FAT v MFT khng b nh hng khi ngi dng xa v to mi phn vng.

35

- Phn vng b format: Vi phn vng FAT, vic nh dng s xa bng FAT, Boot Record v th mc gc (Root Directory) nhng Partition Table v d liu trong Allocation vn cn. Nhng tp tin c dung lng nh hn kch thc mt cluster (32KB, mc nh ca FAT32 hoc theo ty chn ca bn khi nh dng), tp tin c khi phc hon ton v chng khng cn n thng tin trong bng FAT. Vi nhng tp tin c dung lng ln, nhiu cluster lin tip nhau, chng s b phn mnh khi c s thay i ni dung theo thi gian. Vic tm v rp cc cluster c lin quan vi nhau l cng vic kh khn, nht l vi nhng tp tin c dung lng ln v hay thay i. Mt s phn mm cu d liu c kh nng khi phc m khng cn thng tin t bng FAT. tuy nhin, ni dung nhng tp tin sau khi tm li s khng y hoc khng th c c. V vy, bn s cn n mt phn mm c kh nng trch xut nhng ni dung cn c c t nhng tp tin ny (chng ti s cp n vn ny trong bi vit khc khi iu kin cho php). Vi phn vng NTFS, vic nh dng s to MFT mi, tuy nhin kt qu khi phc s tt hn phn vng FAT v NTFS khng s dng bng FAT xc nh cc cluster cha d liu ca cng tp tin. - Phn vng b format v ci HH mi hoc s dng Ghost: Trng hp ny thc s l kh khn v Directory Entry (FAT), MFT (NTFS) b xa. Gi s bn c 10GB d liu lu tr trn phn vng 20GB, phn vng ny b format v chp 5GB d liu mi. Nh vy, bn khng th khi phc nhng d liu b chp m ch c th khi phc d liu t 5GB tr v sau. 4.Mt s lu Bn c th s dng bt c phn mm no trong "tm vi" ca mnh cu d liu, tuy nhin chng ti xin lu mt vi im sau. - Mt s phn mm cho dng th v ch yu cu ngi dng nhp s ng k (license key) khi sao lu nhng d liu cn khi phc. V vy, bn hy tn dng iu ny th qua mt vi phn mm tm ra phn mm thch hp nht vi loi d liu ca mnh cn khi phc. - Mt s phn mm cho php to a khi ng v lm vic trong ch MS -DOS. Tuy nhin, bn s kh khn hn trong vic chn la nhng d liu cn khi phc. Nu c th, hy ci t phn mm cu d liu trn mt h thng khc v gn a cn khi phc vo khi sn sng. Bn s d dng lm vic hn vi nhng tp tin theo cu trc cy th mc, xem qua ni dung nhng tp tin c th khi phc trc khi mua license key. Lu : ng lo lng khi HH khng nhn ra a cng cn khi phc, phn mm khi phc s lm vic ny tt hn nu trong BIOS Setup vn nhn dng c cng ny. - Trnh nhng thao tc ghi d liu ln a cng cn khi phc. Sau khi xa, v tr nhng cluster ca tp tin khng c bo v, sn sng cho vic ghi d liu mi. C khi ngi dng khng to ra nhng tp tin mi, hot ng ca HH cng nh hng n d liu xa khi to ra nhng tp tin nht k (log) ghi li hot ng ca h thng, ngoi ra, vic truy cp Internet s ti v kh nhiu tp tin tm cng c ghi trn a cng. Tt nht bn nn ngng ngay vic s dng cng ny, ch gn n vo mt h thng khc sau khi chun b sn sng cho vic cu d liu. - ng chm tr khi cu d liu. Hy hnh ng tht nhanh khi nhn thy sai lm ca mnh, bn s c nhiu c hi ly li c d liu xo mt. Ngoi ra, kh nng khi phc ph thuc vo loi d liu. Nu l nhng tp tin hnh, bn c th ly li c 9 trn 10 hnh. Tuy nhin, nu l c s d liu (database), bng biu... d ly li c 90% nhng c th chng vn v dng v cu trc c s d liu thng c s lin kt, ph thuc ln nhau. - Mt a cng "cht" nu BIOS hay tin ch qun l a cng khng th nhn dng c. cng cht thng c nhng hin tng l nh khng nghe ting mt quay, pht ra nhng ting ng lch cch khi hot ng... y l nhng hng hc vt l ca bo mch iu khin, u c, mt, a t... Hy c gng to bn sao nh ca a cng vi Norton Ghost, Drive

36

Image hoc tnh nng tng t ca mt s phn mm cu d liu. Khi a cng gp s c, bn c th ly li d liu t bn sao nh ca a cng. - Nu d liu thc s rt quan trng, bn nn em cng n nhng dch v cu d liu c uy tn kim tra, ng thao tc trn a cng v s nh hng n kh nng khi phc d liu hoc lm tnh hnh thm nghim trng. V d nhin, ci gi phi tr cho vic ny s khng r cht no. Tuy nhin, bn ng trng ch nhiu vo vic cu d liu khi cng cht v vic ny t khi thnh cng.

V. Gii thiu mt s phn mm tin ch v phn mm cng c dng sao lu v phc hi d liu
1. Phn mm tin ch v phn mm cng c dng sao lu Mt h thng sao lu d liu hon ho nh to nh a cng s gip bn c th phc hi nhanh chng khi a cng b li, nhng li yu cu bn phi c a cng th 2 hoc phi s dng nhiu a quang sao lu d liu. Thi gian tt nht to nh a l ngay sau khi ci t Windows v khi ci t cc ng dng. nh a bao gm mt bn sao ca Windows v tt c nhng chng trnh c cu hnh theo nhu cu s dng. Tuy nhin, bn cng c th ch sao lu nhng th mc v d liu m i vi bn chng thc s quan trng. a) Phn vng ring cho an ton d liu Theo mc nh, Windows v hu ht cc ng dng u lu tr mc nh cc tp tin trong th mc My Documents. Th mc ny lu tr dng nh ton b nh s, m nhc, video... v cc tp tin khc v lu gi chng vo mt ni d dng sao chp. Nhng tht khng may, th mc ny li thng nm trn cng phn vng khi ng ca Windows- nn kh nng d b tn thng v hay b hng hc rt d xy ra. V vy, to ra mt phn vng lu tr cc d liu lun l mt tng hay. To mt phn vng lu d liu s n gin, d dng v an ton hn bi bn c th trnh c ghi chng cc tp tin khi ci t li Windows. y l mt hng gii quyt: Chia a cng thnh cc a logic (phn vng) lu tr d liu theo nhng mc ch s dng khc nhau, C: s dng cho h iu hnh, D: cho lu tr ng dng, E: lu tr cc d liu v ti chnh, kinh doanh... v phn vng F: lu tr nh s, cc tp tin m thanh v video. c th to phn vng a cng n gin hy s dng Partition Magic 8 ca Symantec hay Disk Director Suite ca Acronis. Nhng tin ch ny gip cho qu trnh phn vng a cng tr nn n gin, nhanh chng v khng lm mt d liu trn a cng. Nu khng c iu kin cng nh kinh nghim c th s dng cc cng c trn, bn vn c th s dng My Documents nh l trung tm lu tr cc d liu c nhn. Bn c th ch nh ng dn cho My Documents vo th mc no trn phn vng khc. M Windows Explorer, nhn phm phi vo My Documents, la chn Properties, chn nt Move trong th Target, v duyt ti th mc mun chn. Cui cng, nhn OK hon thnh.

37

 thay i th mc mc nh ca Outlook Express lu tr email. M chng trnh ny, nhn vo Tools->Options>Maintenance->Store Folder->Change, la chn th mc cha nhng email, v nhn Ok ng li. Hnh 2.10.

b) La chn phng tin sao lu thch hp Mt yu t rt quan trng ca sao lu d liu l lu tr nhiu bn sao vo nhiu ni khc nhau - bi v cc phng tin sao lu c th b hng hc v bn cng khng mun mt nhng tp tin quan trng. V vy, sao lu vi bn sao trong CD/DVD hay cc phng tin sao lu khc l cn thit, an ton v khng lng ph. Tuy nhin, bn cng phi la chn gii php sao lu d liu cho thch hp. V d: nu cc tp tin cn sao lu ln ti 2 GB v bn mun lu tr 3 bn sao ring bit? Chc chn rng , bn khng th sao lu trn mt a CD duy nht, v cng mt rt nhiu thi gian ti ln my ch Web. Gii php s dng thch hp trong trng hp ny l DVD v cng gn ngoi. Ngc li, vi d liu khong 200 MB th sao lu d liu trn CD hoc sao lu trc tuyn li l gii php ti u nht. i vi nhiu ngi, DVD l phng tin sao lu d liu c chn. Gi ca nhng a DVD ghi c cng gim gi ng k, v dung lng ca DVD c th lu tr ln hn vi ln so vi a CD. Hn na cc a DVD c th ghi li cng r hn, v c sn. Nu tm kim cc thit b sao lu d liu m khng cn yu cu tho lp a, hy s dng cc cng gn ngoi nh Media Center ca Western Digital, cho dung lng 250 GB, hoc OneTouch ca Maxtor vi dung lng 300 GB. Nhng dch v sao lu d liu trc tuyn nh XDrive v Ibackup th li c gi c tng i cao vi 10 USD/thng. Mc d nhng dch v ny cng cho php dng th, v chng ch thch hp vi kt ni bng thng rng. Mt iu cn lu l sao lu d liu trc tuyn kh an ton, cc dch v ny cung cp bo mt d liu kh tt. Cui cng, phng php sao lu d liu gi cao khc l s dng th nh USB Flash. Sao lu bng th nh c kch thc nh gn nhng c dung lng lu tr nh ch khong 1 GB la chn c phng tin sao lu thch hp, bn c th tham kho bng sau: Kiu sao u im lu - Gn nh v n nh. CD/DVD - L phng tin sao lu ph bin, c sn v khng t. - D dng khi cn di chuyn Khuyt im - Dung lng sao lu ch mc trung bnh. - Khng phi l la chn khi sao lu d liu y . - L phng tin tng i nhy cm vi nhit v nh nng mt Tc - Tc khong 3 MBps cho n 12 MBps. - Cng nn ch ti thi gian Gi thnh/ GB Khong t 10 ti 20 cent/ GB Khuyn dng Phc v cho sao lu hng ngy 700 MB cho CD v 4.7 GB cho DVD. Th thut Vi mc ch s dng hng ngy, CDRW s l r nht v hp dn nht.

38

tri.

thm cho tro i a Khng nn s dng vi mc ch sao lu cc d liu hng ngy cho ngi s dng gia nh v vn phng nh. Sao lu d liu phc v cho di ng v trao i d liu a cng vi qut lm mt c th gip bn trnh c mt mt d liu do qu nng.

- Tng i a nhanh. cng - Dung lng gn lu tr ln. ngoi - H tr sao lu t ng, c th cm nng.

- Kh nng chng Tc 1 shock v chu t 10 USD/GB nhit km. MBps ti 30 MBps - t tin

- D dng khi Dung lng b gii hn Th nh di chuyn USB - Kch thc Flash nh gn

1 MBps (USB 1.1) n 12 MBps (USB 2.0)

Gi 30 USD ti 100 USD/GB

S dng n gin, nn cc tp tin sao lu gip tit kim thm dung lng trng, m bn vn c th gii nn bng Windows Explorer. Hy s dng kt ni bng thng rng v ch lu tr nhng d liu thc s quan trng.

Rt an ton, Sao lu bo mt tt, d liu kh nng sao lu t ng trc n gin, tuyn chia s tp tin n gin.

Gi tng i cao v chm. c bit vi cn phi c kt ni bng thng rng khi s dng dch v ny.

Ph thuc vo tc ca kt ni.

Gi t 2 USD ti 10 USD/ GB/ thng

Hu ch khi sao lu nhng d liu nh v cn thit, sao lu mang tnh cht di ng, chia s cc tp tin.

- Dung lng lu tr ca phng tin Bng t soa lu ny khng t. - C kh nng di chuyn

- a c bng 1 MBps 25 n Thi gian t t v tng n 10 50 cent/ sao lu di. i chm. MBps GB Sao lu d liu hng - Bng t nhy tun cho cm vi in t. nhng vn - Khng c h phng nh. tr tt i vi mt s phn mm sao lu

La chn tt nht khi s dng gii php sao lu ny chng sao lu ton b d liu vo ban m.

c) Chin lc sao lu hiu qu nht Bc 1: Hy cn nhc v la chn sao lu nhng tp tin, d liu quan trng. Bc 2: Chy cc phn mm sao lu, v la chn cc phn vng, cc tp tin th mc cho mc ch sao lu m bn mun bo v. ng qu bn tm vo nhng nhng d liu nh

39

email, s a ch, v lch... Nu khng chc chn, nhng d liu no cn c sao lu, hy m cc ng dng thch hp v tm kim nhng thit lp, la chn trong cc chng trnh . Bc 3: Bo v mt khu v m ho d liu bo v quyn ring t l hon ton cn thit. Hn na, hy a thm nhng m t v bn sao lu , nh "y l bn sao lu ngy 12.1.2006.bak" ...Nhng ch thch nh th ny s gip cho bn d nh hn. Tit kim khng gian lu tr bng cch nn nhng tp tin sao lu cng l gii php hay. Bc 4: S dng cc ng dng kim tra chc nng sao d liu c lm vic mt cch hon ho v chnh xc hay khng l tht s cn thit. iu ny gip bn trnh khi "nhc u" khi s dng bn sao lu b hng v khng th phc hi li c. An ton hn, hy s dng 2 bn sao lu. ( Sao chp t a DVD hoc CD th nht sang a th 2 s nhanh chng v tit kim thi gian hn rt nhiu l s dng tin ch sao lu d liu 2 ln.). Bc 5: Sau khi to mt bn sao lu d liu y (baseline backup), bn c th gim ti a thi gian v dung lng trng cn thit bi cch s dng sao lu khc bit (differential backup). Cch sao lu ny ch ly nhng d liu c thay i k t ln sao lu d liu y . Kiu sao lu d liu tng dn (incremental backup) cho tc nhanh v cn t dung lng a cng hn. Nhng to li cc tp tin t nhng bn sao lu ny cn phi phc hi cc bn sao lu theo ng th t. Cui cng, khng nn ghi ln bn sao lu d liu y (baseline), bn ch nn ghi nhng bn sao lu khc bit (differential) hoc sao lu tng dn (incremental) sau khi to mt bn sao lu d liu y c cha cng mt ni dung d liu. *NTI Shadow 2.0 NTI Shadow 2.0 l mt cng c sao lu d liu hon ho. Shadow l cng c sao lu lin tc: Khng ging nh cc phn mm sao lu truyn thng khc, Shadow cho php sao lu d liu nhanh chng m khng cn phi t lch sao lu hng ngy hoc hng gi. Mi ln bn lu mt tp tin vo a cng, Shadow s to ngay bn sao th 2. Chnh iu ny lm cho tc sao lu ca chng trnh nhanh hn mi cng c sao lu khc. Mc d, c kin cho rng phng php ny gy gim tc h thng, nhng qua th nghim th Shadow khng lm thay i ln ti hiu nng h thng, ng thi chng trnh chy cng kh nhanh. Tuy nhin, dung lng sao lu th ln hn cc cng c khc. Khi Shadow c ci t v cu hnh, bn c th thit lp sao lu theo mun ca mnh. C th yu cu sao lu nhng tp tin, th mc h thng no v lu tr chng vo ni bn mun. Nu my tnh ang s dng c kt ni mng, bn c th lu cc bn sao lu trn a mng. Nu khng, ngi dng c th a tt c d liu ny sang thit b lu tr ngoi nh: cng ngoi, USB... Khi thit lp ch sao lu trn USB, ng dng thng minh pht hin ra cc thit b USB c kt ni vo h thng. Tnh nng thng minh ny c NTI gi l Smart USB Device Detection, ng dng cng s dng sao lu khi c thit b USB khc c kt ni. Bn cng c th lc cc tp tin cn sao lu, cu hnh sao lu nhng kiu, loi ti liu cn thit nh: Word, Excel, pdf.... Shadow cn c tnh nng "c nht v nh", cho php sao lu nhiu bn sa i ca mt ti liu. Chng hn, bn lu (Save) cc chnh sa mt vn bn Word 10 ln, lc bn s c 10 bn sao lu khc nhau ca vn bn ny. Shadow cng a ra nhng cch thc sao lu truyn thng khc. My tnh ca bn cng khng cn "tr trung" na, hiu nng ca my gim ng k vi phng php sao lu mi

Hnh 2.11

40

ca NTI. Tt nhin, Shadow c thit lp sao lu vo nhng lc my ang ngh, t lch sao lu theo pht, gi, hoc theo ngy. 2. Phn mm tin ch v phn mm cng c dng sao lu v phc hi d liu C khng t trng hp, d liu quan trng c th b xa do s "v tnh" ca ngi dng, do virus hoc rt nhiu nguyn nhn khc na. Khi vic phc hi chng s l u tin hng u v i khi d liu l mt th m tin cng khng th mua c. Sau y l mt s tin ch phc hi d liu quan trng * Ultimate Boot CD v2.1 Nu chic PC ca bn tr nn "m yu", th ti sao bn khng s dng mt cng c no "khm" cho n? Trong trng hp ny, Ultimate Boot CD s l mt cng c hu ch, cho php bn chy trnh chun on t a CD, ch khng phi l chic cng "bnh tt" ca mnh. Vi Ultimate Boot CD, bn c th to mt a CD khi ng cho bt c loi cng, chng trnh qun l cng, trnh chun on b nh v a phc hi s c cho HH Linux no. * ISOBuster v1.5 Ngi dng my tnh u bit rng a CD rt hu ch cho cng vic sao lu v phc hi d liu; th nhng v mt s l do no , nhng chic a CD nh th li khng th m c. Vy phi lm th no c th cu vn s d liu sao lu trc . Nu bn tng lm vo hon cnh ny, ISOBuster v1.5 s gip bn phc hi d liu t a CD v DVD. Tin ch s kim tra cc vn vt l pht sinh i vi a CD hoc DVD, bin dch li cc danh sch file c cha li c vt l, v cho php bn c th lu li v chnh sa chng. ISOBuster v1.5 cng c th tm cc file b mt v cho php bn m v chnh sa chng. * VirtualLab Data Recovery Software v3.3.5 i vi ngi thng xuyn s dng my tnh, vic mt mt d liu khng phi l chuyn hi hu m ngc li, rt d xy ra. Nguyn nhn mt mt d liu th c nhiu, nhng tm li ch yu do bn format nhm cng, xa th mc hoc d liu b virus tn cng... Trong trng hp ny, vn ca bn s khng b "bi kch ha" nu bn c trong tay cng c VirtualLab Data Recovery - tin ch hp nht d liu. VirtualLab Data Recovery s kt ni my tnh ca bn ti mt my ch phc hi d liu mnh v s dng chng trnh tr tu nhn to phc hi d liu. Trnh phc hi d liu trn tng thch vi cc nh dng FAT 12, FAT 16, FAT 32, v NTFS. VirtualLab Data Recovery cng c th tm li d liu t a Jaz, Zip v thit b camera s. Ch : Chng trnh ny c cung cp min ph, nhng nu bn dng chng phc hi d liu cho my ch, bn s phi tr tin v mc ph s ph thuc vo s lng d liu cn phc hi. * File Recover Bn s cm thy th no nu xa nhm mt file quan trng trn my tnh? Chc hn l s khng n ri! Tuy nhin, bn cng khng cn phi qu "cung" ln v File Recover c th xc nh c cc file b xa trn cng v cho php bn phc hi chng. Tin ch ny s qut cc cng vt l v logic trong khong thi gian 1 pht v s cho hin th mt danh sch cc file bn xa. Bn cng c th phc hi cc fle xa trong thng rc. File Recover h tr cng IDE/ATA/SCSI v cc loi cng ln hn 8GB, Ch : Tic ch File Recover hin ch c cung cp dng dng th, v bn ch c th phc hi 2 file d liu (rt tic!). Bn cn phi tr tin c c phin bn y ca File Recover. * File Scavenger Tin ch ny c th phc hi d liu b xa nhm hoc cc file nm trong phn vng cng b hng. File Scavenger c th truy c cc file b mt k c trong trng hp cng ca bn hoc cc phn vng cng b hng, lm cho Windows khng th nhn din c. File Scavenger h tr tt c cc loi cng, k c nh dng nn NTFS. *Norton Disk Doctor trong System Works, Scandisk ca Windows 98, Chkdsk trong cc phin bn Windows c th xc nh cc cung t (sector) b hng v chuyn cc d liu ca

41

bn sang cc cung t "kho mnh", ng thi nh du cc cung t b hng, nhm trnh ghi d liu vo cung t . Tuy nhin, cc tin ch ny khng phc hi c nhiu d liu. *EasyRecovery Lite khng ch phc hi cc tp tin b mt, n cng c th phc v sa cha phn no cc tp tin b li nh Word v Zip. EasyRecovery Lite c ch tm kim phc hi d liu dng gc (RawRecovery) cng hng, khi m khng c th mc no tn ti. EasyRecovery Lite cn c tnh nng hp dn hn, chng trnh ny c th phc hi cc tp tin sau khi cng b nh dng li (format). Trong ch ny, EasyRecovery s qut rt chm a cng. Chng trnh ny c th chy t a mm khi ng hoc chy t a CD ci t. Bn EasyRecovery Lite gii hn phc hi 25 tp tin trong mi phin lm vic. Nu bn cn ly li nhiu hn 25 tp tin hoc h tr nhiu kiu tp tin. Hnh 2.12

Cu hi v bi tp:
1- Cu trc ca th mc v tp tin trn my n c t chc nh th no? 2- Trnh by cch thc lu tr d liu qua bng FAT. 3- Thc hin qui trnh nh dng a cng, a mm, a Flash 4- Ci t v s dng phn mm tin ch v phn mm cng c dng sao lu v phc hi d liu : Ultimate Boot CD v2.1, ISOBuster v1.5, VirtualLab Data Recovery Software v3.3.5, File Recover, Norton Disk Doctor, EasyRecovery Lite

42

BI 3 Tn bi : VIRUS TIN HC V CC PHNG CHNG M bi : ITPRG03-19.3 Gii thiu : Bi hc cung cp cc kin thc v tnh nng ca Virus tin hc, cch hot ng
ca virus v s dng mt s phn mm dit virus. Virus my tnh l mt chng trnh phn mm v chng trnh ny c thit k c th ly lan ra cc file chng trnh hoc cc khu vc h thng ca a cng hay a mm, c im c trng ca chng l kh nng t nhn bn.Virus lun lun c th t nh lm mi vic m khng cn c s cho php ca ngi s dng, nhng tt nhin l ln u tin phi c mt thao tc no ca ngi s dng kch hot n ln (do khng bit l virus).

Mc tiu thc hin: Hiu c cc tnh nng ca Virus tin hc, cch hot ng ca virus v s dng mt s phn mm dit virus .

Ni dung chnh:
3.1 Gii thiu v cc loi Virus tin hc . Virus my tnh l g? Thut ng ny ch mt chng trnh my tnh c th t sao chp chnh n ln nhng a, file khc m ngoi s dng khng hay bit. Thng thng virus my tnh mang tnh cht ph hoi, n s gy ra li thi hnh, lch lc hay hy d liu. Chng c cc tnh cht: Kch thc nh Tnh lay lan: cc chng trnh ny c tnh cht lay lan t chng trnh sang chng trnh khc, t a ny sang a khc v do lay t my ny sang my khc Tnh ph hoi: i khi ch l nhng cu tru a, hay nguy him hn chng s tiu dit v ph hy cc chng trnh v d liu. Tn Virus Tn cc loi virus l do nhng nh pht trin phn mm dit virus t, n c th da theo c dim k thut ca virus, cc ni dung lin quan n virus hoc da theo c im ph hoi, thi im ly nhim... Tm li l mi phn mm dit virus c th t tn virus theo cch ca ring mnh. Nh vy, cng mt virus c th c nhiu tn khc nhau. V d : Vi loi virus Bkav gi l W32.Magistr.B th chng trnh Norton AntiVirus li gi l W32.Magistr.Corrupt. Khi nhc n tn ca virus th bn cn phi cung cp thm thng tin l ci tn do phn mm dit virus no t. Ngy nay th bn thng thy tn cc virus c ch W32 u, iu c ngha l virus ny ly lan trn h iu hnh Windows 32bit. Thc ra iu ny hin nay rt t ngha, n ch c ngha khi m vi nm trc y mi ngi cn s dng h iu hnh Windows 16bit, cn cc h iu hnh Windows ph bin hin nay u l Windows 32bit cho nn cc virus hin nhin s l loi ly trn Windows 32bit v c tn l W32.xxx T t nhin vic t tn ny l khng bt buc m do cc hng pht trin phn mm dit virus ngm quy c vi nhau. Kch thc Virus my tnh vo nhng nm 90 thng ly vo cc file chng trnh v lm cho cc file ny b tng kch thc ln. Ngi s dng pht hin ra my ca mnh nhim virus khi thy mt s file b tng kch thc ln mt lng c nh no . Chnh v vy, thng tin v kch thc ca virus c th gip h nhn ra c loi virus ang ly trn my ca mnh. Tuy nhin ngy nay cc loi virus thin bin vn ho rt nhiu v nh vy thng tin v kch thc ca chng gn nh khng cn ngha.

43

Loi file Cng ging nh trn, ngy nay virus ly lan vi bt k loi file no, v vy thng tin v loi file cng khng cn quan trng nh trc y, v c l bn cng khng cn phi quan tm nhiu n thng tin ny. Tuy nhin c mt s loi virus bn s thy thng tin trong mc ny ghi l Worm, Trojan hay Spyware, Adware. iu ny ni rng loi virus l su my tnh (Worm) hay phn mm gin ip (Trojan, Spyware, Adware). Worm: Loi virus ly t my tnh ny sang my tnh khc qua mng, khc vi loi virus truyn thng trc y ch ly trong ni b mt my tnh v n ch ly sang my khc khi ai em chng trnh nhim virus sang my ny. Trojan, Spyware, Adware: L nhng phn mm c gi l phn mm gin ip, chng khng ly lan nh virus. Thng bng cch no (la o ngi s dng thng qua mt trang web, hoc mt ngi c tnh gi n cho ngi khc) ci t v nm vng ti my ca nn nhn, t chng gi cc thng tin ly c ra bn ngoi hoc hin ln cc qung co ngoi mun ca nn nhn. 3.2 Cc tnh nng ca Virus tin hc Thng thng, da vo i tng ly lan l file hay a m virus c chia thnh hai nhm chnh - B-virus: Virus ch tn cng ln Master Boot hay Boot Sector. - F-virus: Virus ch tn cng ln cc file thc thi ( *.com, *.exe ) Mc d vy, cch phn chia ny cng khng hn l chnh xc. Ngoi l vn c cc virus va tn cng ln Master Boot (Boot Sector) va tn cng ln file kh thi. c mt cch nhn tng quan v virus, chng ta xem chng dnh quyn iu khin nh th no. a.B-virus. Khi my tnh bt u khi ng (Power on), cc thanh ghi phn on u c t v 0FFFFh, cn mi thanh ghi khc u c t v 0. Nh vy, quyn iu khin ban u c trao cho on m ti 0FFFFh: 0h, on m ny thc ra ch l lnh nhy JMP FAR n mt on chng trnh trong ROM, on chng trnh ny thc hin qu trnh POST (Power On Self Test - T kim tra khi khi ng). Qu trnh POST s ln lt kim tra cc thanh ghi, kim tra b nh, khi to cc Chip iu khin DMA, b iu khin ngt, b iu khin a... Sau n s d tm cc Card thit b gn thm trao quyn iu khin cho chng t khi to ri ly li quyn iu khin. Ch rng y l on chng trnh trong ROM (Read Only Memory) nn khng th sa i, cng nh khng th chn thm mt on m no khc. Sau qu trnh POST, on chng trnh trong ROM tin hnh c Boot Sector trn a A hoc Master Boot trn a cng vo RAM (Random Acess Memory) ti a ch 0:7C00h v trao quyn iu khin cho on m bng lnh JMP FAR 0:7C00h. y l ch m B-virus li dng tn cng vo Boot Sector (Master Boot), ngha l n s thay Boot Sector (Master Boot) chun bng on m virus, v th quyn iu khin c trao cho virus, n s tin hnh cc hot ng ca mnh trc, ri sau mi tin hnh cc thao tc nh thng thng: c Boot Sector (Master Boot) chun m n ct giu u vo 0:7C00h ri trao quyn iu khin cho on m chun ny, v ngi s dng c cm gic rng my tnh ca mnh vn hot ng bnh thng. b.F-virus. Khi DOS t chc thi hnh File kh thi (bng chc nng 4Bh ca ngt 21h), n s t chc li vng nh, ti File cn thi hnh v trao quyn iu khin cho File . F-virus li dng im ny bng cch gn on m ca mnh vo file ng ti v tr m DOS trao quyn iu khin cho File sau khi ti vo vng nh. Sau khi F-virus tin hnh xong cc hot ng ca mnh, n mi sp xp, b tr tr li quyn iu khin cho File cho File li tin hnh hot ng bnh thng, v ngi s dng th khng th bit c. Trong cc loi B-virus v F-virus, c mt s loi sau khi dnh c quyn iu khin, s tin hnh ci t mt on m ca mnh trong vng nh RAM nh mt chng trnh thng tr

44

(TSR), hoc trong vng nh nm ngoi tm kim sot ca DOS, nhm mc ch kim sot cc ngt quan trng nh ngt 21h, ngt 13h,... Mi khi cc ngt ny c gi, virus s dnh quyn iu khin tin hnh cc hot ng ca mnh trc khi tr li cc ngt chun ca DOS. 3.3 Cc hnh thc tn ti v ly lan Cc c im ca B-VIRUS. Qua phn trc, chng ta a ra cc thng tin ht sc c bn v cu trc a, tin trnh khi ng v cch thc t chc vng nh, t chc thi hnh file ca DOS. Nhng thng tin gip chng ta tm hiu nhng c im c bn ca virus, t a ra cch phng chng, cha tr trong trng hp my b nhim virus.

I. Phn loi B-virus.

Nh chng ta bit, sau qu trnh POST, sector u tin trn a A hoc a C c c vo vng nh ti 0: 7C00, v quyn iu khin c trao cho on m trong sector khi ng ny. B-virus hot ng bng cch thay th on m chun trong sector khi ng ny bng on m ca n chim quyn iu khin, sau khi ci t xong mi c sector khi ng chun c virus ct gi u vo 0:7C00 v tr li quyn iu khin cho on m chun ny. Vic ct gi sector khi ng ti v tr no trn a tu thuc loi a v cch gii quyt ca tng loi virus. i vi a cng, thng thng n c ct gi u trong Side 0, Cylinder 0 v trong c track ny, DOS ch s dng sector u tin cho bng Partition. Trn a mm, v tr ct gi s phc tp hn v mi ch u c kh nng b ghi thng tin. Mt s hng sau y c cc virus p dng: S dng sector cui Root Directory, v n thng t c s dng. S dng cc sector cui cng trn a, v khi phn b vng trng cho file, DOS tm vng trng t nh n ln cho nn vng ny thng t c s dng. Ghi vo vng trng trn a, nh du trong bng FAT vng ny l vng b hng DOS khng s dng cp pht na. Cch lm ny an ton hn cc cch lm trn y. Format thm track v ghi vo track va c Format thm. Ty thuc vo ln ca on m virus m B-virus c chia thnh hai loi: a. SB-virus. Chng trnh ca SB-virus ch chim ng mt sector khi ng, cc tc v ca SB-virus khng nhiu v tng i n gin. Hin nay s cc virus loi ny thng t gp v c l ch l cc virus do trong nc "sn xut". b. DB-virus. y l nhng loi virus m on m ca n ln hn 512 byte (thng thy). V th m chng trnh virus c chia thnh hai phn: - Phn u virus: c ci t trong sector khi ng chim quyn iu hin khi quyn iu khin c trao cho sector khi ng ny. Nhim v duy nht ca phn u l: ti tip phn thn ca virus vo vng nh v trao quyn iu khin cho phn thn . V nhim v n gin nh vy nn phn u ca virus thng rt ngn, v cng ngn cng tt v cng ngn th s khc bit gia sector khi ng chun v sector khi ng b nhim virus cng t, gim kh nng b nghi ng. - Phn thn virus: L phn chng trnh chnh ca virus. Sau khi c phn u ti vo vng nh v trao quyn, phn thn ny s tin hnh cc tc v ca mnh, sau khi tin hnh xong mi c sector khi ng chun vo vng nh v trao quyn cho n my tnh lm vic mt cch bnh thng nh cha c g xy ra c.

II. Mt s k thut c bn ca B-virus.

D l SB-virus hay DB-virus, nhng tn ti v ly lan, chng u c mt s cc k thut c bn nh sau: a. K thut kim tra tnh duy nht. Virus phi tn ti trong b nh cng nh trn a, song s tn ti qu nhiu bn sao ca

45

chnh n trn a v trong b nh s ch lm chm qu trnh Boot my, cng nh chim qu nhiu vng nh nh hng ti vic ti v thi hnh cc chng trnh khc ng thi cng lm gim tc truy xut a. Chnh v th, k thut ny l mt yu cu nghim ngt vi Bvirus. Vic kim tra trn a c hai yu t nh hng: Th nht l thi gian kim tra: Nu mi tc v c/ghi a u phi kim tra a th thi gian truy xut s b tng gp i, lm gim tc truy xut cng nh gia tng mi nghi ng. i vi yu cu ny, cc virus p dng mt s k thut sau: Gim s ln kim tra bng cch ch kim tra trong trng hp thay i truy xut t a ny sang a khc, ch kim tra trong trng hp bng FAT trn a c c vo. Th hai l k thut kim tra: Hu ht cc virus u kim tra bng gi tr t kho. Mi virus s to cho mnh mt gi tr c bit ti mt v tr xc nh trn a, vic kim tra c tin hnh bng cch c Boot record v kim tra gi tr ca t kho ny. K thut ny gp tr ngi v s lng B-virus ngy mt ng o, m v tr trn Boot Record th c hn. Cch khc phc hin nay ca cc virus l tng s lng m lnh cn so snh lm gim kh nng trng hp ngu nhin. kim tra s tn ti ca mnh trong b nh, cc virus p dng cc k thut sau: n gin nht l kim tra gi tr Key value ti mt v tr xc nh trn vng nh cao, ngoi ra mt k thut khc c p dng i vi cc virus chim ngt Int 21 ca DOS l yu cu thc hin mt chc nng c bit khng c trong ngt ny. Nu c bo li c bt ln th trong b nh cha c virus, ngc li nu virus lu tr trong vng nh th gi tr tr li (trong thanh ghi AX chng hn) l mt gi tr xc nh no . b. K thut lu tr. Sau khi thc hin xong chng trnh POST, gi tr tng s vng nh va c Test s c lu vo vng BIOS Data a ch 0:413h. Khi h iu hnh nhn quyn iu khin, n s coi vng nh m n kim sot l gi tr trong a ch ny. V vy lu tr, mi B-virus u p dng k thut sau y: Sau khi ti phn lu tr ca mnh ln vng nh cao, n s gim gi tr vng nh do DOS qun l ti 0:413h i mt lng ng bng kch thc ca virus. Tuy nhin nu khng kim tra tt s c mt trong vng nh, khi b Boot mm lin tc, gi tr tng s vng nh ny s b gim nhiu ln, nh hng ti vic thc hin ca cc chng trnh sau ny. Chnh v th, cc virus c thit k tt phi kim tra s tn ti ca mnh trong b nh, nu c mt trong b nh th khng gim dung lng vng nh na. c. K thut ly lan. on m thc hin nhim v ly lan l on m quan trng trong chng trnh virus. m bo vic ly lan, virus khng ch ngt quan trng nht trong vic c/ghi vng h thng: l ngt 13h, tuy nhin m bo tc truy xut a, ch cc chc nng 2 v 3 (c/ghi) l dn ti vic ly lan. Vic ly lan bng cch c Boot Sector (Master Boot) ln v kim tra xem b ly cha (k thut kim tra ni trn). Nu sector khi ng cha b nhim th virus s to mt sector khi ng mi vi cc tham s tng ng ca on m virus ri ghi tr li vo v tr ca n trn a. Cn sector khi ng va c ln cng vi thn ca virus (loi DB-virus) s c ghi vo vng xc nh trn a. Ngoi ra mt s virus cn chim ngt 21 ca DOS ly nhim v ph hoi trn cc file m ngt 21 lm vic. Vic xy dng sector khi ng c on m ca virus phi m bo cc k thut sau y: - Sector khi ng b nhim phi cn cha cc tham s a phc v cho qu trnh truy xut a, l bng tham s BPB ca Boot record hay bng phn chng trong trng hp Master boot. Vic khng bo ton s dn n vic virus mt quyn iu khin hoc khng th kim sot c a nu virus khng c mt trong mi trng. - S an ton ca sector khi ng nguyn th v on thn ca virus cng phi c t ln hng u. Cc k thut v v tr ct giu chng ta cng phn tch cc phn trn. d. K thut ngy trang v gy nhiu. K thut ny ra i kh mun v sau ny, do khuynh hng chng li s pht hin ca ngi s dng v nhng lp trnh vin i vi virus. V kch thc ca virus kh nh b cho nn cc lp trnh vin hon ton c th d tng bc xem c ch ca virus hot ng nh th no, cho nn cc virus tm mi cch lt lo chng li s theo di ca cc lp trnh 46

vin. Cc virus thng p dng mt s k thut sau y: - C tnh vit cc lnh mt cch rc ri nh t Stack vo cc vng nh nguy him, chim v xo cc ngt, thay i mt cch lt lo cc thanh ghi phn on ngi d khng bit d liu ly t u, thay i cc gi tr ca cc lnh pha sau ngi s dng kh theo di. - M ho ngay chnh chng trnh ca mnh ngi s dng khng pht hin ra quy lut, cng nh khng thy mt cch r rng ngay s hot ng ca virus. - Ngy trang: Cch th nht l on m ci vo sector khi ng cng ngn cng tt v cng ging sector khi ng cng tt. Tuy vy cch th hai vn c nhiu virus p dng: Khi my ang nm trong quyn chi phi ca virus, mi yu cu c/ghi Boot sector (Master boot) u c virus tr v mt bn chun: bn trc khi b virus ly. iu ny nh la ngi s dng v cc chng trnh chng virus khng c thit k tt nu my hin ang chu s chi phi ca virus. e. K thut ph hoi. l virus th bao gi cng c tnh ph hoi. C th ph hoi mc a cho vui, cng c th l ph hoi mc nghim trng, gy mt mt v nh tr i vi thng tin trn a. Cn c vo thi im ph hoi, c th chia ra thnh hai loi: - Loi nh thi: Loi ny lu gi mt gi tr, gi tr ny c th l ngy gi, s ln ly nhim, s gi my chy, ... Nu gi tr ny vt qu mt con s cho php, n s tin hnh ph hoi. Loi ny thng nguy him v chng ch ph hoi mt ln. - Loi lin tc: Sau khi b ly nhim v lin tc, virus tin hnh ph hoi, song do tnh lin tc ny, cc hot ng ph hoi ca n khng mang tnh nghim trng, ch yu l a cho vui.

III. Cc c im ca F-VIRUS
So vi B-virus th s lng F-virus ng o hn nhiu, c l do cc tc v a vi s h tr ca Int 21 tr nn cc k d dng v thoi mi, l iu kin pht trin cho cc F-virus. Thng th cc F-virus ch ly lan trn cc file kh thi (c ui .COM hoc .EXE), tuy nhin mt nguyn tc m virus phi tun th l: Khi thi hnh mt file kh thi b ly nhim, quyn iu khin phi nm trong tay virus trc khi virus tr n li cho file b nhim, v khi file nhn li quyn iu khin, tt c mi d liu ca file phi c bo ton. i vi F-virus, c mt s k thut c nu ra y: 1. K thut ly lan: Cc F-virus ch yu s dng hai k thut: Thm vo u v thm vo cui a. Thm vo u file. Thng thng, phng php ny ch p dng cho cc file .COM, tc l u vo ca chng trnh lun lun ti PSP:100h. Li dng u vo c nh, virus chn on m ca chng trnh virus vo u chng trnh i tng, y ton b chng trnh i tng xung pha di. Cch ny c mt nhc im l do u vo c nh ca chng trnh .COM l PSP:100, cho nn trc khi tr li quyn iu khin cho chng trnh, phi y li ton b chng trnh ln bt u t offset 100h. Cch ly ny gy kh khn cho nhng ngi khi phc v phi c ton b file vo vng nh ri mi tin hnh ghi li. b. Thm vo cui file. Khc vi cch ly lan trn, trong phng php ny, on m ca virus s c gn vo sau ca chng trnh i tng. Phng php ny c thy trn hu ht cc loi virus v phm vi ly lan ca n rng ri hn phng php trn. Do thn ca virus khng nm ng u vo ca chng trnh, cho nn chim quyn iu khin, phi thc hin k thut sau y: - i vi file .COM: Thay cc byte u tin ca chng trnh (u vo) bng mt lnh nhy JMP, chuyn iu khin n on m ca virus. E9 xx xx JMP Entry virus. - i vi file .EXE: Ch cn nh v li h thng cc thanh ghi SS, SP, CS, IP trong Exe Header trao quyn iu khin cho phn m virus. Ngoi hai k thut ly lan ch yu trn, c mt s t cc virus s dng mt s cc k thut

47

c bit khc nh m ho phn m ca chng trnh virus trc khi ghp chng vo file ngy trang, hoc thm ch thay th mt s on m ngn trong file i tng bng cc on m ca virus, gy kh khn cho qu trnh khi phc. Khi tin hnh ly lan trn file, i vi cc file c t cc thuc tnh Sys (h thng), Read Only (ch c), Hidden (n), phi tin hnh i li cc thuc tnh c th truy nhp, ngoi ra vic truy nhp cng thay i li ngy gi cp nht ca file, v th hu ht cc virus u lu li thuc tnh, ngy gi cp nht ca file sau khi ly nhim s tr li y nguyn thuc tnh v ngy gi cp nht ban u ca n. Ngoi ra, vic c gng ghi ln a mm c dn nhn bo v cng to ra dng thng bo li ca DOS: Retry - Abort - Ignore, nu khng x l tt th d b ngi s dng pht hin ra s c mt ca virus. Li kiu ny c DOS kim sot bng ngt 24h, cho nn cc virus mun trnh cc thng bo kiu ny ca DOS khi tin hnh ly lan phi thay ngt 24h ca DOS trc khi tin hnh ly lan ri sau hon tr. 2. K thut m bo tnh tn ti duy nht. Cng ging nh B-virus, mt yu cu nghim ngt t ra i vi F-virus l tnh tn ti duy nht ca mnh trong b nh cng nh trn file. Trong vng nh, thng thng cc F-virus s dng hai k thut chnh: Th nht l to thm chc nng cho DOS, bng cch s dng mt chc nng con no trong t chc nng ln hn chc nng cao nht m DOS c. kim tra ch cn gi chc nng ny, gi tr tr li trong thanh ghi quyt nh s tn ti ca virus trong b nh hay cha. Cch th hai l so snh mt on m trong vng nh n nh vi on m ca virus, nu c s chnh lch th c ngha l virus cha c mt trong vng nh v s tin hnh ly lan. Trn file, c th c cc cch kim tra nh kim tra bng test logic no vi cc thng tin ca Entry trong th mc ca file ny. Cch ny khng m bo tnh chnh xc tuyt i song nu thit k tt th kh nng trng lp cng hn ch, hu nh khng c, ngoi ra mt u im l tc thc hin kim tra rt nhanh. Ngoi ra c th kim tra bng cch d mt on m c trng (key value) ca virus ti v tr n nh no trn file, v d trn cc byte cui cng ca file. 3. K thut thng tr y l mt k thut kh khn, l do l DOS ch cung cp chc nng thng tr cho chng trnh, ngha l ch cho php c chng trnh thng tr. V vy nu s dng chc nng ca DOS, chng trnh virus mun thng tr th c file i tng cng phi thng tr, m iu ny th khng th c nu kch thc ca file i tng qu ln. Chnh v l do trn, hu ht cc chng trnh virus mun thng tr u phi thao tc qua mt DOS trn chui MCB bng phng php "th cng". Cn c vo vic thng tr c thc hin trc hay sau khi chng trnh i tng thi hnh, c th chia k thut thng tr thnh hai nhm: a. Thng tr trc khi tr quyn iu khin. Nh ni trn, DOS khng cung cp mt chc nng no cho kiu thng tr ny, cho nn chng trnh virus phi t thu xp. Cc cch sau y c virus dng n: - Thao tc trn MCB tch mt khi vng nh ra khi quyn iu khin ca DOS, ri dng vng ny cha chng trnh virus. - T nh v v tr trong b nh ti phn thng tr ca virus vo, thng th cc virus chn vng nh cao, pha di phn tm tr ca file command.com trnh b ghi khi h thng ti li command.com. V khng cp pht b nh cho phn chng trnh virus ang thng tr, cho nn command.com hon ton c quyn cp pht vng nh cho cc chng trnh khc, ngha l chng trnh thng tr ca virus phi chp nhn s mt mt do may ri. - Thng tr bng chc nng thng tr 31h: y l mt k thut phc tp, tin trnh cn thc hin c m t nh sau: Khi chng trnh virus c trao quyn, n s to ra mt MCB c khai bo l phn t trung gian trong chui MCB cha chng trnh virus, sau li to tip mt MCB mi cho chng trnh b nhim bng cch di chng trnh xung vng mi ny. thay i PSP m DOS ang lu gi thnh PSP m chng trnh virus to ra cho chng trnh i tng, phi s dng chc nng 50h ca ngt 21h. 48

b. Thng tr sau khi ot li quyn iu khin. Chng trnh virus ly tn chng trnh ang thi hnh trong mi trng ca DOS, ri n thi hnh ngay chnh bn thn mnh. Sau khi thi hnh xong, quyn iu khin li c tr v cho virus, v khi n mi tin hnh thng tr mt cch bnh thng bng chc nng 31h ca ngt 21h. 4. K thut ngy trang v gy nhiu Mt nhc im khng trnh khi l file i tng b ly nhim virus s b tng kch thc. Mt s virus ngy trang bng cch khi s dng chc nng DIR ca DOS, virus chi phi chc nng tm kim file (chc nng 11h v 12h ca ngt 21h) gim kch thc ca file b ly nhim xung, v th khi virus ang chi phi my tnh, nu s dng lnh DIR ca DOS, hoc cc lnh s dng chc nng tm kim file trn c thng tin v entry trong bng th mc, th thy kch thc file b ly nhim vn bng kch thc ca file ban u, iu ny nh la ngi s dng v s trong sch ca file ny. Mt s virus cn gy nhiu bng cch m ho phn ln chng trnh virus, ch khi no vo vng nh, chng trnh mi c gii m ngc li. Mt s virus anti-debug bng cch chim ngt 1 v ngt 3. Bi v cc chng trnh debug thc cht phi dng ngt 1 v ngt 3 thi hnh tng bc mt, cho nn khi virus chim cc ngt ny ri m ngi lp trnh dng debug theo di virus th kt qu khng lng trc c. 5. K thut ph hoi Thng thng, cc F-virus cng s dng cch thc v k thut ph hoi ging nh B-virus. C th ph hoi mt cch nh thi, lin tc hoc ngu nhin. i tng ph hoi c th l mn hnh, loa, a cng,... Trong thi gian u , khi s lng v chng loi virus cn t , ngi ta c th d dng phn virus ra lm 2 loi l Boot virus v File virus . Lc chia nh vy cng l hp l . Sau ny , s lng virus tng rt nhanh ( trung bnh hng thng cthm t 400-500 loi virus mi hay variants mi xut hin ). Hin ti s virus sp x 100.000 loi . Nhiu loi virus c cu to tnh nng mi , c o nh Codered ,Codered II , Bugbear B , Slammer ,Sobig ... vv . Gn y l Slammer-like virus - Mt loi virus ging Slammer nhng c chn bn trong 1 exploit code , chuyn thm nhp vo cc webserver IIS-4,5 ,6 . V vy cch chia nh trn ( ch chia ra B-virus v F-virus ) tr thnh li thi . Gn y cc cng ty Anti-virus phn loi virus li . Thay v ch l 2 loi nh trc y , virus c phn ra n 16, 17 ... 20 loi . M Cng ty c 1 cch phn loi khc nhau . Cch no cng c iu hay im d v hu nh mi cch phn chia u khng bao qat c mi loi virus vi cc tnh nng v cng phong ph v c o . Ngoi ra "ranh gii " gia Trojan v virus trong thc t cng khng cn phn bit r rng . V xut hin mt s loi m c c coi nh l s kt hp gia TRojan v virus . Virus Trojan Bugbear B l mt th d in hnh . Di y ti gii thiu1cch phn loi virus - Trojan ca mt Cng ty Antivirus ni ting tham kho : 1. File Viruses, DOS 2. Boot Viruses 3. Multipartite (File and Boot) Viruses 4. Multi-Platform Viruses 5. NewExe Viruses 6. Macro Viruses (Word, Excel, Access, PowerPoint, Amipro and Visio) 7. Virus Constructors 8. Windows HLP Viruses 9. Java Viruses 10. Polymorphic Generators and Generator-based Viruses 11. Trojan horses 12. Script Viruses 13. Internet Worms 14. Virus Hoaxes and Non-Viruses 15. Palm

49

16. Malware 17. Jokes 3.4 Mt s cc nhn bit c Virus tn ti trn my tnh - Mt s tp c ui COM v EXE t nhin b tng thm s byte, khi ta ngh my nhim Fvirus. bit iu ta nh kch thc ca mt s tp quan trng: command.com 54645 byte (ca DOS6.22), foxpro.exe 411032 byte (forpro 2.6) - Tp chng trnh ui COM hoc EXE khng chy hoc sai. - My khng khi ng c t a cng hoc khng nhn bit c cng khi khi ng my t a mm, khi ta nghi my b nhim B-virus. - My chy b treo. Tt nhin cc triu chng trn cng c th l do li phn cng 3.5 Cc bin php phng chng v tiu dit Virus. I. Khi my b nhim VIRUS chng ta tin hnh cc bc sau: 1. Tt hon ton my tnh loi virus ra khi b nh trong. Khi ng li my bng a mm h thng t A. 2. Sau khi thc hin xong bc mt my nhn bit c C th thc hin bc 3. Nu my khng nhn c C th thc hin bc 4: 3. Chy cc chng trnh kim tra v dit virus. Sau khi kt thc qu trnh trn th khi ng li my t cng v lm vic bnh thng. 4. Chy chng trnh kim tra v sa a nu nh cn gi li thng tin trn a cng (NDD.EXE). Sau khi sao lu d liu nn lm theo cc bc sau: a. Chy FDISK.EXE khi to li bng Partition (FAT) cho cng. b. Chy FORMAT.COM C: /S nh dng li a. c. Ci li h iu hnh v ng dng cn thit. d. Sao d liu li a v lm vic bnh thng. Nu nh trn a khng cn sao lu d liu li th c th chy ngay FDISK.EXE m khng cn chy qua NDD.EXE.

II. Phng chng virus tin hc:

1. Chng trnh chng v dit cc loi Virus (Antivirus) Virus y c th hiu l tt c cc chng trnh lm hi n my tnh, xm nhp vo my tnh mt cch bt hp php. Khi my b nhim th thng c triu chng chy chm hoc mt s chng trnh hot ng bt thng. Chng trnh chng virus s qut qua tng tp tin tm virus v tiu dit n. Nu khng tiu dit c n s xo hoc c lp tp tin b nhim gi an ton cho my tnh. Mt s phn mm chng virus kh quen thuc nh Norton Antivirus, AVG Free... u l nhng chng trnh chng virus c s dng kh ph bin ti Vit Nam. Ngoi ra, i vi mt s virus ni a (c ngun gc trong nc) th Bkav v D32 i khi li l s la chn hu hiu. Virus ni a nhiu khi khng ly lan ra nc ngoi, v th cc chng trnh ca nc ngoi tr nn v hiu. Bn c th tm c thm v cc chng trnh dit virus bit thm v chc nng cng cng dng hu c s so snh, nhng tht ra cng khng cn thit v nhng chng trnh chng ti lit k ra l nhng chng trnh c c th nghim lu di, t hiu qu, tnh tng thch v thn thin cao. V vic s dng tng chng trnh c th th tu chung, mi chng trnh chng virus gm cc chc nng nh qut tp tin (scan) tm virus. Tu mi chng trnh s c tng la

50

chn cho qut ht ton a, qut tng th mc hay tng tp tin c th, qut CD ROM, a USB... Chc nng th hai l chc nng ln danh sch v nh k qut my (schedule) cng nh t ng nh k cp nht (updated) danh sch nhng virus mi sinh ra. V chc nng Virus Shield, Virus Protection, t ng qut trc tip tt c nhng tp tin vo ra my tnh. Chnh chc nng ny s lm my bn tiu tn khng t ti nguyn v lm my chm i thy r. Nu my bn khng kt ni Internet, th nn tt chc nng ny my hot ng nhanh hn, nhng phi rt cn thn khi a a mm, a CD, USB vo my. Ngoi ra, rt nhiu chng trnh dit virus thng xuyn theo di tnh trng ca my tnh, ghi nhn nhng hot ng tht thng b nghi l virus nh l thay i mt mc nh cu hnh, nghi thng tin vo a cng mt cch bt hp php v thng bo bn bit. Bn cn thn c tt c cc bn thng bo bit rng, my tnh ang lm g. 2. Chng trnh tng la (firewall) Chng trnh tng la c dng nhiu khi bn kt ni Internet, vi mc ch kim duyt tt c cc kt ni t my tnh ca bn ln Internet v ngc li. Rt nhiu chng trnh c hi xm nhp my tnh ngay khi bn truy xut vo mt s website, nh Keygen.us chng hn. Nu bn khng dng Internet, th c th tt chng trnh tng la, v n ch hu dng khi bn online. C rt nhiu chng trnh tng la, nhng thng cc b phn mm chng virus km theo cc chng trnh tng la i km nhm m bo tnh tng thch. Hoc bn c th dng ngay tng la ca Windows, tuy nhin vi chc nng kh hn ch. Ngay khi c bt k chng trnh no thit lp mt kt ni ln Internet, tng la s ngay lp tc thng bo cho bn bit. Bn ch cn xc nhn, c cho php kt ni ny c thit lp hay khng m thi. Thng mt chng trnh s c kt ni hai chiu trao i d liu nn tng la s yu cu bn xc nhn hai ln. S rt phin phc nu ln no bn cng phi xc nhn. V th bn c th yu cu tng la ghi nh nhng chng trnh, lun cho php kt ni, v d Yahoo Messenger, cc chng trnh t ng cp nht phn mm, cc game online. Cc dch v thng khng ci tng la vo my, tr khi c yu cu, v s dng chng trnh ny i hi phi c mt s kin thc chuyn mn. Nu my bn c ci, bn cng ch cn lu l xc nhn tng kt ni ln Internet. Nu thy qu phin phc th cng c th g b. 3. Chng trnh chng Spam (Antispam) Chng trnh ny duyt th in t chn th rc cng nh cc th c cha virus Thun tu ch hot ng vi email, c bit hu dng khi bn c s dng cc chng trnh Mail Client, v d Outlook, Pegasus... Mi khi duyt th, chng trnh chng Spam s t ng qut th in t tm virus, Spyware, Adware. Chnh v th, nu bn dng chng trnh ny th hnh nh tc ly th ca bn c v chm i. Nhng b li kh an ton. Nu bn khng dng nhng chng trnh Mail Client, ch duyt th in t bng cch ng nhp vo website ca yahoo, gmail... th c th khng cn ci chng trnh chng Spam cng c. Nh vy c th thy, mt my tnh nu gi l phng th tuyt i khi bn qun l v s dng c 3 chng trnh trn. Mt iu v cng quan trng, Virus sinh ra hng ngy, chnh v th phi thng xuyn cp nht (update). C th cp nht trc tip t Internet, hoc truy xut vo website ca chng trnh cp nht. Cu hi v bi tp:
1. 2. 3. Virus my tnh l g? Trnh by cch thc tn ti v ly lang ca virus my tnh Trnh by mt s cc nhn bit c Virus tn ti trn my tnh. Nu cc bin php phng chng v tiu dit Virus.

51

Ci t, cu hnh v s dng cc chng trnh chng v dit cc loi Virus: Norton Antivirus, Symantec AntiVirus, Spybot - Search & Destroy Tm hiu cc trang web chng v dit cc loi Virus nh: http://www.bkav.com.vn, http://www.bitdefender.com 4.

52

BI 4 Tn bi : MT S BIN PHP AN TON CHO CC H THNG MY TNH M bi : ITPRG3-19.4 Gii thiu :

Vic bo mt tuyt i cho cc h thng my tnh, hay mt th mc hoc mt tp l mt nhu cu bc thit ca nhiu ngi dng my tnh, c bit vi nhng ngi dng chung mt my tnh. Mc d trong h iu hnh DOS, trong h iu hnh Windows v c bit l trong h iu hnh mng c nhng th tc ci t mt khu, ci t thuc tnh n (H), thuc tnh ch c (R) vv... Nhng ch l nhng bo mt cc b v mc bo mt khng cao. Cc th mc hoc cc tp bo mt c ch ny nhng khng bo mt c ch khc. C cc th mc v tp c Windows bo v chng xo nhng li xo c d dng trong DOS... Vy c cch no bo mt c th mc mt cch tuyt i khng ? C. Bn phi t lm ly v cha c mt chng trnh no gip bn lm iu ny. Phng n bo mt tuyt i mt th mc m chng ti la chn v dng rt c hiu qu l nh lc hng a ch lu tr ca th mc trn a, lm c lp cc cluster m th mc chim gi, do khng th can thip c vo th mc ny bng bt k cch no. Vy lm th no nh lc hng a ch lu tr tht ca th mc ?.

Mc tiu thc hin:

Hc xong bi ny hc vin s c kh nng

Bo v c h thng thng tin trn cc my n Bo v c h thng thng tin trn cc my tnh ni mng.

Ni dung chnh:
A. Mt s bin php bo v thng tin trn my n : lm c iu ny bn cn bit rng FAT l mt bng nh v file (File Allocation Table). Bng ny gm nhiu phn t. a c bao nhiu cluster th FAT cng c by nhiu phn t (Cluster l mt lin cung gm nhiu sector nhm li). Phn t th n ca FAT tng ng vi cluster th n trn a. Mt file chim bao nhiu cluster trn a th mc FAT ca n cng c by nhiu phn t. Phn t FAT ny cha s th t ca mt phn t FAT khc. Phn t cha FF FF l m kt thc file <EOF>. Nh vy mt mc FAT ca mt File s cha s th t ca cc cluster m file chim gi. mc FAT ca mt th mc ch c mt phn t cha m <EOF>. S th t ca phn t ny ng vi s th t ca cluster cha mc ca cc th mc con v ca cc tp c trong th mc . Mi phn t FAT chim 2 bytes vi FAT 16 bit v chim 4 bytes vi FAT 32 bit. Mi mc ca th mc hoc ca tp trong bng th mc gc (Root Directory) u chim 32 bytes, phn thnh 8 trng nh sau: Trng 1 cha 8 byte tn chnh, trng 2 cha 3 byte phn tn m rng, trng 3 l 1 byte thuc tnh, trng 4 chim 10 byte (DOS khng dng v dnh ring cho Windows), trng 5 chim 2 byte v ngy thng to lp, trng 6 chim 2 byte v gi pht giy to lp, trng 7 gi l trng Cluster chim 2 byte cha s th t ca phn t FAT u tin ca mi mc FAT, trng 8 chim 4 byte v dung lng. Khi truy cp mt th mc hay mt tp, trc tin my c 8 trng ni trn trong bng th mc, sau nh c c thng tin trng cluster m my chuyn n c cluster u tin ca tp ng thi chuyn n c phn t FAT u tin ca mc FAT ri c tip cc phn t FAT khc trong mc bit s th t ca cc cluster tip theo v truy

53

cp tip cc cluster ny cho n khi gp m FF FF l m kt thc file <EOF> trong mc FAT th dng. Nh vy mun bo mt th mc hoc tp no ta phi thay i ni dung ca trng th 7 trong mc ROOT n khng tr vo a ch tht ca th mc hoc ca tp m tr vo mt phn t rng nm cui ca FAT (khi a cha y th phn t ny bao gi cng rng, tng ng vi cluster rng trn a). ng thi trnh SCANDISK khng pht hin ra s tht lc cluster ta cn phi ghi vo phn t FAT cui cng ny gi tr tht ca cluster m th mc chim gi.

I. Cc thao tc cn thit bo mt th mc nh sau :

1 - To mt th mc BAOMAT th mc gc v chp tt c cc tp cn bo mt vo . 2 - c s th t ca phn t FAT cui cng (cng l s th t ca cluster c ngha cui cng ca a): Chy chng trnh Diskedit trong th mc NC sau g ALT+C lm hin ra ca s Select Cluster Range. Gi s trong ca s ny bn nhn c thng tin "Valid Cluster numbers are 2 through 33,196". iu ny c ngha l s th t ca Cluster c nghi cui cng ca a l 33.196, cng l s th t ca phn t c ngha cui cng ca FAT. c xong th g ESC . 3 - Tm mc ca th mc cn bo mt trong bng Root Directory ghi gi tr va c c bc 2 vo trng Cluster ca mc y nh sau: Chy Diskedit v g ALT+R, dch con tr ln th mc gc v n Enter m bng th mc gc. R bng th mc t trn xung v dng li mc cn bo mt. Dch chuyn con tr ti ct Cluster ca mc ny, ghi li gi tr c vo giy v nhp vo gi tr mi (vi v d trn l 33196). Nhp xong th dch con tr xung di ri g CTRL+W, chn nt Write trong ca s Write changes ghi vo a. 4 - Ghi gi tr c ghi nh trn giy vo phn t cui ca FAT bng cch chy chng trnh Diskedit, g ALT+S lm hin ln ca s Select Sector Range, vi mc Sector Usage bn s nhn thy vng FAT 1 v vng FAT 2 chim t sector no n sector no. Chng hn bn c thng tin sau: 1-130 1st FAT area, 131-260 2nd FAT area, c ngha l phn t cui cng ca FAT 1 nm sector 130 v ca FAT 2 l sector 260. Bn hy g vo hp Starting Sector:[...] s th t ca Sector cui cng ca FAT 1 (vi v d trn l 130) v n Enter m ca s Disk Editor, dch chuyn con tr n cluster cui cng c nghi ca FAT 1 (va dch con tr va quan st ch th s cluster thanh trng thi v dng li cluster c ngha cui cng vi v d trn l 33196). Nhp vo gi tr ghi nh trn giy bc 3 . Cui cng g Ctrl+W, nh du vo mc Synchronize FATs v chn Write ghi vo 2 FAT ca a.

II. Ch :
* Khi cn truy cp th mc ny bn ch cn np li gi tr c cho trng Cluster ca mc Root m khng cn xo b gi tr ghi cui FAT. * V h iu hnh Windows c ch bo v vng a h thng nn mun thc hin cc thao tc trn bn phi khi ng my h iu hnh DOS. * Cn b ch bo mt ny trc khi thc hin chng phn mnh (Defrag). Mi quy tc then cht v an ton v bo mt 1. Nu mt ngi no c th thuyt phc bn chy chng trnh ca anh ta trn my tnh ca bn, n s khng cn l my tnh ca bn na N chnh l mt trng hp ng tic ca h thng my tnh: khi mt chng trnh my tnh chy, n s thc hin phn vic c lp trnh, thm ch nu phn vic c lp trnh gy nguy him cho h thng my tnh. chnh l l do ti sao tht l quan trng khi chy, thm ch download mt chng trnh t mt ti nguyn khng chng thc. Nu mt ngi

54

xa l i ti bn v a cho bn mt chic bnh sandwich, vy liu bn c n n khng? C l l khng. Nu ngi bn thn nht ca bn a bn chic bnh th sao? c l bn s n, c l bn s khng - iu ny ph thuc vo liu c y lm n hay tm thy n trn ph. Vic la chn s dng mt chng trnh cng ging nh bn vi chic bnh sandwich, iu ny s gip bn an ton vi h thng my tnh ca bn. 2. Nu mt ngi no c th sa i h iu hnh trn my tnh ca bn, n s khng cn l my tnh ca bn na Nhn chung, h iu hnh ch l mt tp ca cc con s 1 v con s 0, khi c dch bi b vi x l. Vic thay i cc con s 1 v s 0, n s lm cho mt vi th khc i. Ni no cc con s 1 v s 0 ny c lu? Ti sao, trn h thng my, th t cc con s lun i cng vi mi th khc. Chng ch l cc file, v nu mt ngi no khc c th s dng h thng v c quyn thay i cc file , iu ny c ngha l h thng ca bn cht. Anh ta c th n cp password, to cho anh ta c quyn qun tr h thng, hay thm ton b cc chc nng mi ti h iu hnh. ngn cn kiu tn cng ny, phi m bo chc chn rng cc file h thng c bo v tt nht. 3. Nu mt ngi no truy cp vt l khng hn ch ti my tnh ca bn, n s khng cn l my tnh ca bn na Lun lun m bo chc chn rng mt my tnh c bo v v mt vt cht, v nh rng gi tr ca h thng bao gm khng ch gi tr ca bn thn phn cng, m cn gi tr ca d liu trn n, v gi tr truy cp ti mng ca bn m ngi l c th truy cp vo. Mc ti thiu, cc h thng thng mi quan trng nh cc iu khin vng (domain controller), cc my ch c s d liu (database server) v cc my ch dch v in hay my ch chia se file nn c kho m ch cho php ngi c quyn qun tr bo tr v truy cp. Nhng bn c th xem xt vic bo v cc h thng tt hn vi cc phng thc bo v c thm vo cho mi h thng. 4. Nu bn cho php mt ngi no y cc chng trnh ti website ca bn. N s khng cn l website ca bn iu ny da trn lut 1, trong lut ny ngi no dng th on tip cn vi nn nhn trong khi download chng trnh c hi trn h thng ca anh ta v chy n. Cn trong trng hp ny, anh ta s y chng trnh c hi ti h thng v chy n. C rt nhiu ngi khi qun l website qu u i vi khch hng ca h, v cho php cc v khch c th y cc chng trnh ti site v chy chng. iu ny c th dn ti h thng b xm phm. 5. Cc mt khu d nhn c th lm hng h thng bo mt mnh Mc ch ca vic ng nhp vo my l bit bn l ai. Ban u, h iu hnh bit bn l ai, n c th cho php ban truy cp ti nguyn hay t chi. Nu mt ngi no hc c mt khu ca b, anh ta c th ng nhp nh bn. Trong thc t, nu anh ta thnh cng, h thng my s coi anh ta l bn. Bt k bn c th thao tc g vi h thng, anh ta cng c th lm nh vy. C l bn c cc quyn trn mng hn anh ra v bn c th lm nhng thao tc m anh ta bnh thng anh ta khng th thc hin. Hay c th anh ta ch mun lm mt iu g c c hay e do bn. Trong bt k trng hp no, tt nht nn bo v mt khu ca bn. 6. Mt h thng ch c an ton nh s tin tng nh qun tr Mi my tnh phi c mt nh qun tr: l mt ngi no c th ci t chng trnh phn mm, cu hnh h iu hnh, thm v qun l cc account ca user, thit lp cc chnh sch v bo mt, v iu khin cc thao tc qun l c lin kt vi vic gi cho my tnh chy tt. Theo nh ngha, cc thao tc ny i hi anh ta c ton quyn vi h thng. iu ny t nh qun tr trong mt v tr rt quan trng vi h thng. Vi mt nh qun tr khng ng tin cy c th loi b hon ton cc quy ch v an ton bo mt m bn to ra. Anh ra c th thay i quyn trn h thng, sa cc chnh sch bo mt ca h thng, ci t cc chng trnh c hi vo trong h thng, thm cc user khng c tht vo trong h thng hay lm bt k iu g vi h thng. Anh ta c th lm hng h thng o v bo v ca h iu

55

hnh, bi v anh ta iu khin n. Nu bn c mt nh qun tr khng my tin tng, bn c th khng c ch bo mt. 7. D liu c m ho ch nh cha kho gii m Gi nh bn vi t mt h thng kho ln nht, mnh nht, c bo mt tt nht trn th gii cho h thng ca bn, nhng bn phi t m m c h thng . N s thc s l mnh nh th no, iu ny cn ph thuc vo cha kho cho h thng kho . Nu cha kho qu gin n vi h thng c bo v, k trm c th tm ra n. Vy anh ta c mi th m cnh ca . D liu c m ho cng ch an ton nh cha kho gii m n. 8. Mt h thng qut virus ht hn th cng cn tt hn khng c h thng dit virus no. Cc h thng qut virus lm vic c so snh nh h thng my tnh ca bn i chi vi mt loi virus c ng k. Mi mt ch k l k t ca mt virus c bit, v khi h thng qut tm d liu trong mt file, email, hay bt k u m in ch k. n thng bo rng tm thy virus. Tuy nhin, mt h thng qut virus c th ch qut cho cc virus m n bit. iu ny tht cn thit cho h thng ca bn c cp nht thng xuyn h thng dit virus vo mi ngy. 9. Tnh trng du tn hon ton khng thc t Ton b loi ngi nh hng ln nhau bao hm vic trao i d liu v mi mt. Nu mt ngi no a ra d liu, h c th m t c bn. Hy ngh v ton b thng tin m mt ngi c th thu c ch trong mt cuc hi thoi ngn vi bn. Ch mt ci lic mt, h c th phn on chiu cao, s cn, hay tui xp x m bn c. Ging ca bn c th ni cho h bit rng bn t u n, v c th thm ch ni cho h bit mt vi iu v gia nh bn, s thch ca bn, ni bn sng, v bn ang lm g kim sng. iu khng mt nhiu thi gian cho bt k ai mun thu lm thng tin m t bn l ai. Nu bn ao c c giu mt hon ton, cch tt nht l sng trong hang ng v trnh xa tip xc vi loi ngi. 10. Cng ngh khng phi l tt c Cng ngh c th lm mt vi iu gy kinh ngc cho mi ngi. Nhng nm gn y chng ta c nhn thy s pht trin tt bc trong c phn cng cng nh phn mm nh: phn cng r i v c nhiu tnh nng mi, phn mm cng pht trin song song vi phn cng nh to cc tiu chun mi trong vn an ton v bo mt v cc ngnh khoa hc khc lin quan ti my tnh. N m ra vin cnh m cng ngh c th to ra mt th gii mi vi tnh nng an ton bo mt tuyt i, nu chng ta lm vic chm ch. Tuy nhin, iu ny l khng thc t. Gii php l tha nhn hai im mang tnh bn cht. im th nht, an ton bo mt bao gm c cng ngh v chnh sch, c ngha l, n kt hp cng ngh v h thng ca bn an ton n u vi cc vn thuc bn cht. im th hai, an ton bo mt l mt qu trnh, khng c kt thc, n khng phi l mt vn m c th gii quyt mt ln cho tt c; n l mt tp cc vn lun tn ti v cc bin php gia ngi mang tnh bo v v ngi mang tnh ph hoi. B. Mt s bin php bo v thng tin trn cc h thng my tinh ni mng

I. Mng my tnh c bo v nh th no?

Hin nay, ngy cng c nhiu c quan, x nghip, cng ty v cc t chc, c nhn nc ta thip lp mng my tnh v thu c hiu qu cao trong cng tc. Tuy nhin, c rt nhiu ngi do v tnh hay c s dng mng my tnh hot ng ph hoi, gy thit hi khng nh cho nhng ngi dng thng tin trn mng. Do , vic bo v an ton thng tin trn mng v ang c rt nhiu ngi quan tm. Mng my tnh (Computer Net Works) l mt tp hp cc my tnh c ni vi nhau bi cc ng truyn vt l theo mt kin trc no . Mc ch ca vic kt ni mng l cho nhiu ngi t nhng v tr a l khc nhau vn c th s dng chung cc ti nguyn thng

56

tin ca nhau. Do vy vic bo v cc ti nguyn trong mng trnh khi mt mt hay b k xu lm thay i, sai lnh (c th do v tnh hay c ) ht sc phc tp v kh khn. V khng th c gii php an ton tuyt i, nn ngi ta phi s dng ng thi nhiu mc bo v khc nhau to thnh nhiu lp "ro chn" i vi cc hot ng xm phm. Vic bo v thng tin trn mng ch yu l bo v thng tin ct gi trong cc my tnh, c bit l trong cc my ch (server) ca mng. Ngoi mt s bin php nhm chng tht thot thng tin trn ng truyn, mi c gng u tp trung vo vic xy dng cc mc "ro chn" thng dng bo v thng tin ti cc trm ca mng, c th khi qut thnh s sau: 1. Quyn truy cp: (Access Rights) L mt lp bo v trong cng, nhm kim sot cc ti nguyn ca mng v quyn hn thao tc trn cc ti nguyn . Vic kim sot cu trc d liu cng chi tit cng tt. Hin nay vic kim sot thng mc tp (file). 2. ng k tn v mt khu (Login&Password) Thc cht lp bo v ny cng kim sot quyn truy nhp, nhng khng phi mc thng tin, m mc h thng (quyn truy nhp vo mng). y l phng php bo v ph bin nht v n n gin, t ph tn v cng rt hiu qu. Mi ngi s dng cc ti nguyn ca mng u phi ng k tn v mt khu trc. V l thuyt, mi ngi u gi kn c tn v mt khu ng k ca mnh, vic truy cp tri php s khng xy ra. Tuy nhin, trong thc t do nhiu nguyn nhn (c c nguyn nhn k xu c tnh tm cch ph hoi) nn hiu qu ca lp bo v ny cng b hn ch. 3. M ho d liu (Data encrytion) D liu c bin i t dng nhn bit sang khng nhn bit c theo mt thut ton no (to mt m) v s c bin i ngc li (gii m) trm nhn. y l lp bo v rt quan trng c s dng rng ri trong mi trng mng. 4. Bo v vt l (Physican Protection) Lp ny nhm ngn cn truy cp vt l bt hp php vo h thng. Cc bin php truyn thng thng c dng nh: Cm tuyt i ngi khng phn s vo phng t my mng, dng kho kho (kho bng c hc hay bng sinh hc nh kho vn tay, kho bng nh mt...) hoc ci c cu bo ng khi c truy nhp bt hp php vo h thng, hoc dng cc trm my khng c a mm... 5. Bc tng la (Fire Wall) bo v t xa mt mng my tnh hay c mt mng ni b (Intranet). Chc nng ca bc tng la l ngn chn cc xm nhp tri php (theo danh sch truy nhp xc nh trc) v thm ch c th lc b cc gi tin m ngi s dng khng mun gi i hay nhn vo v l do no . Phng php ny c s dng nhiu trong mi trng Internet v cng c thc hin c th phn cng hoc phn mm. Thng thng ngi ta s dng 3 dng sau: - Proxy: Kim sot quyn truy nhp hp thc, bao gm a ch cn thm nhp n, a ch ca ngi dng v cc mt hiu ca h. - Filterin Packet: L b lc gi tin, kim sot ni dung ca gi tin. Thay i khi phn cng thay i. - Screen: S dng mt mn hnh theo di mn hnh ca ngi dng, loi ny t dng v s lng ngi dng qu nhiu kh c th cng mt lc quan st c ht. Trn y l 5 mc bo v an ton cho thng tin trn mng, tuy nhin thc hin c cc bc ny cn phi c mt trnh vi tnh nht nh v kh nng nghip v cao.

II. Mt s nguyn tc s dng my tnh an ton trong mi trng INTERNET

Lm sao c th trnh c cc nguy c tim n hng ngy khi my tnh ca bn kt ni vo Internet l mt trong nhng vn quan trng hng u hin nay. Mt s phng n

57

Ti v ci t cc bn patch mt cch thng xuyn. Hy gh thm website ca nh cung cp phn mm tm kim cc bn nng cp, sa cha cc l hng an ninh. Ngi dng Windows c th vo a ch sau cp nhp bn patch sa li: http://windowsupdate.microsoft.com http://office.microsoft.com Mt nguyn tc c bn v an ton my tnh l khng bao gi s dng cc bn patch do ngi khc gi cho bn qua e-mail. - S dng cc phn mm chng virus mi nht t nh cung cp dch v ng tin tng. Mt s phn mm chng virus c th c lp trnh t ng ti cc file cp nhp hng ngy, hng tun; mt s khc c th yu cu thao tc cp t ngi s dng. - Hy s dng cc phn mm tng la hot cc thit b cng ni nhng phi c tc truy cp cao. Tng la v cng ni c th ngn chn cc chng trnh gin ip nh thm nhp vo my tnh ca bn v c th gip bn "n" kt ni, trnh con mt nhm ng ca nhng k t m. - Khng bao gi m cc th in t c phn nh km khng r rng v hin nay c qu nhiu virus c nh km theo th. l cha k cc phn mm gin ip, c gi i vi mc ch nh cp thng tin mt ca ngi dng my tnh. Nu th nhn c l th do bn b, ngi thn hoc ng nghip gi ti th bn hy e-mail cho h xc nhn iu ny. - Nu bn nghi ng my tnh ca mnh b "dnh" trojan (phn mm gin ip) th hy Ctr + Alt + Del, m ca s Close Program (trong Windows 98), hoc Task Manager (trong Windows NT, XP... ) kim tra xem c chng trnh no trng... l l ang hot ng khng ngoi nhng chng trnh bn ang chy. Nu c, bn hy vo Registry: + Chy lnh Run t Start, g Regedit vo mi trng Registry, ri tm theo ng dn sau xo chng trnh trn: + HKEY_CURRENT_MACHINE\Softwares\Microsoft \Windows\CurrentVersion\Run (hoc Run-) Hoc bn c th lm theo cch sau loi b khng cho trojan hot ng khi my tnh khi ng: + Chy lnh Run t Start, g msconfig - OK, bn tm ti thanh Startup b du chn nhng chng trnh hot ng. Hai bc trn ch l ngn cho trojan khng hot ng khi bn khi ng my, cn n vn cha c xo b khi my tnh ca bn. Mun xo b tn gc, bn phi phi khi ng li my v nh ng dn ca trojan hin th trong RUN hoc thanh Startup, ri ln theo xo n. - Thng xuyn lu (backup) cc file quan trng trong h thng, chng hn nh cc bn ghi v ti khon, ti liu hoc e-mail c mt cao. Hy gi mt bn copy nhiu ni, phng trng hp c s c xy ra. - Hy cnh gic vi nhng mu nh nh la bn, nh vic bn nhn c mt email thng bo ngn hng hoc nh cung cp dch v trc tuyn cn bn cung cp cho h mt khu v s ti khon v d liu c khng cn s dng c... Bn c th tham kho mt s li khuyn v cch s dng my tnh an ton ti cc website sau: www.cert.org/tech_tips/home_networks.html www.nipc.gov/warnings/computertips.htm 58

www.ftc.gov/bcp/conline/edcams/infosecurity www.microsoft.com/protect Trong thi gian gn y virus honh hnh v tn cng vo cc Email tr thnh vn nhc nhi i vi ngi s dng v cc doanh nghip gy cc tn tht nng n khng tnh ht. m bo an ton cho Email nu chu kh v lun c thc tun th 10 iu ny, bn c th bo v c my tnh ca mnh trong khi s dng dch v e-mail 1. Khng m bt k tp tin nh km c gi t mt a ch e-mail m bn khng bit r hoc khng tin tng. 2. Khng m bt k e-mail no m bn cm thy nghi ng, thm ch c khi e-mail ny c gi t bn b hoc khch hng ca bn. Hu ht virus c lan truyn qua ng e-mail v chng s dng cc a ch trong s a ch (Address Book) trong my nn nhn t pht tn mnh. Do vy, nu bn khng chc chn v mt e-mail no th hy tm cch xc nhn li t pha ngi gi. 3. Khng m nhng tp tin nh km theo cc e-mail c tiu hp dn. V d nh: "Look, my beautiful girl friend", "Congratulation'', "SOS''... Nu bn mun m cc tp tin nh km ny, hy lu chng vo a cng v dng mt chng trnh dit virus mi nht kim tra. 4. Khng m tp tin nh km theo cc e-mail c tn tp tin lin quan n sex nh "PORNO.EXE'' "PAMELA_NUDE.VBS'', "Britney Spears.scr"... y l cc th on nh la ngi dng ca nhng k vit virus. 5. Xa cc e-mail khng r hoc khng mong mun. ng forward (chuyn tip) chng cho bt k ai hoc reply (hi m) li cho ngi gi. Nhng e-mail ny thng l th rc (spam). 6. Khng sao chp vo a cng bt k tp tin no m bn khng bit r hoc khng tin tng v ngun gc xut pht ca n. 7. Hy cn thn khi ti cc tp tin t Internet v a cng ca my tnh. Dng mt chng trnh dit virus c cp nht thng xuyn kim tra nhng tp tin ny. Nu bn nghi ng v mt tp tin chng trnh hoc mt e-mail th ng bao gi m n ra hoc ti v my tnh ca mnh. Cch tt nht trong trng hp ny l xa chng hoc khng ti v my tnh ca bn. 8. Dng mt chng trnh dit virus tin cy v c cp nht thng xuyn nh Norton Anti Virus, McAffee, Trend Micro, BKAV, D32... S dng nhng chng trnh dit virus c th chy thng tr trong b nh chng thng xuyn gim st cc hot ng trn my tnh ca bn, v nh m (enalbe) chc nng qut e-mail ca chng. 9. Nu my tnh bn c ci chng trnh dit virus, hy cp nht thng xuyn. Trung bnh mi thng c ti 500 virus mi c pht hin. Do vy, mt chng trnh dit virus c cp nht s c trang b thng tin v cc loi virus mi v cch dit chng. 10. Thc hin vic sao lu d liu quan trng thng xuyn. Nu chng may d liu b virus xa th bn vn c th phc hi chng. Nn ct gi cc bn sao lu ti mt v tr ring bit hoc lu trn my tnh khc.

III. Mt s vn v tng la
1. Tng la l g? Mt cch vn tt, tng la (firewall) l h thng ngn chn vic truy nhp tri php t bn ngoi vo mng. Tng la thc hin vic lc b nhng a ch khng hp l da theo cc quy tc hay ch tiu nh trc. Tng la c th l h thng phn cng, phn mm hoc kt hp c hai. Nu l phn cng, n ch bao gm duy nht b nh tuyn (router). B nh tuyn c cc tnh nng bo mt cao cp, trong c kh nng kim sot a ch IP (IP Address l s a ch ho nh ngha cc trm (host) trong lin mng). Quy trnh kim sot cho php bn nh ra nhng a ch IP c th kt ni vi mng ca bn v ngc li. Tnh cht chung ca cc tng la l phn bit a ch IP hay t chi vic truy nhp khng hp php cn c trn a ch ngun. 2. Cc dng tng la

59

Mi dng tng la khc nhau c nhng thun li v hn ch ring. Dng ph bin nht l tng la mc mng (Network-level firewall). Loi tng la ny thng da trn b nh tuyn, v vy cc quy tc quy nh tnh hp php cho vic truy nhp c thit lp ngay trn b nh tuyn. M hnh tng la ny s dng k thut lc gi tin (packet-filtering technique) l tin trnh kim sot cc gi tin qua b nh tuyn. Khi hot ng, tng la s da trn b nh tuyn m kim tra a ch ngun (source address) hay a ch xut pht ca gi tin. Sau khi nhn din xong, mi a ch ngun IP s c kim tra theo cc quy tc do ngi qun tr mng nh trc. Tng la da trn b nh tuyn lm vic rt nhanh do n ch kim tra lt trn cc a ch ngun m khng h c yu cu thc s no i vi b nh tuyn, khng tn thi gian x l nhng a ch sai hay khng hp l. Tuy nhin, bn phi tr gi: ngoi tr nhng iu khin chng truy nhp, cc gi tin mang a ch gi mo vn c th thm nhp mt mc no trn my ch ca bn. Mt s k thut lc gi tin c th c s dng kt hp vi tng la khc phc nhc im ni trn. a ch IP khng phi l thnh phn duy nht ca gi tin c th "mc by" b nh tuyn. Ngi qun tr nn p dng ng thi cc quy tc, s dng thng tin nh danh km theo gi tin nh thi gian, giao thc, cng... tng cng iu kin lc. Tuy nhin, s yu km trong k thut lc gi tin ca tng la da trn b nh tuyn khng ch c vy. Mt s dch v gi th tc t xa (Remote Procedure Call - RPC) rt kh lc mt cch hiu qu do cc server lin kt ph thuc vo cc cng c gn ngu nhin khi khi ng h thng. Dch v gi l nh x cng (portmapper) s nh x cc li gi ti dch v RPC thnh s dch v gn sn, tuy nhin, do khng c s tng ng gia s dch v vi b nh tuyn lc gi tin, nn b nh tuyn khng nhn bit c dch v no dng cng no, v th n khng th ngn chn hon ton cc dch v ny, tr khi b nh tuyn ngn ton b cc gi tin UDP (cc dch v RPC ch yu s dng giao thc UDP User Datagram Protocol). Vic ngn chn tt c cc gi tin UDP cng s ngn lun c cc dch v cn thit, v d nh DNS (Domain Name Service dch v t tn vng). V th, dn n tnh trng "tin thoi lng nan". 3. Tng la da trn ng dng/ca khu ng dng Mt dng ph bin khc l tng la da trn ng dng (application-proxy). Loi ny hot ng hi khc vi tng la da trn b nh tuyn lc gi tin. Ca khu ng dng (application gateway) da trn c s phn mm. Khi mt ngi dng khng xc nh kt ni t xa vo mng chy ca khu ng dng, ca khu s ngn chn kt ni t xa ny. Thay v ni thng, ca khu s kim tra cc thnh phn ca kt ni theo nhng quy tc nh trc. Nu tho mn cc quy tc, ca khu s to cu ni (bridge) gia trm ngun v trm ch. Cu ni ng vai tr trung gian gia hai giao thc. V d, trong mt m hnh ca khu c trng, gi tin theo giao thc IP khng c chuyn tip ti mng cc b, lc s hnh thnh qu trnh dch m ca khu ng vai tr b phin dch. u im ca tng la ca khu ng dng l khng phi chuyn tip IP. Quan trng hn, cc iu khin thc hin ngay trn kt ni. Sau cng, mi cng c u cung cp nhng tnh nng thun tin cho vic truy nhp mng. Do s lu chuyn ca cc gi tin u c chp nhn, xem xt, dch v chuyn li nn tng la loi ny b hn ch v tc . Qu trnh chuyn tip IP din ra khi mt server nhn c tn hiu t bn ngoi yu cu chuyn tip thng tin theo nh dng IP vo mng ni b. Vic cho php chuyn tip IP l li khng trnh khi, khi , cracker (k b kho) c th thm nhp vo trm lm vic trn mng ca bn. Hn ch khc ca m hnh tng la ny l mi ng dng bo mt (proxy application) phi c to ra cho tng dch v mng. Nh vy mt ng dng dng cho Telnet, ng dng khc dng cho HTTP, v.v..

60

Do khng thng qua qu trnh chuyn dch IP nn gi tin IP t a ch khng xc nh s khng th ti my tnh trong mng ca bn, do h thng ca khu ng dng c bo mt cao hn. 4. Cc nim chung v tng la Mt trong nhng tng chnh ca tng la l che chn cho mng ca bn khi "tm nhn" ca nhng ngi dng bn ngoi khng c php kt ni, hay ch t cng khng cho php h "r" ti mng. Qu trnh ny thc thi cc ch tiu lc b do ngi qun tr n nh. Trn l thuyt, tng la l phng php bo mt an ton nht khi mng ca bn c kt ni Internet. Tuy nhin, vn tn ti cc vn xung quanh mi trng bo mt ny. Nu tng la c cu hnh qu cht ch, tin trnh lm vic ca mng s b nh hng, c bit trong mi trng ngi dng ph thuc hon ton vo ng dng phn tn. Do tng la thc thi tng chnh sch bo mt cht ch nn n c th b sa ly. Tm li, c ch bo mt cng cht ch bao nhiu, th tnh nng cng b hn ch by nhiu. Mt vn khc ca tng la tng t nh vic xp trng vo r. Do l ro chn chng kt ni bt hp php nn mt khe h cng c th d dng ph hu mng ca bn. Tng la duy tr mi trng bo mt, trong n ng vai tr iu khin truy nhp v thc thi s bo mt. Tng la thng c m t nh ca ng ca mng, ni xc nhn quyn truy nhp. Tuy nhin iu g s xy ra khi n b v hiu ho? Nu mt k thut ph tng la c pht hin, cng c ngha "ngi v s" b tiu dit v c hi sng st ca mng l rt mng manh. V vy trc khi xy dng tng la, bn nn xem xt k v tt nhin phi hiu tng tn v mng ca mnh. 5. Phi chng tng la rt d b ph? Cu tr li l khng. L thuyt khng chng minh c c khe h trn tng la, tuy nhin thc tin th li c. Cc cracker nghin cu nhiu cch ph tng la. Qu trnh ph tng la gm hai giai on: u tin phi tm ra dng tng la m mng s dng cng cc loi dch v hot ng pha sau n; tip theo l pht hin khe h trn tng la giai on ny thng kh khn hn. Theo nghin cu ca cc cracker, khe h trn tng la tn ti l do li nh cu hnh ca ngi qun tr h thng, sai st ny cng khng him khi xy ra. Ngi qun tr phi chc chn s khng c bt trc cho d s dng h iu hnh (HH) mng no, y l c mt vn nan gii. Trong cc mng UNIX, iu ny mt phn l do HH UNIX qu phc tp, c ti hng trm ng dng, giao thc v lnh ring. Sai st trong xy dng tng la c th do ngi qun tr mng khng nm vng v TCP/IP (Transmission Control Protocol/ Internet Protocol). Mt trong nhng vic phi lm ca cc cracker l tch cc thnh phn thc ra khi cc thnh phn gi mo. Nhiu tng la s dng "trm hy sinh" (sacrificial hosts) - l h thng c thit k nh cc server Web (c th sn sng b i) hay by (decoys), dng bt cc hnh vi thm nhp ca cracker. By c th cn dng ti nhng thit b ngy trang phc tp nhm che du tnh cht tht ca n, v d: a ra cu tr li tng t h thng tp tin hay cc ng dng thc. V vy, cng vic u tin ca cracker l phi xc nh y l cc i tng tn ti tht. c c thng tin v h thng, cracker cn dng ti thit b c kh nng phc v mail v cc dch v khc. Cracker s tm cch nhn c mt thng ip n t bn trong h thng, khi , ng i c kim tra v c th tm ra nhng manh mi v cu trc h thng. Ngoi ra, khng tng la no c th ngn cn vic ph hoi t bn trong. Nu cracker tn ti ngay trong ni b t chc, chng bao lu mng ca bn s b b kho. Thc t xy ra vi mt cng ty du la ln: mt tay b kho "tr trn" vo i ng nhn vin v thu thp nhng thng tin quan trng khng ch v mng m cn v cc trm tng la. Hin ti, tng la l phng php bo v mng ph bin nht, 95% "cng ng ph kho" phi tha nhn l dng nh khng th vt qua tng la. Song trn thc t, tng

61

la tng b ph. Nu mng ca bn c kt ni Internet v cha d liu quan trng cn c bo v, bn cnh tng la, bn nn tng cng cc bin php bo v khc.

Cu hi v bi tp:
1. 2. 3. 4. Trnh by cc bin php bo v thng tin trn my n. Thc hin qui trnh bo mt th mc trn my tnh n Trnh by cc bin php bo v thng tin trn cc h thng my tinh ni mng Trnh by nguyn tc s dng my tnh an ton trong mi trng INTERNET.

62

BI 5 Tn bi : MT S PHNG THC M HO V GII M D LIU M bi : ITPRG03-19.5 Gii thiu :

Khi bt u tm hiu v m ho, chng ta thng t ra nhng cu hi chng hn nh l: Ti sao cn phi s dng m ho ? Ti sao li c qu nhiu thut ton m ho ?v..v Bi hc cung cp cc kin thc v m ho v gii m d liu v gii thiu cc cng m ho v gii m d liu.

Mc tiu thc hin:

Hc xong bi ny hc vin s c kh nng

S dng c cc cng c m ho v gii m d liu.

Ni dung chnh: I. Gii thiu mt s nguyn l m ho v gii m d liu.

1.L thuyt m ha l mt ngnh ca ton hc v khoa hc in ton(computer science)) nhm gii quyt tnh trng li d xy ra trong qu trnh truyn thng s liu trn cc knh truyn c nhiu cao (noisy channels)), dng nhng phng php tinh xo khin phn ln cc li xy ra c th c chnh sa. N cn x l nhng c tnh ca m, v do vy gip ph hp vi nhng ng dng c th. C hai loi m hiu: 1. M ha dng ngun (M ha entrpi (Entropy encoding)) 2. M ha trn knh truyn (Sa li pha trc (Forward error correction)) u tin chng ta ni n l m ha dng ngun. nh ca phng php ny l nn d liu t chnh ngun ca n, trc khi truyn i, gip cho vic truyn thng c hiu qu hn. Chng ta chng kin thi quen ny hng ngy trn Internet, nht l trong cch dng "zip" nn d liu gim lng d liu phi truyn, gim nh gnh nng cho mng li truyn thng, ng thi thu nh c tp tin. Ci th hai l m ha trn knh truyn. Bng vic cng thm nhng bit mi vo trong d liu c truyn, cn gi l bit chn l (parity bits), k thut ny gip cho vic truyn thng tn hiu chnh xc hn trong mi trng nhiu lon ca knh truyn thng. C nhiu chng trnh ng dng, m ngi dng trung bnh khng n, s dng m ha trn knh truyn. K thut Reed-Solomon c dng nhm sa li do nhng vt xc v bi trn b mt a m nhc CD thng thng. Trong ng dng ny, knh truyn thng li chnh l bn thn ci a CD. in thoi di ng "Cell phones" cng dng k thut m ha c hiu ng cao (powerful coding technique) sa cc li trong vic truyn sng rai tn s cao b yu m v b nhiu. Modem x l s liu, vic truyn thng qua ng in thoi, v ng nhin ngay c chnh NASA, tt c u s dng k thut m ha trn knh truyn hiu ng truyn nhng bit s liu qua ng dy. 2 Nguyn l Entrpi ca ngun l mt o c v tin tc. Cn bn m ni, m ca ngun c dng loi b nhng phn tha, khng cn thit cn tn trong ngun, li phn ngun vi s lng bit t hn, nhng vi nhiu tin tc hn. Mi loi m ha ngun s dng mt k thut khc nhau hng t c gii hn entrpi ca ngun. , trong H(x) l entrpi ca ngun (tn s bit), v C(x) l tn s bit

63

sau khi s liu c nn. C th l, khng c phng php m ha ngun no c th tt hn gii hn entrpi ca k hiu (the entropy limit of the symbol). 2.1 Nhng iu cn bn v m ho Khi bt u tm hiu v m ho, chng ta thng t ra nhng cu hi chng hn nh l: Ti sao cn phi s dng m ho ? Ti sao li c qu nhiu thut ton m ho ?v..v Tai sao cn phi s dng m ho ? Thut ton Cryptography cp ti nghnh khoa hc nghin cu v m ho v gii m thng tin. C th hn l nghin cu cc cch thc chuyn i thng tin t dng r (clear text) sang dng m (cipher text) v ngc li. y l mt phng php h tr rt tt cho trong vic chng li nhng truy cp bt hp php ti d liu c truyn i trn mng, p dng m ho s khin cho ni dung thng tin c truyn i di dng m v khng th c c i vi bt k ai c tnh mun ly thng tin . Nhu cu s dng k thut m ho ? Khng phai ai hay bt k ng dng no cng phi s dng m ho. Nhu cu v s dng m ho xut hin khi cc bn tham gia trao i thng tin mun bo v cc ti liu quan trng hay gi chng i mt cch an ton. Cc ti liu quan trng c th l: ti liu qun s, ti chnh, kinh doanh hoc n gin l mt thng tin no mang tnh ring t. Nh chng ta bit, Internet hnh thnh v pht trin t yu cu ca chnh ph M nhm phc v cho mc ch qun s. Khi chng ta tham gia trao i thng tin, th Internet l mi trng khng an ton, y ri ro v nguy him, khng c g m bo rng thng tin m chng ta truyn i khng b c trm trn ng truyn. Do , m ho c p dng nh mt bin php nhm gip chng ta t bo v chnh mnh cng nh nhng thng tin m chng ta gi i. Bn cnh , m ho cn c nhng ng dng khc nh l bo m tnh ton vn ca d liu. Ti sao li c qu nhiu thut ton m ho ? Theo mt s ti liu th trc y tnh an ton, b mt ca mt thut ton ph thuc vo phng thc lm vic ca thut ton . Nu nh tnh an ton ca mt thut ton ch da vo s b mt ca thut ton th thut ton l mt thut ton hn ch (Restricted Algrorithm). Restricted Algrorithm c tm quan trng trong lch s nhng khng cn ph hp trong thi i ngy nay. Gi y, n khng cn c mi ngi s dng do mt hn ch ca n: mi khi mt user ri khi mt nhm th ton b nhm phi chuyn sang s dng thut ton khc hoc nu ngi ngi trong nhm tit l thng tin v thut ton hay c k pht hin ra tnh b mt ca thut ton th coi nh thut ton b ph v, tt c nhng user cn li trong nhm buc phi thay i li thut ton dn n mt thi gian v cng sc. H thng m ho hin nay gii quyt vn trn thng qua kho (Key) l mt yu t c lin quan nhng tch ri ra khi thut ton m ho. Do cc thut ton hu nh c cng khai cho nn tnh an ton ca m ho gi y ph thuc vo kho. Kho ny c th l bt k mt gi tr ch hoc s no. Phm vi khng gian cc gi tr c th c ca kho c gi l Keyspace . Hai qu trnh m ho v gii m u dng n kho. Hin nay, ngi ta phn loi thut ton da trn s lng v c tnh ca kho c s dng. Ni n m ho tc l ni n vic che du thng tin bng cch s dng thut ton. Che du y khng phi l lm cho thng tin bin mt m l cch thc chuyn t dng t sang dng m. Mt thut ton l mt tp hp ca cc cu lnh m theo chng trnh s bit phi lm th no xo trn hay phc hi li d liu. Chng hn mt thut ton rt n gin m ho thng ip cn gi i nh sau: Bc 1: Thay th ton b ch ci e thnh s 3 Bc 2: Thay th ton b ch ci a thnh s 4 Bc 3: o ngc thng ip Trn y l mt v d rt n gin m phng cch lm vic ca mt thut ton m ho. Sau y l cc thut ng c bn nht gip chng ta nm c cc khi nim: 64

Sender/Receiver: Ngi gi/Ngi nhn d liu Plaintext (Cleartext): Thng tin trc khi c m ho. y l d liu ban u dng r Ciphertext: Thng tin, d liu c m ho dng m Key: Thnh phn quan trng trong vic m ho v gii m CryptoGraphic Algorithm: L cc thut ton c s dng trong vic m ho hoc gii m thng tin CryptoSystem: H thng m ho bao gm thut ton m ho, kho, Plaintext, Ciphertext K hiu chung: P l thng tin ban u, trc khi m ho. E() l thut ton m ho. D() l thut ton gii m. C l thng tin m ho. K l kho. Chng ta biu din qu trnh m ho v gii m nh sau: Qu trnh m ho c m t bng cng thc: EK(P)=C Qu trnh gii m c m t bng cng thc: DK(C)=P

Hnh 5.1 Minh ho qu trnh m ha v gii m Bn cnh vic lm th no che du ni dung thng tin th m ho phi m bo cc mc tiu sau: a. Confidentiality (Tnh b mt): m bo d liu c truyn i mt cch an ton v khng th b l thng tin nu nh c ai c tnh mun c c ni dung ca d liu gc ban u. Ch nhng ngi c php mi c kh nng c c ni dung thng tin ban u. b. Authentication (Tnh xc thc): Gip cho ngi nhn d liu xc nh c chc chn d liu m h nhn l d liu gc ban u. K gi mo khng th c kh nng gi dng mt ngi khc hay ni cch khc khng th mo danh gi d liu. Ngi nhn c kh nng kim tra ngun gc thng tin m h nhn c. c. Integrity (Tnh ton vn): Gip cho ngi nhn d liu kim tra c rng d liu khng b thay i trong qu trnh truyn i. K gi mo khng th c kh nng thay th d liu ban u bng d liu gi mo d. Non-repudation (Tnh khng th chi b): Ngi gi hay ngi nhn khng th chi b sau khi gi hoc nhn thng tin. 2.2. an ton ca thut ton

65

Nguyn tc u tin trong m ho l Thut ton no cng c th b ph v. Cc thut ton khc nhau cung cp mc an ton khc nhau, ph thuc vo phc tp ph v chng. Ti mt thi im, an ton ca mt thut ton ph thuc: Nu chi ph hay ph tn cn thit ph v mt thut ton ln hn gi tr ca thng tin m ha thut ton th thut ton tm thi c coi l an ton. Nu thi gian cn thit dng ph v mt thut ton l qu lu th thut ton tm thi c coi l an ton. Nu lng d liu cn thit ph v mt thut ton qu ln so vi lng d liu c m ho th thut ton tm thi c coi l an ton T tm thi y c ngha l an ton ca thut ton ch ng trong mt thi im nht nh no , lun lun c kh nng cho php nhng ngi ph m tm ra cch ph v thut ton. iu ny ch ph thuc vo thi gian, cng sc, lng am m cng nh tnh kin tr bn b. Cng ngy tc x l ca CPU cng cao, tc tnh ton ca my tnh ngy cng nhanh, cho nn khng ai dm khng nh chc chn mt iu rng thut ton m mnh xy dng s an ton mi mi. Trong lnh vc mng my tnh v truyn thng lun lun tn ti hai phe i lp vi nhau nhng ngi chuyn i tn cng, khai thc l hng ca h thng v nhng ngi chuyn phng th, xy dng cc qui trnh bo v h thng. Cuc chin gia hai bn chng khc g mt cuc chi trn bn c, tng bc i, nc bc s quyt nh s phn ca mi bn. Trong cuc chin ny, ai gii hn s dnh c phn thng. Trong th gii m ho cng vy, tt c ph thuc vo trnh v thi gians khng ai c th ni trc c iu g. l im th v ca tr chi. 2.3. Phn loi cc thut ton m ho C rt nhiu cc thut ton m ho khc nhau. T nhng thut ton c cng khai mi ngi cng s dng v p dng nh l mt chun chung cho vic m ho d liu; n nhng thut ton m ho khng c cng b. C th phn loi cc thut ton m ho nh sau: Phn loi theo cc phng php: M ho c in (Classical cryptography) M ho i xng (Symetric cryptography) M ho bt i xng(Asymetric cryptography) Hm bm (Hash function) Phn loi theo s lng kho: M ho kho b mt (Private-key Cryptography) M ho kho cng khai (Public-key Cryptography) 3. M ha trn knh truyn Mc ch ca l thuyt M ha trn knh truyn (channel encoding theory) l tm nhng m c th truyn thng nhanh chng, cha ng nhiu m k (code word) hp l v c th sa li hoc t nht pht hin cc li xy ra (error detection). Cc mc ch trn khng ph thuc vo nhau, v mi loi m c cng dng ti u cho mt ng dng ring bit. Nhng c tnh m mi loi m ny cn cn tu thuc nhiu vo xc sut li xy ra trong qu trnh truyn thng. i vi mt a CD thng thng, li trong m thanh xy ra ch yu l do bi v nhng vt xc trn mt a. V th, cc m c lng vo vi nhau. D liu c phn b trn ton b mt a. Tuy khng c tt cho lm, song mt m ti din n gin c th c dng lm mt v d d hiu. Chng hn, chng ta ly mt khi s liu bit (i din cho m thanh) v truyn gi chng ba ln lin. Bn my thu, chng ta kim tra c ba phn lp li trn, tng bit tng bit mt, ri ly ci no c s bu cao nht. im tri khoy y l, chng ta khng ch truyn gi cc bit theo th t. Chng ta lng n vo vi nhau. Khi d liu ny, trc tin, c chia ra lm 4 khi nh. Sau chng ta gi mt bit khi u tin, tip theo mt bit khi th hai v.v tun t qua cc khi. Vic ny c lp i lp li ba ln phn b s liu ra trn b mt a. Trong ng cnh ca m ti din n gin trn, vic lm ny hnh nh khng c hiu qu cho lm. Song hin nay c nhng m c hiu

66

ng cao, rt ph hp vi vic sa li xy ra t ngt do mt vt xc hay mt vt bi, khi dng k thut lng s liu ni trn. Mi m thng ch thch hp cho mt ng dng nht nh. Vin thng trong v tr ( deep space) b gii hn bi nhiu nhit (thermal noise) trong thit b thu. Hin trng ny khng xy ra mt cch t pht bt thng, song xy ra theo mt chu trnh tip din. Tng t nh vy, modem vi di tn hp b hn ch v nhiu m tn ti trong mng li in thoi. Nhng nhiu m ny c th c biu hin r hn bng mt m hnh m tp tip din. in thoi di ng "Cell phones" hay c vn do s suy sng nhanh chng xy ra. Tn s cao c dng c th gy ra s suy sng tn hiu mt cch nhanh chng (rapid fading), ngay c khi my nhn ch di ch vi phn Anh (inches) 1. Mt ln na, ngi ta hin c mt loi thuc hng M ha trn knh truyn c thit k i u vi tnh trng suy sng. T "L thuyt m ha i s" m ch mt chi nhnh ca l thuyt m ha trn knh truyn, trong c tnh ca m c biu hin bng cc i s v da vo m nghin cu su hn. L thuyt m ha i s c chia ra lm hai loi m chnh 1. M khi tuyn tnh (Linear block codes) 2. M kt hp (Convolutional codes) Chng phn tch ba c tnh sau ca m -- ni chung l: Chiu di ca m (code word length) Tng s cc m k hp l (total number of valid code words) Khong cch Hamming ti thiu gia hai m k hp l (the minimum Hamming distance between two valid code words) 4. M khi tuyn tnh M khi tuyn tnh mang tnh nng tuyn tnh (linearity), chng hn tng ca hai m k no y li chnh l mt m k; v chng c ng dng vo cc bit ca ngun trn tng khi mt; ci tn m khi tuyn tnh l v vy (linear block codes). C nhng khi m bt tuyn tnh, song kh m chng minh c rng mt m no l mt m tt nu m y khng c c tnh ny. Bt c m khi tuyn tnh no cng c i din l (n,m,dmin), trong I- n, l chiu di ca m k, trong k hiu (symbols), I- m, l s k hiu ngun (source symbols) c dng m ha tc thi, I- dmin, l khong cch hamming ti thiu ca m (the minimum hamming distance for the code) C nhiu loi m khi tuyn tnh, nh 1. M tun hon (Cyclic codes) (M Hamming l mt b phn nh (subset) ca m tun hon) 2. M ti din (Repetition codes) 3. M chn l (Parity codes) 4. M Reed-Solomon (Reed Solomon codes) 5. M BCH (BCH code) 6. M Reed-Muller 7. M hon ho (Perfect codes) M khi c gn lin vi bi ton "ng gi ng xu" l bi ton gy mt s ch trong nhiu nm qua. Trn b din hai chiu, chng ta c th hnh dung c vn mt cch d dng. Ly mt nm ng xu, nm trn mt bn, ri dn chng li gn vi nhau. Kt qu cho chng ta mt mu hnh lc gic tng t nh hnh t ong. Cc m khi cn da vo nhiu chiu khc na, khng d g m hnh dung c. M Golay 2 c hiu ng cao, dng trong truyn thng qua khong khng v tr, s dng nhng 24 chiu. Nu c dng l m nh phn (thng thy), cc chiu m ch n chiu di ca m k nh nh ngha trn.

67

L thuyt v m s dng m hnh hnh cu vi s chiu "N". Ly v d, bao nhiu ng xu phi cn ph kn mt mt bn, hay trong khong khng 3 chiu, bao nhiu hn bi phi cn nhi kn mt hnh cu. Nhng cn nhc khc bao gm vic chn la m. Ly v d, do nhi nhmg hnh lc lng vo trong mt ci hp hnh ch nht, chng ta li nhng khong trng cc gc. Khi cc chiu ca hp c tng ln, t l phn trm so snh ca cc khong trng nh i, cho n mt c no y, nhng phn nhi chim ht cc khong khng v m ny c gi m hon ho. S m kiu ny tng i him (Hamming [ n,k,3], Golay [24,12,8],[23,12,7],[12,6,6]) Mt iu thng b b qua l s lng nhng hng xm k cn (neighbors) m mt m k c th c. Chng ta c th dng li v d cc ng xu y. u tin, chng ta gp cc ng xu li theo cc hng hnh ch nht. Mi mt ng xu c 4 ng k cn (v 4 ci bn gc xa hn). Trong b cc ca hnh lc gic, mi ng xu c 6 ng k cn. Khi chng ta tng s chiu ln, s lng cc ng k cn tng ln mt cch nhanh trng. Kt qu l s lng cc m tp, bn cch cc m chnh, m my thu c th chn, cng tng ln, v do m gy ra li. y chnh l khuyt im cn bn ca m khi, v cng l khuyt im ca tt c cc loi m. C th vic gy li tr nn kh khn hn, nu ch c mt hng xm k cn m thi, song con s cc hng xm k cn c th ln n lm cho chnh tng sc xut li b nh hng (total error probability actually suffers). 5. M kt hp M kt hp (Convolutional codes) c s dng trong cc modem di tn m ( voiceband modems) (V.32, V.17, V.34) v trong cc in thoi di ng GSM3, cng nh trong cc thit b truyn thng ca qun i v trang v trong cc thit b truyn thng vi v tinh. nh y l lm cho tt c cc k hiu m k (codeword symbol) tr thnh tng trng s (weighted sum) ca nhiu loi k hiu thng ip trong nhp liu (various input message symbols). N tng t nh ton kt hp c dng trong cc h tuyn tnh bt bin (linear time invariant systems) dng tm xut liu (output) ca mt h thng, khi chng ta bit nhp liu (input) v cc p ng xung (impulse response). Ni chung chng ta tm xut liu ca b m ha kt hp h (system convolutional encoder), tc s kt hp ca nhp liu bit, i chiu vi trng thi ca b m ha kt hp ( convolution encoder), hoc trng thi ca cc thanh bin (registers). V c bn m ni, m kt hp khng gip thm g trong vic chng nhiu hn mt m khi tng ng. Trong nhiu trng hp, chng ni chung cho chng ta mt phng php thc thi n gin hn, hn hn mt m khi c hiu qu tng ng ( a block code of equal power). B m ha thng l mt mch in n gin, c mt b nh ( state memory), mt vi bin php truyn thng tin phn hi bo tnh hnh (some feedback logic), thng l cc cng loi tr XOR (XOR gates). B m ha c th c thc thi trong phn mm hay phn sn (firmware). Thut ton Viterbi (Viterbi algorithm) l mt thut ton ngn gn nht (optimum algorithm) c dng gii m cc m kt hp. Hin c nhng phng php gim c gip vo vic gim khi lng tnh ton phi lm. Nhng phng php ny phn ln da vo vic tm tuyn ng c kh nng xy ra cao nht (most likely paths). Tuy khng ngn gn, song trong mi trng nhiu thp hn, ngi ta thng thy chng cho nhng kt qu kh quan. Cc b iu hnh vi x l hin i (Modern microprocessors) c kh nng thc hin nhng thut ton tm gim c ni trn vi t l trn 4000 m k trong mt giy

II.

Mt m c in

Mt m c in l mt dng ca mt m hc c s dng trong lch s pht trin ca loi ngi nhng ngy nay tr nn lc hu do cc phng thc m ha ny qu n gin v nhng k tn cng c th d dng b kha thng qua nhiu phng thc nh tn cng vt cn (v d nh dng my tnh th ht mi trng hp) hay da trn tn cng thng k (da trn tn sut xut hin ca cc ch ci). Ni chung, mt m hc c in hot ng trn c s bng ch ci (chng hn cc k t t "A" ti "Z" trong ting Anh), v chng c thc hin bng tay hay mt s my mc c kh

68

n gin. Ngc li, cc m hnh m ha hin i s dng cc my tnh hay cc cng ngh s ha khc, v hot ng m ha da trn vic thay th cc bit hay byte. Cc phng thc m ha c in thng thng d b tn thng (ph m) bi cc tn cng vn bn m ha, i khi thm ch k tn cng khng cn bit cc chi tit c th ca h thng m ha, bng cch s dng cc cng c nh phn tch tn sut. i khi ngi ta cng cho rng cc phng thc m ha nh cch thc m ha ca c my Enigma thuc v cc phng thc m ha c in mc d cch thc m ha ny s dng cc thit b v cng ngh hin i nht vo thi im (trong thi k ca Th chin II). Cc phng thc m ha c in ch yu da trn mt m ha hon v v mt m ha thay th. Trong mt m ha thay th, cc k t (hoc nhm k t) c thay th mt cch c quy lut trong ton b thng ip bng cc k t khc (hoc nhm k t), chng hn cu I am Mr. Enigma from c thay bng cu This is morning star, sau cc k t cn li trong bng ch ci c thay th theo mt quy lut no xc nh trc. Trong phng thc mt m ha hon v th cc k t c gi khng i, nhng trt t ca chng trong bn tin li thay i theo mt quy lut no . C cc thut ton phc tp thc hin vic mt m ha bng cch t hp hai phng thc trn to ra sn phm m ha; cc phng thc m ha khi hin i nh DES hay AES thc hin vic lp i lp li mt s bc thay th v hon v.

III.

Mt m khi vi m i xng (Symmetric Key Cryptosystems)

Symmetric cryptosystems da trn mt kha n, l mt chui ngn vi chiu di khng thay i. Do , phng php m ha ny c xem nh l single-key encryption. Kho thng l kha ring (hoc bo mt) v c dng m ha cng nh gii m. Ghi ch : Trong mt s ti liu, symmetric cryptosystem cng c xem nh kha scryptosystems ring hoc b mt v k thut ny cng c xem nh kha mt m ring hoc kha mt m b mt. Trc khi hai bn trao i d liu, kha phi c chia s dng chung cho c 2 bn. Ngi gi s m ha thng tin bng kha ring v gi thng tin n ngi. Trong qu trnh nhn thng tin, ngi nhn s dng cng mt kha gii m thng ip.

Hnh 5.2: The symmetric cryptosystem. Ph thuc vo chiu di ca kha, c rt nhiu thut gii m ha i xng c pht trin cho n nay. Sau y l mt s thut gii thng c s dng trong VPN : Tiu chun m ha d liu (Data Encryption Standard (DES)). Nguyn bn DES ra gii php cho mt kha c chiu di ln n 128 bit. Tuy nhin, kch thc ca kha gim xung cn 56 bit bi chnh ph Hoa K trong vic n lc tm ra thut gii nhanh hn. Vic gim chiu di kha xung, ph thuc vo tc x l ca b vi x l. Trong phng php tn cng Brute Force, cc kha s pht sinh ngu nhin v c gi n on vn bn nguyn mu cho ti khi xc nh c t kha chnh

69

xc. Vi nhng kha c kch thc nh, s d dng pht sinh ra chnh xc t kha v ph v h thng mt m. Ch : Tn chnh thc ca DES l Federal Information Processing Standard (FISP) (Tiu chun x l thng tin lin bang (Hoa k). Bi ba tiu chun m ha d liu (Triple Data Encryption Standard (3DES)). Cng ging nh DES, 3DES cng s dng kha 56 bit. Tuy nhin, n an ton hn nhiu do dng 3 kha khc nhau m ha d liu. B x l thc hin cc bc sau : kha u tin dng m ha d liu. Sau , kha th hai s dng gii m d liu va c m ha. Cui cng, kha th ba s m ha ln th hai. Ton b qu trnh x l ca 3DES to thnh mt thut gii c an ton cao. Nhng bi v y l mt thut gii phc tp nn thi gian thc hin s lu hn, gp 3 ln so vi phng php DES. Ron's Code 4 (RC4). c pht trin bi Ron Rivest, thut gii ny s dng nhng t kha vi chiu di c th bin i ln n 256 bytes. Bi v chiu di ca kha, RC4 c phn loi l mt c ch m ha mnh. N cng tng i kh nhanh. RC4 to mt dng bytes ngu nhin v XORs chng vi vn bn nguyn mu. Bi v cc bytes c pht sinh ngu nhin, RC4 i hi mt kha mi cho mi ln gi thng tin ra ngoi. H thng m ha ng b a ra 2 vn chnh. u tin, bi v mt kha va c dng m ha va dng gi m, nu n bt u tr thnh k xm nhp, th tt c nhng thng tin s dng kha ny s b hu. V th, kha nn thng xuyn thay i theo nh k. Mt vn khc l khi h thng m ha ng b x l mt lng thng tin ln, vic qu l cc kha s tr thnh mt cng vic v cng kh khn. Kt hp vi vic thit lp cc cp kha, phn phi, v thay i theo nh k u i hi thi gian v tin bc. H hng m ha i xng gii quyt vn bng vic a ra h thng m ha i xng. ng thi, h cng tng tnh nng bo mt trong sut qu trnh chuyn vn

IV.

Cc h mt m kho cng khai (Public Key Cryptosystems)

Trn thc t h thng m ho kho cng khai cha th thay th h thng m ho kho b mt c, n t c s dng m ho d liu m thng dng m ho kho. H thng m ho kho lai ra i l s kt hp gia tc v tnh an ton ca hai h thng m ho trn. Di y l m hnh ca h thng m ho lai: Nhn vo m hnh chng ta c th hnh dung c hot ng ca h thng m ho ny nh sau:

Hnh 5.3 Hot ng ca h thng m ho

Bn gi to ra mt kho b mt dng m ho d liu. Kho ny cn c gi l Session Key. Sau , Session Key ny li c m ho bng kho cng khai ca bn nhn d liu. Tip theo d liu m ho cng vi Session Key m ho c gi i ti bn nhn.

70

Lc ny bn nhn dng kho ring gii m Session Key v c c Session Key ban u. Dng Session Key sau khi gii m gii m d liu. Nh vy, h thng m ho kho lai tn dng tt c cc im mnh ca hai h thng m ho trn l: tc v tnh an ton. iu ny s lm hn ch bt kh nng gii m ca tin tc.

V.

Gii thiu mt vi chng trnh m ho v gii m d liu

1. M ha d liu vi Windows XP Professional: Bn thc s c tng la v phn mm dit virus ci t trn my ri nhng liu nhng th c th bo v c bn t cc cuc tn cng Internet. Ci g c th xy ra i vi cc ti liu mt ca bn nu laptop b mt hay b nh cp? Mt my tnh khng c ngha m mt ton b cc b mt nu bn bit cch bo v chng. Vi Windows XP Professional, bn c th c tr gip bo v quyn ring t ca khch hng v thng tin nhy cm ca cng ty bng cch s dng H thng m ha file (Encrypting File System EFS) Khi m ha file hoc th mc, bn c th chuyn i n sang mt nh dng khc ngi khc khng th c c. Mt kha m ha file c thm vo cc file v th mc m bn la chn m ha. Kha ny c dng c file. Windows XP Professional to ra mt qu trnh m ha v gii m d dng, bn ch cn thc hin cc bc sau nu mun m ha file v th mc ca mnh. Khi log on vo my tnh ca mnh, bn c th c chng. Bt k ai c gng s dng my tnh m khng logon th khng th c c. Ch : Hy chc chn l my tnh ca bn thit lp vic s dng log on (khi khi ng my hay khi c vic cn ra ngoi bn c th log out ra ngoi h thng). Nu my tnh b mt khi bn ng nhp h thng, nhng file c m ha ca bn vn c th c c.

M ha mt file hoc th mc

1, Kch vo Start > All Programs > Accessories > Windows Explorer. 2, Kch chut phi vo file hoc th mc mun m ha, chn Properties. 3, Trn tab General chn Advanced. 4, Chn Encrypt contents to secure data Ch : Cc file hoc th mc nn khng th m ha. Nu bn m ha cc file hoc th mc th chng s khng gii nn c na. Nu mun chn m ha mt file n, bn c th chn m ha c th mc cha n. Chn Encrypt the file and the parent folder trong ca s hp thoi Encrytion Warning. Tt c file c to trong th mc m ha s c t ng m ha ngay. Nu mun m ha th mc thay v m ha file n, bn hon ton c th chn m ha ton b th mc. Gii m file v folder m ha 1, Kch vo Start > All Programs > Accessories > Windows Explorer. 2, Kch chut phi vo file hoc th mc mun m ha, chn Properties. 3, Trn tab General chn Advanced. 71

4, Xa du chn trong Encrypt contents to secure data Khi bn gii m mt th mc, bn phi la chn xem ch gii m th mc hay gii m c th mc bao gm ton b cc file v th mc con cha trong n. Nu chn ch gii m th mc, cc file v th mc con trong n vn c m ha. Tuy nhin, khi bn thm file mi v th mc con vo trong th mc va gii m th chng vn cha c t ng m ha. Hy nh rng, bt k ai truy cp vo my tnh ca bn cng c th truy cp vo file v th mc gii m. Windows XP Professional mang li cho bn tin ch gip c th gi cho cc file v th mc an ton trc cc truy cp tri php. S dng Windows XP Professional m ha nhng d liu quan trng trn my tnh, gi cho chng lun c an ton m khng cn phi ci t thm bt c phn mm no. 2. M ha v gii m d liu nhanh chng, an ton vi EncryptOnClick 1.1.4.0 (EOC1.1.4.0) Khi lm vic trong mi trng dng chung my tnh vi nhiu ngi hay chia s a qua mng ngang hng, vic bo v b mt d liu ca bn l rt quan trng v cn thit. bo qun ti sn qu gi ca mnh, bn c th nh n EOC1.1.4.0.y l mt ng dng d s dng ging nh ngi bo v an ninh cho d liu ca bn, cho php bn m ha v gii m cc file v th mc d liu ca bn mt cch nhanh chng v an ton, vi cng ngh m ha AES 256 bit cp qun s.

ng dng EOC1.1.4.0 hon ton min ph, c dung lng 1,78 MB v tng thch vi mi Windows, c cung cp ti y. Sau khi ti v, bn tin hnh ci t v khai thc vi cc bc nh sau: 1.Ci t: Nhp kp vo EncryptOnClick_Setup.exe, ri nhp Next, chn I accept the agreement > Next > Next > Next > Next >Next >Install > Finish. Sau khi ci t xong, chng trnh s c kch hot vi ca s EncryptOnClick gm: 2 nt File v Folder phn Encrypt (m ha), 2 nt File v Folder phn Decrypt (gii m), v nt Close bn di thot chng trnh. Sau ny kch hot chng trnh, bn c th nhp kp vo biu tng chng trnh c hnh smi h s mu vng b kha trn mn hnh desktop hay nhp Start/Programs/2BrightSparks/EncryptOnClick/ EncryptOnClick. 2.M ha d liu: m ha tp tin, bn nhp vo nt File phn Encrypt, tm n tp tin cn bo v trong ca s Open ri chn n v nhp Open. K n, trong hp thoi Password, bn g vo mt khu ty Password, g li mt khu ging nh trn Confirm Password ri nhp OK chng trnh tin hnh m ha tp tin. Sau khi m ha, biu tng ca tp tin c m ha s chuyn thnh biu tng ca chng trnh EncryptOnClick. m ha th mc, bn nhp vo nt Folder phn Encrypt, ri tin hnh cc bc k tip tng t nh trn. Sau khi m ha, biu tng ca tt c cc tp tin trong th mc c m

72

ha s chuyn thnh biu tng ca chng trnh EncryptOnClick. 3.Gii m d liu: gii m tp tin, bn nhp vo nt File phn Decrypt, tm n tp tin c biu tng chng trnh EncryptOnClick m bn mun gii m trong ca s Open ri chn n v nhp Open. K n, trong hp thoi Password, bn g vo mt khu m bn nh trc cho tp tin Password ri nhp OK chng trnh tin hnh gii m. Bn phi g chnh xc mt khu th mi c th gii m c tp tin. Bn cng c th gii m tp tin bng cch nhp kp vo biu tng EncryptOnClick ca tp tin mun gii m trong ca s Windows Explorer, ri g mt khu trong hp thoi Password v nhp OK. Sau khi gii m xong, biu tng ca tp tin s c lt v tr li biu tng ban u. gii m th mc, bn nhp vo nt Folder phn Decrypt, ri tin hnh cc bc k tip tng t nh gii m tp tin. Bn c th gii m tng tp tin trong th mc c m ha theo cch gii m tp tin trn, tuy nhin bn phi g ng mt khu m bn nh cho ton th mc. Sau khi gii m th mc, biu tng ca tt c cc tp tin trong th mc s tr li nh ban u. Lu : s dng EncryptOnClick trn a USB (vi h iu hnh Windows XP hoc cao cp hn), bn hy chp ln a USB cc file sau: EncryptOnClick.exe, EncryptOnClick.exe.manifest, v XceedZip.dll (c trong th mc thng l C\Programs Files\2BrightSparks\EncryptOnClick, sau khi ci t t EncryptOnClick_Setup.exe)

Cu hi v bi tp:
1. 2. 3. 4. Tai sao cn phi s dng m ho? Trnh by k thut m ho theo phng php m ho i xng. Thc tp m ha v gii m d liu vi Windows XP Professional. Thc tp m ha v gii m d liu vi EncryptOnClick 1.1.4.0 (EOC1.1.4.0)

73

BI 6 Tn bi : XY DNG K HOCH BO V H THNG THNG TIN TRN MY TNH M bi : ITPRG3-19.6 Gii thiu :
Cc thao tc h thng u do con ngi thc hin. V vy xem xt cc nguy c e do s an ton h thng t pha con ngi v cc thao tc ca con ngi l vic lm cn thit. Mc ch vic xy dng bin php bo mt nhm: - Bo v tnh ton vn (integrity) ca d liu, bo m s nht qun ca d liu trong h thng. Cc bin php a ra ngn chn c vic thay i bt hp php hoc ph hoi d liu. - Bo v tnh b mt, gi cho thng tin khng b l ra ngoi. - Bo v tnh kh dng, tc l h thng lun sn sng thc hn yu cu truy nhp thng tin ca ngi ding hp php. - Bo v tnh ring t, tc l m bo cho ngi s dng khai thc ti ngun ca h thng theo ng chc nng, nhim v c phn cp, ngn chn c s truy nhp thng tin bt hp php. Trong phn ny, chng ta xem xt mt s bin php bo mt cho mt h thng tin hc. Cng cn pho nhn mnh rng, khng c bin php no l hon ho, mi bin php u c nhng mt hn ch ca n. Bin php no l hiu qu, cn c p dng phi cn c vo tng h thng a ra cch thc hin c th.

Mc tiu thc hin:

Hc xong bi ny hc vin s c kh nng

Xy dng k hoch bo m an ton cho h thng thng tin trn cc my n v h thng my tnh ln. T chc thc hin k hoch bo m an ton cho h thng thng tin.

Ni dung chnh: I. Xy dng k hoch bo mt h thng thng tin trn my tnh n

1. Thit lp quy tc qun l Mi t chc cn c nhng quy tc qun l ca ring mnh v bo mt h thng thng tin trong h thng. C th chia cc quy tc qun l thnh mt s phn: - Quy tc qun l i vi h thng my ch - Quy tc qun l i vi h thng my trm - Quy tc qun l i vi vic trao i thng tin gia cc b phn trong h thng, gia h thng my tnh v ngi s dng, gia cc thnh phn ca h thng v cc tc nhn bn ngoi. 2. An ton thit b - La chn cc thit b lu tr c tin cy cao m bo an ton cho d liu. Phn loi d liu theo cc mc quan trng khc nhau c chin lc mua sm thit b hoc xy dng k hoch sao lu d liu hp l. - S dng cc h thng cung cp, phn phi v bo v ngun in mt cch hp l. - Tun th ch bo tr nh k i vi cc thit b. 3. Thit lp bin php bo mt. C ch bo mt mt h thng th hin qua quy ch bo mt trong h thng, s phn cp

74

quyn hn, chc nng ca ngi s dng trong h thng i vi d liu v quy trnh kim sot cng tc qun tr h thng. Cc bin php bo mt bao gm: Bo mt vt l i vi h thng. Hnh thc bo mt vt l kh a dng, t kho cng, h thng bo ng cho n hn ch s dng thit b. V d nh loi b a mm khi cc my trm thng thng l bin php c nhiu c quan p dng. * Cc bin php hnh chnh nh nhn dng nhn s khi vo vn phng, ng nhp h thng hoc cm ci t phn mm, hay s dng cc phn mm khng ph hp vi h thng. + Mt khu l mt bin php ph bin v kh hiu qu. Tuy nhin mt khu khng phi l bin php an ton tuyt i. Mt khu vn c th mt cp sau mt thi gian s dng. + Bo mt d liu bng mt m tc l bin i d liu t dng nhiu ngi d dng c c, hiu c sang dng kh nhn bit. + Xy dng bc tng la, tc l to mt h thng bao gm phn cng v phn mm t gia h thng v mi trng bn ngoi nh Internet chng hn. Thng thng, tng la c chc nng ngn chn nhng thm nhp tri php (khng nm trong danh mc c php truy nhp) hoc lc b, cho php gi hay khng gi cc gi tin.

II. Xy dng k hoch bo mt thng tin trn my tnh mng

Qu trnh bo mt thng tin trn my tnh mng gm: phng nga, pht hin v i ph Bo mt thng tin trn my tnh mng l mt qu trnh tri qua cc giai on xy dng v cng c bo mt trong mt thi gian di. Qu trnh bo mt kh xc nh c ch cn t n mt cch tuyt i. Ni mt cch khc, qu trnh bo mt khng c im ch, vic bo mt cho 1 h thng phi c tin hnh thng xuyn v lin tc. Mc d qu trnh bo mt thng tin c rt nhiu k hoch v hnh ng, nhng chng ta c th nhm chng thnh ba giai on phng nga, pht hin, v i ph. Mi giai on yu cu cc k hoch v hnh ng chuyn giai on sang bc tip theo. S pht trin ca cc kiu tn cng, s xut hin ca cc l hng bo mt mi i hi phi iu chnh thi gian cng nh phng php trong cc qu trnh phng nga, pht hin v i ph. Trong mt vi trng hp, mt s thay i trong mt giai on bt b s nh hng n ton b qu trnh. Bi hc kinh nghim trong qu trnh i ph s c th hin trong khi lp k hoch tnh ton phng nga v cu hnh cho bo v. Nh cp, bo mt thng tin l mt qu trnh, mt chu k chu cc thay i lin tip theo cc him ha v l hng bo mt. thc hin tt qu trnh, k hoch phi c thc hin vt trc mt bc so vi k hoch ca ngi t vn hoc it nht cng phi thc hin cng vi k hoch ca ngi t vn. lm c iu ny, mi giai on phi c m bo thit k vi mt kh nng y v qun l gim st. Mc tiu cui cng ca qu trnh bo mt thng tin l nhm bo v ba thuc tnh ca thng tin: Tnh b mt (Confidental) Thng tin ch c xem bi nhng ngi c thm quyn. L do cn phi gi b mt thng tin v l sn phm s hu ca t chc v i khi l cc thng tin ca khch hng ca t chc. Nhng thng tin ny mc nhin phi gi b mt hoc theo nhng iu khon gia t chc v khch hng ca t chc. Tnh ton vn (Integrity) Thng tin phi khng b sai hng, suy bin, hay thay i. Thng tin cn phi x l cch ly khi cc tai nn hoc thay i c ch . Tnh sn sng (Availability) Thng tin phi lun c gi trong trng thi sn sng cung cp cho ngi c thm quyn khi h cn. C vi kiu tn cng gy h hi cho h thng m khng gy nh hng n mt bt k mt thuc tnh no trn. Mt s tn cng trn tnh b mt s lm l ra cc thng tin khng c php truy nhp. Mt s tn cng trn tnh ton vn s ph hoi hay lm hng thng tin v mt s tn cng trn tnh sn sng s ph v hay gy nn s t chi phc v ca h thng. Bo mt thng tin bo v cc thuc tnh ny bng cch: Bo v tnh b mt. m bo tnh ton vn. Duy tr tnh sn sng. Mt t chc mun thnh cng trong bo v cc thuc tnh trn ca thng tin cn phi c mt k hoch thch hp. C k hoch thch hp trc khi c tai nn s lm gim ti a ri 75

ro ca tn cng v lm gim ti a thi gian cn cho vic pht hin v i ph nu c tn cng xy ra. Hy tr li vn kim tra mi giai on ca qu trnh phng nga, pht hin, v i ph, minh ha tng qu trnh n l v xem chng c quan h vi nhau nh th no. 1. S phng nga Cc chuyn gia bo mt thng tin phi lin tc hon thin kh nng ca h bng cch lm vic nhanh nhy hn ch khng phi nng nhc hn. l cch tt hn phng nga ngn chn, sau bt kp v bm st. Ngn chn mt tai nn i hi phi c phn tch cn thn v phi c k hoch. Thng tin l ti sn qu bu i hi s bo v tng xng vi gi tr ca n. Vic o lng mc bo v phi c thc hin bo v thng tin khng b thay i tri php, b ph hoi, hay b l ra khi c tai nn hoc do c . Trong giai on bo v, chnh sch an ton thng tin, s iu khin v qu trnh tin hnh s c thit k v thc hin. Chnh sch an ton thng tin, cc chng trnh nhn thc v bo mt v cc th tc iu khin s truy cp l tt c mi quan h tng quan qua li v cn phi c xy dng sm. Chnh sch an ton thng tin l nn tng cho tt c nhng g c xy dng ln. 2. Chnh sch an ton thng tin i tng u tin trong qu trnh pht trin k hoch bo v l xc nh nhng g cn bo v v ti liu ha cc tin tc ny trong mt chnh sch thng thng. Chnh sch phi xc nh trch nhim ca t chc, ca cc c nhn v ca ngi qun l. Chnh sch ny cng t ra cc trch nhim cho s trin khai thc hin, k lut cn thi hnh, s kim tra v xem xt li bo mt. Thm na, chnh sch phi r rng, ngn gn sc tch, mch lc cht ch v thng nht. Nu khng c hiu r rng, chnh sch s c thc thi km v hiu lc, kim tra v xem xt li s km hiu qu. Mi ln ngi qun l xc nhn tn thnh mt chnh sch hon chnh, t chc cn phi c nhn thc y v cc yu cu ca chnh sch. 3. Nhn thc v bo mt Nhn thc v bo mt l mt qu trnh gio dc nhn vin v tm quan trng ca bo mt, cch s dng cc cng c o lng bo mt, cc th tc bo co v s vi phm ch bo mt, v trch nhim chung ca nhn vin khi thc thi chnh sch an ton thng tin. Nhn thc v bo mt cn s dng nhm cho mc ch trn. Chng trnh hnh ng s tip tc qu trnh duy tr mt mc nhn thc cho tt c nhn. Chng trnh cn c thit k ph bin n ton b t chc cng nh tp trung o to ring bit. Chng trnh s nhn mnh n i ng lm vic v s quan trng ca nhng ngi tham gia. thc y cc c nhn , mt qu trnh nhn nhn s c thc hin khen hoc thng cho cc nhn vin thc hin tt vic hc tp v bo mt. 4. iu khin qu trnh truy cp Truy cp l cch thc m ngi dng s dng h thng thng tin khai thc thng tin. Tt nhin, tt c cc ngi dng khng th truy cp c tt c h thng thng tin v thng tin trong . Truy cp s b ngn chn v c phn quyn da trn cc yu t nhn bit cn bn. qun l cc truy cp ny h thng hnh thnh nn cc ti khon bng cch s dng cc phng php nh danh, xc nhn m bo cc quy tc trong nh danh v nhn thc gii hn truy cp n ti nguyn. nh danh (Identification) nh danh l s nhn dng duy nht. l nhng g m mt user (ngi, my khch, phn mm ng dng, phn cng, mng) s dng phn bit n vi cc i tng khc. Mt user dng nh danh ch ra anh/ch ta l ai. nh danh c to

76

ra cho user khng c php chia s vi bt k user hay nhm user no khc. Ngi s dng dng nh danh truy cp n ti nguyn cho php. Xc thc (Authentication) Xc thc l qu trnh xc nhn tnh hp l i vi nh danh ca mt ngi dng. Khi mt ngi dng trnh din nh danh ca mnh, quyn truy nhp v nh danh ca user phi c xc thc. Xc thc m bo mt mc tin cy bng ba nhn t bao gm: Nhng g bn bit Mt khu l cch c s dng thng xuyn nht. Tuy nhin, t mt cm t b mt v s PIN cng c s dng. Chng c bit di tn gi l xc thc mt nhn t hay xc thc n. Nhng g bn c Nhn t xc thc ny s dng nhng g bn c, chng hn nh mt tm th nhn dng, smartcard ... Mi vt i hi user phi s hu mt vt g lm vt xc nhn. y l mt cch xc thc tin cy hn i hi hai nhn t chng hn nh nhng g bn bit vi nhng g bn c nhn thc. Kiu xc thc ny c bit di tn gi xc thc hai nhn t hoc xc thc nhiu mc. Nhng g bn i din cho Nhn t xc thc tt nht l nhng g m bn i din cho. y l cc c im ring bit ca c th chng hn nh du tay, vng mc, hay DNA. Vic o lng cc nhn t ny gi l sinh trc hc. Qu trnh xc thc tt nht ny i hi ba nhn t. Cc phng tin my mc hoc ng dng c bo mt cao s dng ba nhn t xc thc mt user. a) Xc thc Xc thc l mt qu trnh cho php ngi s dng xc nh c xc thc s dng ngun ti nguyn nht nh. Gii hn truy nhp n ti nguyn c hnh thnh bi cc quy tc v phn quyn cho php iu khin tt hn i vi cc thao tc ca ngi dng. S cho php c phn b trn nguyn tc cho s quyn hn ti thiu. Cng t quyn c gn th cng t yu cu cn cho vic thc hin tc v / cng vic, v quyn hn khng nn m rng quyn khi yu cu ti thiu v thi gian hon thnh cng vic. iu ny hn ch c truy cp, hnh thnh mi cc cng vic thng nht&bsp; v lm gim accountability. Mi khi t chc thng qua mt chnh sch, cn to mt mi trng nhn thc v thc hin iu khin cc qu trnh truy nhp, n phi thc hin c chin lc phng nga pht hin v k hoch i ph vch ra. N c nhim v t chc thc hin tin phong trong vic chun b i ph vi tn cng hay thm ha hn l p tr li cc him ha khng c nh gi ng. Qu trnh pht hin nguy him hay him ha s dng ti nguyn nhiu hn l cnh bo. Mc d vy, p tr li tai nn cn dng nhiu ti nguyn hn l pht hin him ha. Mt t chc mun thnh cng phi hiu c nhng g cn phi phng chng, pht hin v mi cnh bo phi bit c lm th no ti u ha cn bng ngun ti nguyn s dng cho p tr himha. Vi c hai qu trn, thi gian l vn ct li. b) Pht hin Pht hin him ho i vi h thng l mt vn rt quan trng. Vi s e da xung quanh ngy cng tng, d cho h thng c bo v mc no i chng na th cng vn b him ha v i hi k nng ngy cng cao. Khng th c mt gii php bo mt no hon ho da trn nhng thng tin khng y . Mt bin php bo v theo lp c p dng vy nn mi khi mt lp b hng th n s c bit trc v s c bo ng. Yu t quan trng nht trong bin php ny l s pht hin ng lc v kh nng bo trc nguy him. H thng pht hin xm nhp tri php (IDS) c s dng cho mc ch ny. IDS c kh nng kim sot cc hot ng ca h thng v thng bo cho ngi chu trch nhim khi hot ng cn kim tra chng thc. H thng c th d tm du vt tn cng, nhng thay i trn tp tin, cu hnh v cc hot ng khc ca h thng. bo v h thng th ton b h thng cn c gim st. Cc cng c d tm xm nhp my tnh tri php s c t mt ch hp l trn mng v trn tng ng dng. Tuy nhin, kim sot mt mng hay cc my ch ang bn th khng phi l mt vic d dng. Cng c d tm ny phi c kh nng phn bit c s khc nhau gia mt hot ng bnh thng v mt hot ng gy hi. iu ny c thin hng l mt ngh thut hn l khoa hc. IDS phi c iu chnh hay bin i theo yu cu IDS c th lm vic vi mt mng hay

77

mt my ch c th. Qu trnh iu chnh ny ghi nhn mt e do bit trc, kiu xm phm, phng php v qu trnh xm nhp. Nh cp trn, pht hin ra xm nhp my tnh quan trng hn c mt s cnh bo. Mc d l mt s cnh bo ng nhng cnh bo hot ng c nh mt b no. Th hnh dung ra mt bo ng cu ho c kh nng pht hin ho hon, phn bit c loi ho hon, ch ra c ni xut pht v ng dn, bo ng cho cc nhn vin trong to nh v cc ban cu ho v thng bo mt cch thng minh n cc trm cha chy trc h kp thi i ph. Tt c nhng iu k trn cng vi kh nng phn bit c vi nhng hnh ng bnh thng nh ho hon do nu nng. Cu hnh h thng pht hin thm nhp tri php ng n cng ging nh mt cng c. Mt cnh bo s c iu khin thng minh nh mt b no. Mi khi IDS c cu hnh ng dn v t mt ni hp l th vn ch cn l thi gian trc khi cnh bo s ku v thng bo c gi i. Vy th sao? nu khng c mt k hoch i ph c vn bn ho trc th bn s hon ton b b ng v hoang mang. c) p ng qu trnh pht hin c gi tr, th phi c mt p ng ng lc. p ng i ph li mt tai nn cn c lp k hoch tht tt. a ra mt quyt nh quan trng hay xy dng mt chnh sch trong khi ang chu tn cng l mt phng php trong i ph vi thm ha. Rt nhiu t chc tiu tn mt s tin khng l v rt nhiu thi gian cho i ph vi thm ha chng hn nh bo, ng t, ha hon v ngp lt. Nhng trong thc t, s may ri cn ln hn khi mt him ha bo mt my tnh xy ra so vi mt trong cc thm ha trn. Cc trang thit b nu khng hiu qu v ngun ti nguyn s a n k hoch cn phi i ph him ha bo mt my tnh. K hoch i ph phi c vit ra v thng qua cc cp lnh o thch hp. K hoch nn lm r mc u tin ca tng loi s kin v yu cu mt mc cnh bo v p ng thch hp i vi mi mc u tin ca s kin/him ha. Mt nhm chuyn i ph vi him ha bo mt my tnh (CSIRT) s c thnh lp vi mt vai tr nht nh v trch nhim c xc nh trc. Cc vai tr ny cn c n nh cho cc thnh vin c trnh trong t chc. Ngi qun l nhm pah c ch nh v n nh trch nhi m gii thch cc him ha, kt hp cc hot ng trong nhm, v bo co vi cp qun l cao hn. C hai trit l v him ha xut hin nh th no v iu khin ra sao. Mt t chc thng mun ct b cc kt ni tri php, loi tr tn gc nguyn nhn ca him ha v khi phc li h thng. Phng php tip cn ny mang tnh kh thi nhiu hn khi thc thi nhim v vi cc my mc hiu qu hn v thi gian khi phc hp l. Mt phng php khc l theo di v bt gi k ph hoi. Ngi qun l phi xem xt mi gii php trong tng trng hp c th v gii quyt theo thc t. Khi t chc quyt nh i theo mt bin php no, l thuyt v phng cch i ph phi c ghi li trong k hoch i ph. Ngi thc hin se c ch nh cc tc v ph hp vi k nng ca h. Sau khi tai nn c lm sng t v thng bo c gi n nhng ngi thc hin i ph vi him ha, tai nn phai c khoanh vng li, cc hng hc v h thng sch c khi phc li. Mi mt qu trnh i hi mt k nng c bit v c vai tr c bit quan trng trong khi i ph vi him ha. Tuy nhin, cc phn tch v bo co trc y l mt bc quan trng nht hng n vic bo v vng chc trong ton b chu trnh bo mt thng tin. Bc ny c bit quan trng i vi vic rt ra bi hc kinh nghim. Bng cc v d v tr li cc cu hi ai, ci g, u, ti sao, v khi no v cc cu tr li c gi tr, mt t chc c th kt hp cc bi hc kinh nghim trong mi qu trnh tin hnh bo mt. 5. Chu k pht trin lm tiu tan s tn cng bn trong cng nh bn ngoi, s t chc bo mt phi c chun b ng n. Nh nu, qu trnh bo mt khng c im ch. N l mt qu trnh ng yu cu k nng qun l v linh hot. Qun l c k lut cc qu trnh bo v,

78

pht hin v i ph i hi m bo phi lin tc ci tin. T chc h tr trn din rng v bao bc cc im quan trng nht ca chin lc.

III. Xy dng k hoch sao lu d liu trn my tnh n

Bo qun an ton d liu sao lu Vi my tnh, ch cn mt pht "tc trch" cng c th lm cho nhng d liu qu bu ca bn nhanh chng tan thnh my khi. V mi th s cn t hi hn khi bn khng th khi phc nhng d liu ny do cha tng thc hin sao lu h thng. Ni dung sau s gii thiu nhng ch sao lu d liu ph hp nht cho h thng ca bn. 1. Lu theo ring Nu ang s dng Windows XP hay 2000 th mi d liu quan trng ca bn thng c lu ti th mc C:\Documents and Settings (hay th mc m bn thit lp mc nh) v bn ch cn sao lu chnh th mc . Nu s dng Windows 98 hay Me, bn c th tham kho li bi vit "D dng sao lu bng WinZip v cc phn mm min ph (ID: A0310_123) bit danh sch nhng th mc cn sao lu. Cch tt nht l lc no bn cng to t nht mt bn sao lu cho nhng d liu c nhn nh tp tin vn bn, bn fax, thng tin ti chnh c nhn, th in t, nh chp v phim video c chp vo t my nh s/my quay s v.v... Bn nn cn c vo thc t s dng ca mnh iu chnh cc thng s trong quy trnh sao lu cho ph hp nht. Vic sao lu ton b a cng c th gip bn nhanh chng khi phc d liu, tuy nhin iu ny s lm cho bn tn thm chi ph trang b mt a cng d phng (hay a quang). Thi im tt nht to nh a l ngay sau khi va ci t xong Windows v cc phn mm ng dng cn thit. Tuy nhin, bn cng c th ch cn sao lu cc tp tin v th mc lu tr d liu c nhn, cn h iu hnh v cc ng dng th c th ci t li t a CD gc. Bn c th tham kho li bi vit "Tr ha Windows" (ID: A0503_103). 2. phn vng a an ton hn Mc nh, Windows v hu ht mi ng dng lu tp tin m bn to ra trong qu trnh lm vic vo th mc My Documents. Windows phn loi tp tin hnh nh, m thanh hay phim nh vo tng th mc con tng ng, kh tin li cho ngi s dng tm kim. Tuy nhin, c mt nhc im l Windows thng t cc th mc ny trn cng phn vng a khi ng. Nu chng may Windows gp s c th bn s ri vo tnh cnh khng th truy xut d liu trn phn vng a cng . Do vy, bn nn chia a cng thnh nhiu phn vng dng cho tng mc ch s dng ring, v d a C ch dng ci t h iu hnh, a D c dng ci t phn mm ng dng v a E ch phc v cho mc ch lu d liu. Bng cch ny, bn cng c th sao lu d liu nhanh hn cng nh khng phi lo lng gp phi tnh trng ghi chng ln nhng d liu quan trng khi ci t li Windows. thc hin phn vng a cng, bn c th s dng cc tin ch nh Partion Magic 8 ca Symantec hay Disk Director Suite ca Acronis. Hai tin ch ny c th gip bn d dng to mi mt phn vng hay iu chnh kch thc ca mt phn vng hin c.

79

Sau khi phn vng xong a cng, nu bn vn mun tip tc s dng th mc My Documents mc nh lu tr, bn c th thc hin to mt "nh x th mc ny tr n mt th mc khc c t ti phn vng khng phi l phn vng ci t Windows. Cch thc hin nh sau: m tin ch Windows Explorer, nhn phi chut ln biu tng My Documents, chn Properties, v trong th Target chn Move. Tip n, chn th mc m bn mun khai bo l th mc My Documents v cui cng nhn OK (Hnh 1). Cn lu , bn s c yu cu xc nhn c mun di chuyn tt c tp tin trong th mc hin ti sang th mc mi hay khng. Tng t, i th mc lu th in t ca Outlook Express (OE), bn m tin ch ny v chn Tools.Options.Maintenance.Store Folder. Change. Sau chn th mc m bn mun OE lu gi cc th in t v cui cng nhn OK kt thc. 3. Chn phng tin lu tr Cng thc sao lu hon ho nht l to nhiu bn sao v lu ti nhiu ni khc nhau. L do ca nguyn tc "ct trng trong nhiu gi ny l bt k thit b lu tr no cng c th gp s c v cng nguy him hn nu bn bo qun nhng tp tin sao lu ny trn my tnh. Vic chn phng tin lu tr ty thuc vo dung lng ca d liu m bn cn sao lu v yu cu hot ng ca h thng my tnh quy nh. V d, nu cn lu khong 2GB d liu th bn cn phi dng 1 a DVD. Tuy nhin, nu dung lng di 500MB th a CD l s la chn hp l. Hin nay, nhiu ngi dng c xu hng chn a DVD lm phng tin lu tr d liu v gi u ghi DVD gim kh nhiu so vi trc y. Hn na, gi mt a DVD cng ch t hn cht t so vi a CD nhng dung lng cao hn nhiu. Ngoi ra, bn nn s dng a DVDR ghi mt ln lu cc d liu khng c nhu cu thay i v cn s dng trong thi gian di (a DVDR ng tin cy hn a RW). Nu s dng a cng gn ngoi lm thit b sao lu th tc thc hin cng vic s nhanh hn v lu tr c nhiu hn. Hin nay, a cng gn ngoi c th h tr dung lng t 250GB (nh Western Digital Media Center c gi 230 USD) n 300GB (Maxtor OneTouch c gi 270 USD) v quan trng nht l khng i hi s c mt ca ngi dng nh khi thc hin sao lu trn u ghi CD/DVD. Tuy nhin, nu ch s dng 1 a cng cho c qu trnh sao lu th l vic lm ht sc mo him. Ngoi ra, bn cng c th s dng cc dch v lu tr trn mng Internet (sao lu trc tuyn) nh XDrive () hay Ibackup (). im hn ch ca cc dch v ny l phi ng ph s dng hng thng v tc ng truyn Internet chm. D vy, dch v ny thch hp khi d liu cn sao lu c dung lng nh. Mt cng c khc cng rt hu dng trong vic sao lu d liu l bt nh USB. Vi kch thc nh gn, trng lng nh, bt nh USB c th d dng nht vo ti o gip bn lun mang theo bn mnh nhng d liu cn thit. an ton cho nhng d liu ny (do bt nh rt d b tht lc hay nh cp), bn cn trang b nhng cng c bo mt min ph nh Cypherix Cryptainer LE (, ID: 47758) hay Dekart Private Disk Light (, ID: 47760). 4. K hoch sao lu Bn nn nh rng bn sao u tin rt quan trng v l cn c cho nhng ln sao lu sau: Chy phn mm sao lu trn my tnh v chn nhng phn vng a cng ( to nh a) hay cc tp tin v th mc m bn cn thc hin sao lu. Khi s dng ch sao lu tp tin v th mc, bn cn phi bit ni lu th in t, lch lm vic, danh b lin lc... trnh

80

trng hp b st. V vn ny, bn c th tham kho li bi vit "Ni lu tr th, danh b v lch cng tc" (ID: A0412_135). Hy s dng mt khu v m ha tt c tp tin nu bn mun gi b mt ni dung ca nhng d liu . Bn cn t tn cho ni dung sao lu sao cho d nh c th nhanh chng tm li khi cn thit. Ngoi ra, bn cng c th tit kim khng gian lu tr bng cch nn d liu sao lu li. S dng tnh nng kim tra cc tin ch sao lu xc nhn sao lu chnh xc tt c d liu. Bn nn to ra t nht 2 bn sao v vic "nhn bn" s nhanh hn l thc hin sao lu nh bnh thng. Mt khi thc hin sao lu y ln u tin, bn c th gim ng k thi gian v khng gian lu tr bng cch tip tc s dng ch sao lu khc bit (differential) hay sao lu b sung (incremental). Sao lu khc bit s cp nht tt c d liu c s thay i so vi bn sao lu u tin, trong khi ch sao lu b sung ch cp nht d liu c s thay i so vi bn sao lu mi nht. Do vy, ch sao lu b sung hot ng nhanh hn v i hi t dung lng b nh hn, nhng vic to li cc tp tin sao lu i hi phi phc hi chng theo ng th t. Cui cng, hy c gng ng bao gi ghi chng hay xa bn sao ln u tin v nu chng may bn xa/thay i bn sao bt k ch no i na th cng ch l mt d liu sao lu mi nht m thi. Xy dng k hoch sao lu (back up) d liu trn cc h thng my tnh ni mng Gii php lu tr d liu trn mng cho h thng CNTT IV. Hot ng kinh doanh ca cc doanh nghip (DN) ngy cng pht trin i cng s pht trin ca thng mi in t(TMT) v cc ng dng Multimedia lm cho nhu cu lu tr ca cc DN ngy cng pht trin v cao hn. 1.Khi qut khi nim lu tr, sao lu d liu trn mng. Hot ng kinh doanh ca cc doanh nghip (DN) ngy cng pht trin i cng s pht trin ca TMT v cc ng dng Multimedia lm cho nhu cu lu tr ca cc DN ngy cng pht trin v cao hn. Ngoi cc phng thc sao lu truyn thng nh dng Flasdisk, CD, DVD ch dnh cho cc d liu c dung lng nh ph hp cho ngi s dng cui v gia nh nh th i vi yu cu lu tr d liu c dung lng ln th ta phi dng n cc thit b phn cng ring bit khc. Bn cnh kh nng lu tr, DN cng i hi kh nng sao lu cc d kiu quan trng ca h tt hn nhm m bo d liu ca bn lun c bo v an ton, hiu qu. c bit l i vi cc trung tm d liu thng c cc ng dng nghip v khc nhau chy trn nhng nn tng cc OS khc nhau nh Windows, Linux, Unix, OS/400 lun i hi mc lu tr, sao lu c mt tin cy cao nht. Lu tr, sao lu trc tip hay thng qua h thng mng LAN l nhng phng thc ch yu m cc DN hay dng. V lu tr nh th no nhm m bo ngun d liu c th c phc hi nhanh chng sau nhng s c nh chy n, ng t, khng b l nhng yu cu m cc DN ln lun i hi nhm m bo cho hot ng ca mnh. 3. Lu tr, sao lu d liu bao gm mt s cc dng ph bin DAS, NAS, SAN. a) DAS (Direct Attached Storage)- Gii php lu tr vi cc thit b gn trc tip vo Server

81

S dng phng thc ny bn c th dng cc b sao lu bng t (tape disk) kt ni vi my ch v lp lch cho cc tc v lu tr, to cc b n sao lu d liu cho h thng mng LAN ca mnh. Phng php ny cho bn mt chi ph thp, hiu nng cao v vic lp t kh d. Tuy nhin v lu di, khi nng cao h thng dung lng ny th d liu s b phn on v phn tn trn cc h thng khc nhau kh cho vic qun tr. Nn xt v mt tng th s lm tng chi ph lu tr trn ton b h thng mng. 4. b) NAS (Network Attached Storage)- Gii php lu tr thng qua cc thit b hot ng c lp trn mng LAN Cc thit b ny c kh nng qun l thng qua a ch IP. Gii php ny d dng thc hin vic chia s d liu cng cc ng dng trn mng LAN.

Hnh 6.1 Gii php lu tr thng qua cc thit b hot ng c lp trn mng LAN Cc thit b NAS cng c gn cc a ch IP c nh v c ngi dng truy nhp thng qua s iu khin ca my ch. Trong mt s trng hp, ty kh nng h tr ca thit b NAS m ngi dng c th truy cp trc tip khng cn c s qun l ca my ch. NAS cung cp kh nng chia s ti nguyn lu tr cho nhiu ngi dng ng thi. Bn cnh , NAS cho php thc hin m rng v dung lng lu tr khi nhu cu s dng tng cao mt cch d dng, nhanh chng. Tuy nhin do s dng bng thng ca mng LAN cho vic truyn d liu nn t nhiu thit b cng nh hng n hiu sut chung ca ng LAN. Chnh v th khi thit k lu tr trn thit b ny ta nn ch ch nn lu tr nhng d liu quan trng trn thit b v gii hn cc tc v sao lu ny trn cc d liu khng cn thit. Thit lp ch sao lu hp l nhm cn bng c ti vo nhng thi im hp l (thng l sau gi lm vic thng thng), trnh sao lu vo nhng gi cao im. c) SAN (Storage Area Network)

82

Hnh 6.2 SAN (Storage Area Network) S dng h thng my ch lu tr, kt ni vi b chuyn mch lu tr tc cao Gigabit v thng thc hin trn cc ng ni tc cao Gigabit /Cp quang. Cho php bn lu tr vi dung lng ln v tc cao khng nh hng nhiu n mng LAN, thch hp cho cc ng dng i hi tc v n nh cao, tr thp nh cc h thng Cluster, h thng thng tin v trung tm c s d liu ln Gii php ny i hi chi ph phn cng cao hn nhiu so vi cc gii php DAS, NAS thch hp cho cc DN ln cn mt n nh, bo mt, tnh sn sng cao vi cc d liu c tnh cht sng cn ca h. V vn khong cch hot ng ca cc thit b cng c gii quyt kh tt thng qua cc knh cp quang tc cao 1 Gigabit ti 10 Gigabit vi mt tm hot ng xa hn nhiu vi cc gii php truyn thng trc y. Tiu biu cho cc dng thit b ny l thit b lu tr ca hng c ting trn th gii nh IBM, HP, EMC. Vi a s cc DN va v nh hin ang pht trin ti Vit Nam hin nay th vic u t mt h thng lu tr, sao lu d liu vi chi ph va phi v p ng c yu cu ca h l mt bi ton kh nan gii. Trong s , gii php lu tr qua mng LAN vi phng thc NAS c l l mt gii php kh thi, d thc hin v m rng vi a s DN ngy nay. Vi cng ngh phn cng hin nay, gi thnh ca cc thit b ngy cng gim v dung lng lu tr ngy cng c nng cao trong khi kch thc ngy cng nh gn hn. S dng cc thit b lu tr ca cc hng sn xut th 3 nh Linksys, NetGear, Buffalo, Iomega,s gip DN tit kim chi ph v thi gian cng cng sc cho vic qun tr, phn b ngun ti nguyn ny. 3. Thit b lu tr ca Linksys: Linksys EtherFast Network Attached Storage (250GB with PrintServer) EFG250

83

L mt nhnh pht trin ring ca Cisco v c tha hin nhng gi tr ct li ca hng ny nn tham gia th trng lu tr va v nh hin nay. Linksys cng cung cp cho ngi dng 2 loi thit b h tr lu tr d liu trong mng LAN cho cc DN va v nh vi kh nng lu tr ca cc thit b ny ln lt l 120GB v 250GB. Kh cho nhu cu lu tr d liu trn mng cho cc DN nh v h gia nh hin nay. Thit k sc nt, p mt v vng chc. Thit b cho php bn qun l qua giao din web thn thin d dng v theo a ch IP vi tc 1Gigabit c l cng kh cho cc tc v lu tr cc files c dung lng ln trong h thng mng ca DN nh. Thit k kiu ng , vi 4 khe bn a cc cng lu tr vo v cc n led bo tnh trng hot ng ca thit b vi cc giao tip khc nhau v cng mng v cc tip xc khc. Vic phn quyn ngi qun l truy cp c thc hin thc hin qua cch phn chia quyn theo cc user v group khc nhau. Vic kim tra, chng phn mnh, sa cha li a c thc hin qua cc tin ch tch hp theo thit b. Bn cnh, kh nng thc hin truyn ti file qua giao thc FTP l mt tnh nng kh hay ca thit b, bn c th thit lp ngi dng c th s dng cng lu tr thng qua trnh FTP client hay dng qua giao din web (Internet Attached Storage). V vi nhu cu chia s kt ni my in cn nhanh chng, tin li trong mi trng mng LAN nng ng ngy nay th vic tch hp nh mt Printer Server, thit b mang n cho ngi s dng mt khon chi ph tit kim ng k. H tr Internet Printing Protocol gip cho vic in n trong mng IP hin nay tr nn n gin v d dng nht gip DN tip kim chi ph v thi gian cho vic iu khin my in . Vi mc gi hp l 750 USD (VAT) cng ch bo hnh 1 nm, thit b s h tr DN bn rt nhiu trong vic x l mt khi lng ln d liu cn lu tr trn mng cho tt c cc ngi dng khc. Vi yu cu lu tr mc thp hn, bn c th tham kho dng thit b EFG-120 vi mc lu tr 120G cng cc tnh nng qun l tng t (khng tch hp tnh nng PrintServer). 4. Thit b lu tr ca NetGear: Storage Centre SC101

Hnh 6.3 Storage Centre SC101 Cc gii php lu tr m Netgear mang n cho khch hng kh a dng t nhng dng c dung lng nh 250G cho n nhng dng chuyn dng vi kh nng lu tr ln ti nhiu TeraByte(TB). Trong nhng dng c mc lu tr trung bnh t 500GB n 750GB thch hp cho cc DN va v nh hin nay SC101 c thit k chc chn, bt mt h tr c ng kch thc 3.5 v c kha bo v cho cc cng bn trong. H tr mc lu tr 250GB, 500GB bn s linh hot hn trong vic chn cho mnh mt mc lu tr ph hp. c bit vi kh nng kt hp vi Active Directory ca server trong LAN, bn s d dng v ng b hn trong vic qun l, phn cp cc ngi dng cn lu tr trong mng LAN. Kt ni vi h thng LAN qua giao tip mng tc 100MBps c th hi thp so vi yu cu trn mt h thng mng ln nhng cng p ng cho cc nhu cu lu tr trn mng LAN ca

84

bn. Vi b ti liu hng dn vic ci t thit b kh chi tit, bn c th d dng lm ch thit b ca mnh mt cch nhanh chng nht. Thit b ny h tr hu ht cc OS thng dng hin nay, bn s d dng truy nhp vo thit b lu tr cc ti liu quan trng ca mnh. Vi mc gi 126USD cho hp Control SC101, bn ch cn cm cng vo v c th thit lp lu tr mt cch nhanh chng. 5. Thit b lu tr IOMEGA: Iomega StorCenter External Network Hard Drive 500 GB

Hnh 6.4 : Iomega StorCenter External Network Hard Drive 500 GB L nh sn xut cc thit b lu tr tm trung, cc sn phm lu tr ca IOMEGA rt a dng, t nhng dng cho gia nh ti cc dng dng cho doanh nghip va v ln vi kh nng lu tr trn mt thit b ln ti hng TetraByte. Trong s thit b lu tr vi dung lng 500GB l sn phm p ng tt nhu cu lu tr d liu ca DN qui m va ti Vit Nam. Thit k chc chn, cho php gn 2 cng vi dung lng qun l ti a l 500GB. Hn na vi kh nng h tr c ch Raid 0 v Raid 1, bn c th thit lp thit b tr nn c kh nng dung li tt hn. Thit b c qun l qua cc chng trnh duyt Web thng dng nh IE, FireFox v cho cc OS khc nh MAC, Linux. V bn c h tr mnh hn vi cng c Discovery Tool v b Iomega IAB Pro nhm gip bn qun l thit b hiu qu hn. Vi tc kt ni vo mng LAN l 1Gigabit, thit b p ng c tc lu tr cho mng LAN ca bn. Bn cnh vi giao tip m rng l cng USB v cng Firewire1394 cho php bn kt ni vi cc thit b khc nng cao kh nng lu tr d liu cho mng ln cao hn. V thit b cng h tr tnh nng hat ng ca mt PrintServer gip bn chia s my in trong LAN m khng thng qua PC khc. Vi mc gi tham kho 506 USD ( c gn 2 cng 250GB), ti th trng nc ngoi, thit b c mc u t kh hp l cho DN ca bn. 6. Thit b lu tr ca Buffalo: Gigabit LinkStation 400 GB HD-HG400 Buffalo c cc dng thit b lu tr cng kh a dng vi nhiu dung lng khc nhau p ng cc nhu cu lu tr a dng ca ngi s dng. T cc dng dnh cho gia nh ti cc dng Pro dnh cho DN c qui m kh ln vi dung lng lu tr ln ti con s TeTraByte.

85

Hnh 6.5: Gigabit LinkStation 400 GB HD-HG400 Thit b lu tr HD-HG400 l mt trong s cc thit b lu tr hu ch . Thit k lu tr vi dung lng 400GB v kt ni qua giao din LAN tc cao 10/100/1000MBps i cng phng thc qun l, chia s quyn truy cp cho cc ngi dng khc nhau thng qua chnh sch qun l theo User-Group, thit b p ng yu cu bo mt cho DN. S dng Memeo Easy Backup Software i km bn c th d dng Backup d liu ra cc thit b khc thng qua giao tip USB 2.0. Hay bn c th kt hp nhiu hn hai thit b ny sao lu gia chng vi nhau. Trn mng LAN nhm m bo thng tin c lu tr, sao lu hiu qu nht. Bn cnh , tch hp tnh nng lm PrintServer qua giao tip USB cng gip bn trin khai thm mt dch v hu ch trong mng LAN nhm gim thiu chi ph v nng cao hiu qu hot ng ca thit b. Thit b cng h tr vic lp lch cho qu trnh sao lu ra cc thit b lu tr gn ngoi v lp lch kim sot thi gian hot ng ca thit b. Thit k nh gn v tiu th t in nng, kh nng lu tr kh cao, thit b l mt la chn kh hon chnh cho vic lu tr, sao lu ca DN. im qua mt s thit b lu tr trn, chng ta nhn thy vic lu tr v sao lu ca DN s tr nn d dng hn khi s dng thit b NAS. Ty thuc yu cu, quy m ca mng LAN m bn c th chn cho mnh mt thit b lu tr ph hp. Vi yu cu lu tr ngy cng tng nh vy, thit ngh DN bn cng nn cn u t mt h thng lu tr, sao lu hiu qu nhm m rng hiu qu ca mng LAN v p ng tt cc yu cu v lu tr d liu trong ton mng LAN ca bn v nhm gim ti cho nhng Server hin hnh trong cng ty bn. V nh ni trn, nu DN bn cn mt trung tm lu tr, sao lu d liu tt, cc thit b lu tr SAN l mt gii php ti u cho yu cu ny ca bn. S dng phng thc ny, bn cn u t mt khon chi ph tng i cao so vi cc thit b DAS, NAS nhng b li hiu nng v tin cy ca h thng ca bn s t c n nh cao nht trong tt c cc phng thc sao lu.

III.

Xy dng k hoch phng chng Virus trn cc my tnh n

Trong thi i cng ngh thng tin ngy nay, thut ng virus my tnh khng cn xa l. Vic virus my tnh lan trn trn mng, thm nhp vo cc my tnh gia nh n l, cc h thng mng ca cc cng ty... xy ra thng xuyn.

86

 bo v an ton d liu, cng tc phng chng virus my tnh cn c quan tm ng mc. Sau y s hng dn cch s dng cc phn mm qut virus my tnh t hiu qu tt nht. Cc phn mm qut virus: Chng trnh qut virus cng c 2 loi trong nc (nh BKAV, D32) v nc ngoi (nh AVG, BitDefender, Norton Anti-virus, Virus Scan...). Mi loi u c u nhc im khc nhau. Nm c th mnh ca tng loi, bn s bo v my tnh ca mnh tt hn. Cc anti-virus s dng th vin mu virus nhn dng virus trn my tnh. Kh nng nhn dng virus ca anti-virus t l thun vi s virus c cp nht trong th vin v t l nghch vi tc , nhu cu s dng ti nguyn (CPU, b nh, a cng...). Do ch cp nht cc virus mi trong thi gian gn y nn th vin virus ca anti-virus ni nh, chy nhanh v t tn ti nguyn hn cc anti-virus ngoi. Mc d cng knh, chy chm, i khi lm gim hiu nng ca my nhng anti-virus ngoi khng h danh l cc st th ng gm ca virus my tnh t c ch kim. Mt anti-virus thng c 3 thnh phn: duyt qut, canh phng v cng c. Chc nng duyt qut (scanning) dng kim tra virus trn h thng a. y l chc nng chnh nn c cc anti-virus chm cht k lng. Trc khi qut virus, ngi s dng chn a, cy th mc hoc tp tin kim tra virus. khch hng st rut, qu trnh qut thng c nh sn xut t im bng cc mu hot hnh hoc bo biu sinh ng. Kt thc qu trnh qut, mt bo co ngn gn v kt qu kim tra virus trn h thng. Chc nng canh phng (auto-protect) dng kim tra virus ch nn. thm nhp vo my ca bn, virus phi s dng mt trong cc ca ng qua cc loi ly a ra c (nh a mm, CD-ROM, USB) hoc t mng (mng cc b, din rng, hu tuyn, v tuyn...). ng vai tr nhn vin bo v, chc nng ny kim sot cht ch cc ca vo-ra nhm pht hin sm cc virus ln vo my. Hiu v s dng ng mc cc tin ch ny, bn s khai thc c cc tnh nng c bit ca nh sn xut cung cp. Cc cng c thit yu ca mt anti-virus bao gm:

- Ty bin i tng qut: chn kiu tp tin, chn loi a, chn th mc... - Ty bin ng thi qut: qut s b hay cn thn, t ng x l virus hay ch xc nhn, c bo lu trc khi dit hay khng, c suy lun thng minh hay khng. - Lp lch qut: c yu cu qut t ng khng, qut vo lc no, mi khi ng hay tt my, gi gii lao hay tranh th lc my ri... - Qun l kho cch ly: cc i tng c cch ly, thi im cch ly, l do cch ly, cc bin php x l tip theo... - Danh sch virus: lit k cc virus c cp nht (online: xem trn Web, offline: xem ngay trn my). - Cp nht phn mm: ni dung cp nht (giao din, ng c hay c s d liu), cch thc cp nht (t ng hay th cng) La chn cc phn mm qut virus:

87

Vic u tin l chn cc hng sn xut phn mm chng virus bo v d liu qu gi trn my tnh bn. Bn nn s dng phi hp 2 loi chng trnh phng v chng virus trong v ngoi nc. Cc chng trnh phng chng virus trong nc vn hnh trn tru v t xung t nn bn c th s dng ng thi 2 phn mm BKAV ca Trung tm An ninh mng i hc Bch khoa H Ni (www.bkav.com.vn) v D32 (www.echip.com.vn). i vi cc chng trnh nc ngoi, bn ch nn s dng mt phn mm qut virus thi. Vic s dng nhiu anti-virus cng lc, nht l cc phn mm i hi nhiu ti nguyn h thng s lm gim ng k hiu nng ca my tnh. Ngoi ra, chi ph s dng cng l yu t la chn quan trng. Trong bi ny, chng ti gii thiu BitDefender (www.bitdefender.com), phn mm c t chc Topten Reviews bnh chn gii vng nm 2005 Sau khi ti phn mm v my, bn cn ci t chng. Cng ging nh cc ng dng khc, anti-virus s yu cu bn chn ng dn, chp nhn cc quy nh v bn quyn ri nhn nt ng ci t. C iu cn lu : sau khi ci t bn u tin vo my, bn cn b sung bn nng cp cho phn mm. Sau khi ci t hon tt, c th bn s s dng anti-virus c ngay hoc cn phi khi ng li my. S dng phn mm chng virus cng rt n gin. Nh cc ng dng thng thng khc, bn c th gi chng t Start/All Programs hoc kch hot vo biu tng ca phn mm ngay trn desktop. Khi giao din phn mm sn sng, nu ng cc thit lp mc nh ca nh sn xut, bn ch vic chn a cn kim tra ri bm nt ra lnh qut.

IV.

Xy dng k hoch phng chng Virus trn cc my tnh ni mng.

Vi vai tr qun tr h thng mng c hng chc hay hng trm my tnh trong mt cng ty hay doanh nghip, bn phi i mt vi rt nhiu kh khn: Trnh thnh tho my tnh, thc bo mt d liu ca ngi dng cha cao; s kh tnh ca nhn vin (h khng cn bit ngi qun tr lm g, min sao bt my ln l vo thng mn hnh lm vic m khng cn nhp username/password; my tnh c vn g nh mt d liu, chy chm v.v... tt c u ln u ngi qun tr mng). Ngoi ra, nu ban lnh o cng ty cha nhn thc c tm quan trng ca vn bo mt thng tin th qu l kh khn rt ln cho bn. C rt nhiu vn khng phi mt sm mt chiu c th gii quyt. Bi ton Gi s cng ty c khong 110 my tnh ni mng v 40 my tnh khng ni mng. Trn mi my s dng 1 trnh chng virus (antivirus) khc nhau, thm ch c my ci 2-3 trnh antivirus. iu quan trng l cc trnh antivirus ny u khng c cp nht. Vic s dng nhiu trnh antivirus khc nhau gy kh khn cho ngi qun tr trong vic theo di cc bn cp nht ca cc hng bo mt. Thm na, nu cp nht v x l s c cho tng my th rt mt thi gian, nh hng ti cng vic. Vn t ra l lm sao bit trong mng cng ty xut hin virus g, phng ban no, my no? Lm sao kim sot virus trong ton mng? Lm sao trnh antivirus my ngi dng lun c cp nht? Lm sao t lch qut virus ng lot ton mng? 1. Gii php Sau khi tm hiu mt s trnh antivirus, s dng th phin bn Symantec Antivirus Corporate Edition, s dng phin bn 8.0 (phin bn mi nht 9.0) c mt s c tnh sau: * Khi cp nht virus mi trn my Server th ton b cc my s dng phin bn client (my trm) u c cp nht.

88

* Hng ngy c th theo di s xut hin v s ly nhim virus g, my no? thi im? a v th mc b nhim? C th xut bo co v virus tng ngy v.v... * C th t lch qut virus trn cc my trm vo 1 thi im nht nh, theo di my no qut, my no cha. 2. Ci t 1. Ci t phin bn Symantec Antivirus Corporate Edition Server ti my ch qun l, sau khi ci t s c th mc chia s mc nh: Sav\clt-inst\Win32. 2. C 2 cch ci t trnh antivirus my trm: - Dng client to ra t th mc ni trn ci t ti cc my trm, - Dng chng trnh Symantec Antivirus Coporation Edition Client vi chn la l Managed bi my ch ci bn Antivirus Server. 3. Cu hnh my trm Chng ta cu hnh mt s chn la trn bn client nh sau: - Vo Configure -> File System Realtime Protection, tab Macro Virus v Non-Macro Virus chn Action 1 v 2 nh hnh 1a. - B chn la Display message on infected computer (khng hin th thng bo khi pht hin virus trn my ngi dng). - Nhn Advanced, Heuristics, chn Maximum level of Protection (hnh 1b) - t lch qut ton b cc my tnh trong mng. Chn New Scheduled Scan, Next, chn thi im qut, Next, chn a cn qut, Save (hnh 1c). 4. Lm vic trn my ch ANTIVIRUS a. Cp nht thng tin virus Theo di s xut hin ca cc loi virus mi v ti v bn cp nht Update Virus trn website www.symantec.com. C 4 cch cp nht thng tin virus, ngi qun tr c th chn mt cch ph hp vi mi trng lm vic (bn c th tham kho trang web http://service1.symantec.com/SUPPORT/ent-security.nsf/pfdocs/2002103012571948). - The Virus Definition Transport Method (VDTM) L gii php t ng phn phi bn cp nht virus. Vi VDTM, bn ch cn cp nht 1 ln trn my server bng cch s dng LiveUpdate hoc file .xdb, v sau server s t ng phn phi bn cp nht ti cc my client trong mng. -LiveUpdate L chng trnh kt ni ti server ca Symantec, ly v bn cp nht thng tin virus mi nht v thc hin cp nht cho my ang lm vic. Bn chy LiveUpdate ti my Symantec Server, sau phn phi ti cc my trm thng qua VDTM. Ch : chng ta c th t lch t ng cp nht trn my server. - File .xdb

89

Ti v file .xdb t Symantec Antivirus Server, chp vo th mc chia s VPHOME, thay i ngy ca file .xdb theo ng ngy cp nht. Chng trnh RTVSCAN.EXE trn cc my client s kim tra phin bn file .xdb mi v tin hnh cp nht c 10 pht 1 ln. -Intelligent Ti v file dng yyymmdd-version-x86.exe, chy bn cp nht ny trn my server. Sau ton b cc my client trong mng s cp nht thng qua VDTM. b. Theo di virus trn mng Thng qua chc nng Virus History, mi ngy ngi qun tr c th theo di tnh trng virus trn ton mng ca cng ty thng qua cc thng tin c gi ln Antivirus Server t cc trnh Antivirus Client. Chng ta c th bit c my no ang b nhim virus g? Phng ban no? My tnh no? Th mc no? dit c hay cha? v.v... (hnh 2a) c. Theo di lch qut virus trn cc my client Dng chc nng Scan History theo di qu trnh qut virus trn cc my tnh ngi dng. 5. X l s c a. My ch Antivirus Server gp s c Trng hp my ch ci Antivirus Server thay i a ch IP (hay gp s c), khi cc my client khng nhn thy my ch (tip tc kim tra a ch IP c) v khng nhn c bn cp + T Start -> Run, g services.msc -> OK + chn Symantec Antivirus Server +nhn Stop sau nhn Start - Cp nht li a ch IP cu my ch cho cc my client + T Start -> Run, g regedit -> OK + sau chn HKEY_LOCAL_MACHINE/Software/Intel/Landesk/VirusProtect6/CurrentVersion/AddressCac he/ y l thng tin v my ch client kt ni n. + Chn , trong t kho Address_0 cha a ch IP my ch c dng: 00 04 20 00 0b 97 00 00 9b 40 7b fd 00 00 00 00 00 00 00 00 00, b qua 9 cp s u, t cp th 10 tr i bn hy i a ch IP my ch mi t c s 10 sang c s 8 ri ghi vo kho trn. V d: 9b=155 40=64 7b=123 fd=253 cho a ch my ch 155.64.123.253. Nu ci mi Antivirus Server s to ra file Grc.dat mi, dng chng trnh notepad m file, tm dng Address_0 v ly gi tr ti dng ny thay v phi chuyn i c s nh trn. + Thot khi Registry Editor - Cp nht li tn my (naming resolution) + Symantec Antivirus khng s dng NetBIOS truyn thng, client v server khng s dng giao tip truyn thng APIs trn nn tng Microsoft Network m s dng Symantec Antivirus protocol. + Tn my tnh l thnh phn cn thit cho Symantec Antivirus lm vic. Symantec Antivirus theo di tn my thay i v s t cp nht. + Bn c th dng lnh ping kim tra chnh xc tn my server v client. - Cp nht li a ch IP ca my ch trn file Grc.dat (nu IP thay i) + Dng chng trnh Notepad m file Grc.dat, tm dng Address_0 v cp nht a ch IP ca my ch.

90

b. My client gp s c C th my client gp s c khng cp nht c bn virus mi, khng lin kt c vi my Antivirus Server. Bn hy kim tra IP lin kt n server c chnh xc hay khng nh trn. Nhng tt hn ht l bn g b bn c, ly bn client mi to ra trn server ci t li. 6. Kt lun u im: - Cc chng trnh Antivirus Server/Client lun c cp nht. - Ngi qun tr theo di c s xut hin cc loi virus trong mng. - Nu trnh Antivirus Client khng c tc dng vi 1 loi virus no , chng ta c th tm kim cc cng c mnh hn chuyn ti my b nhim, yu cu ngi s dng chy cng c dit virus. - Do cu hnh trnh Antivirus Client nh trn, trong qu trnh qut Realtime nu pht hin virus s khng c cnh bo lm ngi dng hoang mang. Ch ngi qun tr theo di v pht hin. Khuyt im: - Nu my no b nhim qu nng th phi trc tip x l ti my - Khuyn co ngi dng khng nn chia s th mc ti my. Nu chia s file nn s dng FTP server. - C th c mt s virus m m hnh trin khai Client/Server khng pht huy tc dng. phng v chng virus hiu qu, bn phi kt hp trin khai mng cng ty theo m hnh domain thi hnh cc chnh sch bo mt trn cc my trm, song song vi vic khuyn co nhn vin chy cc bn v li h iu hnh. Ngoi ra, vn nhn thc ca ngi dng, chnh sch bo mt trong cng ty cng gp phn lm cho mng ca bn an ton hn.

V.

Xy dng k hoch chng r r thng tin.

Cc thng tin ca bn c th b r r bt c lc no nu nh khng c s phng nga. Vy c cch no hu hiu nht c th t bo v mnh trnh khi s rnh rp ca cc hacker v s e do ca virus my tnh? Cc bn c th thc hin cc bin php sau t bo v my tnh ca mnh khi duyt web. 1. Ci t phn mm bc tng la gia nh (firewall) v phn mm chng virus. 2. Cn thn khi gi thng tin c bit l a ch, s in thoi, tn tui ca nhng thnh vin trong gia nh bn. 3. Khng ti xung my tnh bt c th g tr khi bn tin tng vo ngi gi v ngun gc file gi km. Nhng e-mail l c th cha cc phn mm gin ip v file nh km virus... 4. S dng mt a ch e-mail ph n trnh trng hp b bom th". 5. Khng cho trnh duyt tr thnh mt k a tin. 6. Bn hy kim tra chnh sch v b mt c nhn ca Website m bn gh thm. 7. Khng chp nhn cc cookie khng cn thit mc d cc cookie gip cho bn mua hng trc tuyn d dng. 8. M ho cc d liu nhy cm, chng hn nh s th tn dng hoc cc thng tin ti chnh khc qua Internet. 9. S dng mt n danh khi truy cp vo Internet.

91

10. Xa cache sau khi lt Web bng cch vo Preferences ca trnh duyt Netscape hoc thc n Tool/Internet Option ca trnh duyt IE. Tuy nhin i vi mt h thng th vic bo mt thng tin v an ton h thng thng gp kh khn hn rt nhiu. Mt s chuyn gia bo v mng a ra li khuyn: Cc doanh nghip cn phi thit lp chnh sch v bin php bo mt r rng. - Trang b cho nhn vin y nhn thc v vn bo mt v cc bin php phng nga. - Ghi chp nht k hot ng ca h thng v thnh lp i phn ng nhanh kp thi pht hin cc v xm nhp. - Cp nht cc bn sa li, nng cp cc phn mm trn my ch, c bit l cp nht cc chng trnh dit virus. - Cu hnh ng cc my ch Web, bc tng la (firewall) v thit lp danh sch kim sot truy cp b nh tuyn (router), hoc danh sch kim sot vic truy cp ca cc ng dng mi.

VI.

Xy dng bn d phng t ng trn cc h thng my tnh.

Sao lu d liu mt cch t ng vi File Backup Watcher 2.7. Vi FBW, vic sao lu ca bn s c t ng ho hon ton theo thi gian bn sp t v bn ch cn thit lp mt ln ngay t by gi cho mi cng vic sao lu sau ny. FBW l mt phn mm dng shareware, tng thch vi mi h iu hnh, bn c th ti bn dng th ca chng trnh ti a ch http://www.download.com/File-BackupWatcher/3000-2242_4-10516518.html. 1. Thc hin sao lu d liu Sau khi ci t v khi ng chng trnh, bn s hon ton b chinh phc bi giao din tuyt p v rt chuyn nghip ca FBW. Vic sao lu cc d liu cn thit cng c thc hin rt nhanh chng. Gi s bn mun sao lu cc d liu th mc Documents v bn mun c 1 ngy chng trnh s t ng cp nht cc d liu mi th mc ny, sao lu chng vo file c hoc to file sao lu mi. Bn thc hin nh sau: - Chn Profile > New Profile to d n mi. - Chn tip ch sao lu l Express Setup, nhn Next sang ca s tip theo. Trong khung Name bn nhp tn cho file sao lu, nu mun thm cc ghi ch ring cho file sao lu bn nhn chn Add your comments v ghi ni dung vo trong khung di. Nhn Next ln na sang ca s Source Folder. Mc ny bn chn la th mc hoc file s sao lu. Nhn vo mu xanh cui dng v sau dn n v tr folder chn, khi bn nhn Next tip mt ln na, mc Destination Folder s hin ra cho php bn chn la folder ch ct gi cc file sao lu. - Mc Methol s cho bn 2 chn la ch sao lu: Manual (thc hin th cng), hay Automatic (t ng). Nu bn chn ch l Automatic, mt bng lch s hin ra trong bn c th tu chn ngy thng, gi xc nh chng trnh t ng thc hin cng vic

92

sao lu mt cch nh k. V d: mun vic sao lu din ra hng ngy bn chn ngy v gi, tng thng th chn thng v gi... n ng thi im chn, chng trnh s a ra hp thng bo ang to im checkpoint (im sao lu) cho bn thy. Nhn Finish kt thc qu trnh thc hin sao lu, bn s thy file sao lu hin ra trong bng lin k. 2. Phc hi d liu S c cc thng tin c th v cc file sao lu mi c to, nu mun phc hi file no thi gian no xc nh, bn chn file v chn Restore. Ngoi ra trn giao din chng trnh cn tch hp cng c ghi a d liu CD/DVD hoc to file ISO. Khi kch hot ch ny, ca s chng trnh s c chia thnh 2 khung ring bit nh cc trnh ghi a khc c tn PC v CD. Mun to file ISO bn chn ISO v mun ghi ra a CD/DVD bn nhn mi tn s xung, chn a ghi ca mnh, sau ko - th d liu cn ghi vo khung th 2. Cu hi v bi tp
1. 2. 3. 4. 5. 6. 7. 8. Xy dng k hoch bo mt h thng thng tin trn my tnh n v h thng mng. Xy dng k hoch bo mt h thng thng tin trn h thng mng. Xy dng k hoch sao lu d liu trn my tnh n Xy dng k hoch sao lu (back up) d liu trn cc h thng my tnh ni mng Xy dng k hoch phng chng Virus trn cc my tnh n Xy dng k hoch phng chng Virus trn cc my tnh ni mng. Xy dng k hoch chng r r thng tin. Ci t v sao lu d liu mt cch t ng vi File Backup Watcher 2.7.

93

TI LIU THAM KHO

1. Virus tin hc huyn thoi & thc t Tc gi: Ng Anh V - Nh xut bn: Tng hp TP. HCM - Nm xut bn: 2005 - S trang: 185tr 2. David J.C. Mackey, Information Theory, Infernce, and Learning Algorithms, CamBridge University Express-2003. 3. G.J.ChaiTin, Algorithmic Information Theory, CamBridge University Express-1992. 4. Sanford Goldman, Information Theory. 5. Hans-Peter Knigs: IT-Risiko-Management mit System (Qun l him nguy cng ngh tin hc c h thng) Vieweg 2005, ISBN 3528058757 6. Hartmut Pohl, Gerhard Weck: Einfhrung in die Informationssicherheit (i cng v an ton thng tin) Oldenbourg 1993, ISBN 3486220365 7. Christoph Ruland: Informationssicherheit in Datennetzen (An ninh thng tin trong mng li d liu) VMI Buch AG, Bonn 1993, ISBN 3892380813 8. Gerd Wolfram: Brokommunikation und Informationssicherheit. (Thng tin vn phng v an ton d liu) Vieweg, Wiesbaden 1986, ISBN 3528036044 9. Grtz, Stolp: Informationssicherheit im Unternehmen. Sicherheitskonzepte und -lsungen in der Praxis (An ton thng tin trong doanh nghip. Phng n v gii php cho an ton thng tin) Addison-Wesley 1999, ISBN 3827314267 10. http://www.download.com/File-Backup-Watcher/3000-2242_4-10516518.html 11. http://www.bkav.com.vn 12. http://www.bitdefender.com 13. http://www.inference.phy.cam.ac.uk/mackay/info-theory/course.html. 14. http://en.wikipedia.org/wiki/Information_theory. 15. http://www-2.cs.cmu.edu/~dst/Tutorials/Info-Theory/. 16. http://cscs.umich.edu/~crshalizi/notebooks/information-theory.htm 17. http://www.lecb.ncifcrf.gov/~toms/paper/primer/primer.pdf. 18. http://www.cs.ucl.ac.uk/staff/S.Bhatti/D51-notes/node27.html. 19. http://guest.engelschall.com/~sb/hamming/. 20. http://www2.rad.com/networks/1994/err_con/hamming.htm

94