1、专业论文翻译论文课题:Inside Encrypting File System指导教师:班级:姓名:Inside Encrypting File SystemThe next step EfsRpcEncryptFileSrv performs is to create a log file into which LSASRV will Record the progress of the encryption process.EfsRpcEncryptFileSrv creates the log file on the same d
2、rive as the file that EFS will encrypt, and places the log file under the rootdirectory's subdirectory System Volume Information. The log file usually has the name efs0.log, but if otherfiles are undergoing encryption, EfsRpcEncryptFileSrv replaces the number 0with increa
3、sing numbers until LSASRV can create a unique log file for the current encryption.Win2K's cryptography APIs rely on information that a user's Registry profile stores, soEfsRpcEncryptFileSrv next uses the LoadUserProfile API of userenv.dll (User Environment DLL) to load th
4、e profile into the Registry of the user EfsRpcEncryptFileSrv is impersonating. Usually the user profile is already loaded, because winlogon.exe loads a user's profile when a user interactively logs on. However, if you use the Microsoft Windows NT Server 4.0 Resource Kit S
5、u utility or the Win2K RunAs command to log on to a different account, when you try to access encrypted files from that account, the account's profile might not load.EfsRpcEncryptFileSrv's next step is to call another LSASRV function, EncryptFileSrv, to carry out the rest
6、 of the encryption process for the file. EncryptFileSrv begins by querying NTFS about which data streams exist within the file, noting the result for lateruse. NTFS supports alternate named data streams in addition to the default unnamed stream in which NT typically store
7、sdata. Win2K makes heavy use of alternate streams to support compound document storage (i.e., Native Structured Storage), as does Services for Macintosh which uses alternate streams to implement Macintosh resource forks. EFS must encrypt all of a file's data streams—not j
8、ust the stream that most applications see. EncryptFileSrv calls the internal function GenerateFE
