摘要
安全漏洞问题是众多的云安全问题中非常重要的一部分。目前针对网络安全漏洞扫描的软件或者系统不能够很好的适用于云计算网络,而为了满足在云环境下的分布式漏洞扫描需求,需要实现对多扫描节点的全面管理,所以给出了一种基于分布式虚拟节点管理的云安全漏洞扫描系统研究方案,通过分析扫描节点的生命周期和基于此生命周期的扫描节点工作流,着重设计了虚拟扫描节点在其生命周期各阶段的管理策略,并接受管理平台的即时监控。该方案能够根据不同的任务调度策略合理分配扫描任务以及快速检测异常扫描节点,从而实现任务合理迁移和扫描节点的回收。
Security vulnerabilities are very important parts of cloud security issues.However,the systems for network vulnerability scanning are currently not well suited for cloud computing network.In order to meet the needs of distributed vulnerability scanning in a cloud environment,it is necessary to achieve the overall management of the multi-scanning nodes.So a research scheme for the cloud security vulnerability scanning system based on distributed virtual nodes management was proposed.The method analyzes the life cycle of the scanning nodes and the work flow based on it.It focuses on the design of virtual nodes management strategies at each stage of its life cycle and accepts the real-time monitoring from management platform.Thus,the proposed scheme could provide rational allocation of scanning tasks and quick detection of abnormal scanning nodes depending on different task scheduling strategies,and also could realize the rational move of scanning tasks and the retrieve of scanning nodes.
作者
廖金菊
冯光辉
LIAO Jin-ju FENG Guang-hui(School of Information Engineering, Zhengzhou University of Industrial Technology, Zhengzhou 451150, China)
出处
《中国电子科学研究院学报》
北大核心
2016年第5期483-489,共7页
Journal of China Academy of Electronics and Information Technology
基金
河南省科技厅发展计划(142102110088)
关键词
云安全
漏洞扫描
虚拟节点管理
分布式
cloud security
vulnerability scanning
virtual nodes management
distributed
