摘要
针对云服务信息安全质量评估中缺少指标体系和度量模型的问题,重点提出和分析了云服务中的可信连接、计算安全、数据保护和虚拟资源控制等信息安全指标,针对这些信息安全指标,分析了面向可信云的信息安全度量模型,提出一种云服务的间接度量模型,通过间接度量模型,可以对云服务的信息安全进行实时间接评估。
Due to cloud services information security quality evaluation systems lacking indictor systems and metric models,trusted connection,computing security,data protection,virtual resource control and other information security indicators were analyzed.Information security metrics models were analyzed for trusted clouds based on the information security indicators.Moreover,an indirect metric model for cloud services was proposed to real-time assess the information security for cloud services indirectly.
作者
陆月明
张志辉
LU Yue-ming ZHANG Zhi-hui(School of Information and Communication Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China)
出处
《网络与信息安全学报》
2016年第7期18-25,共8页
Chinese Journal of Network and Information Security
基金
国家重点研发计划基金资助项目(No.2016YFF0204001)~~
关键词
云服务
信息安全质量评估
度量模型
间接度量模型
cloud service
information security quality evaluation system
metric models
indirect metric model
