摘要
针对开放软件即服务(SaaS)平台网络安全性差的问题,文中基于软件定义网络(SDN)技术,结合国内外SDN的研究现状和开放Saa S平台的特点,自顶而下设计了一套基于SDN的开放Saa S平台网络安全体系。分析了系统物理和功能模型以及协同模型,并设计了相应的系统体系结构。平台经过封装后,可使用户无需了解底层接口和相关安全技术,只需使用上层提供的接口即可进行安全体系设计与功能实现,能满足平台构建对动态性、开放性、强扩展性和高安全性的需求。最终通过系统典型实例验证了,该网络安全体系的实用性与有效性。
Combined with the characteristics of the open software as a service(SaaS)platform as well as researches on the software defined network(SDN),a set of network security architecture for open Saa S platform based on the SDN technology is top-down designed,aiming to solve the network security problem of Saa S platform. The physical and functional model and cooperation model are analyzed,and the corresponding architecture of system is designed. After the package of the platform,the user can ignore the underlying interface and related security technologies and use the upper interface to design and complete functions of the security system,satisfying the dynamic,openness,strong scalability and high security requirements for the building of the SaaS platform. The practicability and validity of this network security architecture are verified by a typical example,providing references values for designs of other open SaaS platform.
出处
《电子设计工程》
2017年第23期85-89,93,共6页
Electronic Design Engineering
关键词
软件即服务
软件定义网络
网络安全体系
网络防护
software as a service
software defined network
network security architecture
network defense
