摘要
不断演进的云环境给安全体系结构设计带来了挑战,文章首先回顾了现有体系结构研究成果,从设计动机、主要思想、典型方案及评价4个角度进行了详细说明。然后借鉴多种先进技术思想,设计了一个具有可定义、可重构、可演进的云安全体系结构,分析表明了该体系结构的合理性和先进性。最后对云安全体系结构的进一步研究提出了建议。
The evolving cloud environment has brought great challenges to the design of security architecture.This paper analyzes the existing work in detail from four aspects of design motivation,typical scheme,main ideas and evaluation,clarifies the common characteristics of the existing work.Then,a definable,reconfigurable and evolvable cloud security architecture is designed based on many advanced technology ideas,and the analysis shows the rationality and advanced nature of the new architecture.At last,it points out the further research directions of the current security architecture research work.
作者
余小军
吴亚飚
张玉清
YU Xiaojun;WU Yabiao;ZHANG Yuqing(Beijing Topsec Science&Technology Inc.,Beijing 100085,China;University of Chinese Academy of Sciences,Beijing 100049,China)
出处
《信息网络安全》
CSCD
北大核心
2020年第9期62-66,共5页
Netinfo Security
关键词
云安全体系结构
责任共担
面向服务化
云可信
软件定义
cloud security architecture
shared responsibility
service-oriented
cloud trust
software-defined