摘要
在当前云网融合的新形势下,作为云原生技术不可或缺的持续交付、DevOps、微服务和容器技术正在被广泛使用。采用云原生技术和管理方法,为业务应用的云端部署和高效持续的服务带来了便利,但同时也增加了更多的安全风险。云原生应用的供应链安全已经关系到整个云安全体系的建立。文章研究云原生应用供应链的现状,对云原生应用的特点进行分析,针对性地提出云原生应用供应链的安全风险防护方案,为提升云原生应用的供应链安全提供参考,旨在确保云原生应用的安全,进而提高云端环境的安全防护水平。
In the current new situation of cloud-network integration,continuous delivery,DevOps,microservicesand container technologies,which are indispensable for cloud native technologies,are being widely used.The adoption of cloud native technology and management methods brings convenience to the cloud deployment of business applications and efficient and continuous services.While bringing efficiency and convenience to the use of business applications,it also adds more security risks.The supply chain security of cloud-native applications has been related to the establishment of the entire cloud security system.This article studies the current status of the cloud-native application supply chain,investigates the characteristics of cloud-native applications,and proposes a targeted security risk protection plan for the cloud-native application supply chain,and provides a reference for improving the supply chain security of cloud-native applications.To ensure the security of cloud-native applications,and to improve the level of security protection of the cloud environment.
作者
郭新海
张小梅
刘安
丁攀
Guo Xinhai;Zhang Xiaomei;Liu An;Ding Pan(China Unicom Research Institute,Beijing 100048,China)
出处
《信息通信技术》
2021年第4期39-43,共5页
Information and communications Technologies
关键词
云原生应用
供应链
安全
风险
防护
Cloud Native Application
Supply Chain
Security
Risk
Protection
