建筑行业信息系统建设中关于云函数攻击的防御体系研究

Research on the Defense System for Cloud Function Attacks in the Construction Industry Information System Construction

随着建筑业信息系统建设的有序推进,物联网、大数据、人工智能等技术在不断赋能智能建造的过程中,也逐步引起攻击者对建筑行业应用系统、物联网平台和大数据系统的关注,导致产生大量网络安全攻击事件。云函数技术是近几年新发展出来的一种无服务器执行环境的云端技术,其带来灵活性、高并发性的同时,自身的隐秘性亦广受攻击者欢迎。目前云函数技术已发展出多种攻击手段,如代理网络爬虫、指纹识别、密码破解和C2远控等,由于其自身存在天然动态IP和可伪造源的特点,为网络安全运营工作带来了溯源难、防护绕过等挑战。而基于零信任安全模型在网络环境中强调对于用户和设备的持续验证和控制。通过强化的身份验证、访问控制、实时监控与审计,以及行为分析等手段,确保只有经过授权的用户或应用程序才能访问业务系统,有效地防止了潜在的隐藏攻击行为,从而保护了业务系统的安全性。

With the orderly progress of information system construction in the construction industry,technologies such as the Internet of Things,big data,and artificial intelligence have gradually attracted the attention of attackers to the application systems,Internet of things platforms,and big data systems of the construction industry in the process of constantly enabling smart construction,resulting in a large number of network security attacks.Cloud function technology is a newly developed cloud technology for serverless execution environments in recent years.While it brings flexibility and high concurrency,its privacy is also widely welcomed by attackers.At present,cloud function technology has developed a variety of attack methods,such as proxy web crawlers,fingerprint identification,password cracking and C2 remote control.Due to its own characteristics of natural dynamic IP and forged sources,it has brought great challenges to network security operations.Challenges include difficulty in traceability and bypassing protection.The zero-trust security model emphasizes continuous verification and control of users and devices in the network environment.Through enhanced authentication,access control,real-time monitoring and auditing,and behavioral analysis,it is ensured that only authorized users or applications can access the business system,effectively preventing potential hidden attacks and thus protecting the business system,safet.