摘要
当前重载铁路业务系统部署至云平台是发展趋势,为探讨重载铁路云平台的安全防护问题,保障重载铁路云平台及云上业务系统安全稳定地运行,通过分析云平台架构在重载铁路应用环境下的安全性需求,以防范隐私数据泄露、防范互联网入侵及攻击、保障云平台自身安全性、保障业务系统安全性为核心要点,从云平台架构安全保障、数据隐私保护、业务系统云安全保障3个方面制定了相应的安全策略,实现对云平台架构中物理层、云平台层以及云端应用层的安全防护,全面覆盖云平台侧及云用户侧,构建出一个安全纵深防护体系,有效保护重载铁路云端业务系统及隐私数据的安全。
Given the current trend of deploying heavy-haul railway business systems onto cloud platforms,this paper explored the security protection issues of heavy-haul railway cloud platforms to ensure that the heavy-haul railway cloud platforms and business systems on the cloud platforms operate safely and stably.The paper analyzed the security requirements of cloud platform architecture in heavyhaul railway application environments,with a focus on preventing privacy data leaks,guarding against internet intrusions and attacks,and ensuring the security of the cloud platform itself and the business systems.The paper formulated corresponding security strategies from three aspects:guaranteeing the security of cloud platform architecture,protecting data privacy,and ensuring the security of business systems on the cloud platforms.These strategies achieved security protection for the physical layer,cloud platform layer,and cloud application layer within the cloud platform architecture,covering both the cloud platform side and the cloud user side.Consequently,a deep and comprehensive security protection system was established to better safeguard the security of heavy-haul railway business systems on the cloud platforms and private data.
作者
单伟
王林涛
杨前进
蔺诗瑶
刘江
SHAN Wei;WANG Lintao;YANG Qianjin;LIN Shiyao;LIU Jiang(Shaanxi Jingshen Railway Co.,Ltd.,Yulin 719000,Shaanxi,China;Transport Command and Information Technology Research Institute,CRSC Research&Design Institute Group Co.,Ltd.,Beijing 100070,China)
出处
《铁道货运》
2024年第11期59-66,共8页
Railway Freight Transport
基金
陕西铁路物流集团有限公司科研项目(2021SMHKJ-A-J-06-01)。
关键词
重载铁路
云平台
云安全
隐私保护
高可用
Heavy-Haul Railway
Cloud Platform
Cloud Security
Privacy Protection
High Availability