信息网络安全

信息网络安全 ›› 2015, Vol. 15 ›› Issue (9): 20-24.doi: 10.3969/j.issn.1671-1122.2015.09.005

• 优秀论文 • 上一篇    下一篇

一种基于SDN技术的多区域安全云计算架构研究

王刚()   

  1. 网神信息技术(北京)股份有限公司,北京 100085
  • 收稿日期:2015-07-15 出版日期:2015-09-01 发布日期:2015-11-13
  • 作者简介:

    作者简介: 王刚(1976-),男,四川,硕士,主要研究方向:访问控制理论与技术。

Research on Multi-zone Secure Cloud Computing Fabrics Based on SDN Technology

Gang WANG()   

  1. Legendsec Information Technology (Beijing) Inc., Beijing 100085, China
  • Received:2015-07-15 Online:2015-09-01 Published:2015-11-13

RichHTML

4

PDF (PC)

227

摘要:

文章提出一种在云计算环境中实施云安全防护的方案。方案在原有的业务云之外,用云技术建设安全云,在业务云中部署安全代理,通过软件定义网络(SDN)技术连接业务云、安全云和安全代理,并通过安全代理把业务云动态划分为逻辑隔离的多个业务区域。方案不依赖于业务云的实现方式,除初始近乎零配置的安全代理外,不改变业务云的软硬件结构,具有易部署、易维护、安全性更高等特点。

关键词: 安全云, 软件定义网络, 安全即服务

Abstract:

This paper presents a project of implementing cloud security protection in cloud computing environment, which can build secure cloud by using cloud technology and deploy safety procedure in cloud operation. By using SDN technology, the project can connect cloud operation, secure cloud, and safety procedure, and divides cloud operation into several logic isolation service areas dynamically through safety procedure. The project is independent of cloud operation implementation. Besides the almost zero configuration safety procedure, the project doesn’t change the structures of hardware and software of cloud operation, which has the features that is easy to deploy and maintain and security is high.

Key words: secure cloud, SDN, security-as-a-service

中图分类号: