基于数据流的云服务安全性评估技术研究

发布时间：2018-03-16 19:31

本文选题：数据流　切入点：云计算　出处：《哈尔滨工业大学》2012年硕士论文　论文类型：学位论文

【摘要】：“网络即计算机”的想法早在80年代就被Sun公司（Sun Microsystems）提出过，可谓是云计算思想的鼻祖，而直到2006年Google的CEO施密特才在搜索引擎大会（SES San Jose2006）上正式提出了“云计算”的概念，使其迅速成为了计算机领域最火的关键词。云计算彻底改变了电子信息产业的经营模式和发展方向，它使用规模庞大的服务器集群组成资源池提供给用户几近无限量的计算和存储能力，它不仅为云的开发者带来了巨大的经济效益，而且改变了众多中小企业的经营模式，同时它节能环保的特点也非常符合当今经济发展的需求。在云计算给人们带来便捷服务和经济利益的同时，云计算所带来的新的安全威胁也在深深的困扰着用户和企业，由于云计算的组织架构和服务模式较传统的主机和服务器有着天壤之别，云中的安全风险来自各方各面，因而传统的安全措施和风险管理技术在云平台上存在各方面的局限性，而各大IT公司为云计算所开发的安全工具一般都只能针对某个特定“云”的特定问题，而没有一个通用而有效的解决方案。而且现有的针对云计算的风险评估只能针对整个云平台来进行，不能细化到云平台上单个服务的安全状态。因此本文提出一种针对云上服务的风险评估方法，通过分析服务的历史行为量化评估威胁出现的可能性。本文提出的方法通过跟踪和监控服务的行为，从中提取出代表服务行为的数据流，，并通过与服务正常行为即服务模式的对比，识别出其中隐藏的威胁与风险，并用历史行为中出现威胁的概率来量化评估威胁的程度。因为基于数据流的方法监控数据在不同服务与进程间的流动，所以此方法能够同时评估来自云平台内部和外部的威胁，包括来自云平台的管理者、用户和服务提供商的威胁，因此本文提出的方法适合于云计算环境中的风险评估。最后通过模拟云服务，实验证明了此方法的可行性，为云计算中的风险评估提出了一种新的思路，提供一种通用的方法，为云计算安全管理研究提供了参考。
[Abstract]:The idea of "network as a computer" was put forward by Sun as early as 80s. It can be said that it is the originator of cloud computing. It was not until 2006 that CEO Schmidt of Google formally put forward the concept of "cloud computing" at the search engine conference SES San Jose2006. Cloud computing has completely changed the business model and development direction of the electronic information industry. It uses a large server cluster to form a pool of resources to provide users with almost unlimited computing and storage capabilities. It not only brings tremendous economic benefits to cloud developers, but also changes the business model of many small and medium-sized enterprises. At the same time, its energy-saving and environmental protection features are also very in line with the needs of today's economic development. Cloud computing brings people convenient services and economic benefits, at the same time, cloud computing brings new security threats also deeply perplexing users and enterprises. Because the organizational structure and service mode of cloud computing are different from the traditional hosts and servers, the security risks in the cloud come from all sides, so the traditional security measures and risk management technology have various limitations on the cloud platform. The security tools developed by major IT companies for cloud computing are generally limited to a specific "cloud" issue. There is no universal and effective solution. And the existing risk assessment for cloud computing can only be done for the entire cloud platform, The security status of a single service on a cloud platform cannot be refined. Therefore, this paper proposes a risk assessment method for services on the cloud, which quantifies the possibility of threat by analyzing the historical behavior of the service. The method proposed in this paper extracts the data stream representing the service behavior by tracking and monitoring the behavior of the service, and identifies the hidden threats and risks by comparing with the normal service behavior namely the service pattern. Because a data-flow based approach monitors the flow of data between services and processes, this method can assess threats from both inside and outside the cloud platform at the same time. The method proposed in this paper is suitable for risk assessment in cloud computing environment. Finally, the feasibility of this method is proved by simulating cloud services. This paper provides a new idea for risk assessment in cloud computing, a general method and a reference for the research of cloud computing security management.
【学位授予单位】：哈尔滨工业大学
【学位级别】：硕士
【学位授予年份】：2012
【分类号】：TP309

【参考文献】