摘 要:阐述了政务云面临的安全威胁和风险,对政务云环境下目前主流的安全技术实践进行了研究和分析,主要分析了政务云环境下东西向流量面临难以检测、检测影响性能、检测结果滞后等技术挑战,详细介绍了虚机东西向引流及大数据分析、流量策略控制、业务自熔断、安全态势感知等关键技术的设计架构和实践效果,解决了云内威胁检测存在盲区的问题,提升了政务云环境的安全性。
关键词:云计算;东西向流量;策略引流;流探针;智能威胁检测
DOI:10.19850/j.cnki.2096-4706.2022.06.028
中图分类号:TP39 文献标识码:A 文章编号:2096-4706(2022)06-0110-05
Research and Project Practice of East-West Flow Monitoring Technology of Government Cloud
YANG You
(Nanjing Information Center, Nanjing 210019, China)
Abstract: This paper expounds the security threats and risks faced by the government cloud, studies and analyzes the current mainstream security technology practice in the government cloud environment, mainly analyzes the technical challenges faced by the eastwest flow in the government cloud environment, such as difficult detection, detection affecting performance and lagging detection results, and introduces in detail the design architecture and practical effect of key technologies of the East-West drainage of virtual machine, big data analysis, flow strategy control, business self fusing, security situational awareness and so on. It solves the problem of blind area in cloud threat detection and improve the security of government cloud environment.
Keywords: cloud computing; east-west flow; strategic drainage; flow probe; intelligent threat detection
参考文献:
[1] 马力,祝国邦,陆磊 .《网络安全等级保护基本要求》(GB/T 22239—2019)标准解读 [J]. 信息网络安全,2019(2):77-84.
[2] 英锋 . 基于卷积神经网络的网络异常检测方法研究 [J]. 现代信息科技,2021,5(12):94-96+100.
[3] 国家市场监督管理总局,国家标准化管理委员会 . 信息安全技术 网络入侵检测系统技术要求和测试评价方法:GB/T20275-2021 [S].(2021-12-15).http://news.21csp.com.cn/c905/202112/11411168.html.
[4] 张洁 . 我国电子政务云信息平台安全研究 [D]. 武汉 中南民族大学,2013.
[5] 英锋 . 网络异常流量检测方法研究 [J]. 现代信息科技,2021,5(11):14-17.
作者简介:杨优(1978—),男,汉族,江苏南京人,高级工程师,本科,研究方向:政务信息化建设。