| 基于小云审大云的云平台可信评测体系结构与技术研究 |
| |
| 作者姓名: | 刘川意 潘鹤中 梁露露 王国峰 方滨兴 |
| |
| 作者单位: | 1. 哈尔滨工业大学(深圳)计算机科学与技术学院,广东 深圳 518055;2. 北京邮电大学计算机学院,北京 100876;3. 中国信息安全测评中心,北京 100085;4. 东莞电子科技大学电子信息工程研究院,广东 东莞 523000 |
| |
| 基金项目: | 国家高技术研究发展计划("863"计划)基金资助项目(No.2015AA016001);广东省产学研合作基金资助项目(No.2016B090921001);山东省自主创新及成果转化专项基金资助项目(No.2014ZZCX03411)~~ |
| |
| 摘 要: | 提出一种“小云审大云”的云平台可信评测架构,通过引入独立第三方对云平台的可信性进行动态、实时的远程可信数据收集、验证、审计和评价。采用数据流可视化、监控与脱敏技术保障租户数据权益,为租户提供选择可信云平台的依据,为云平台提供证明自身可信的凭据。并突破以下关键技术:1)基于独立第三方的数据采集、行为接入、API代理;2)持续、实时的远程数据收集和数据分析;3)非强侵入式证据收集。
|
| 关 键 词: | 云计算 可信评测 权限管控 数据脱敏 |
Cloud Trustworthiness Evaluation as a cloud service:architecture,key technologies and implementations |
| |
| Authors: | Chuan-yi LIU He-zhong PAN Lu-lu LIANG Guo-feng WANG Bin-xing FANG |
| |
| Affiliation: | 1. School of Computer Science and Technology,Harbin Institute of Technology (Shenzhen),Shenzhen 518055,China;2. School of Computer Science,Beijing University of Posts and Telecommunications,Beijing 100876,China;3. China Information Technology Security Evaluation Center,Beijing 100085,China;4. Dongguan University of Electronic Science and Technology Electronic and Information Engineering Institute,Dongguan 523000,China |
| |
| Abstract: | A "big clouds audited by a small cloud" scheme was proposed,by introducing an independent trusted third party (TTP) dealing with run-time data collection,verification,audit and evaluation remotely,in a continuous and data-driven model,compared with traditionally certification based audit.The TTP mainly adopts data flow visualization,data monitoring and encryption to protect the rights of users.It provides the basis for users to choose a trusted cloud platform and for cloud platform to prove own trusted credentials.In-depth study,the following key technologies were broken through:1) the introduction of an independent trusted third party as an intermediate layer between cloud platform and users as well as administrators; 2) continuous,real-time remote data collection and data analysis; 3) strong non-intrusive evidence gathering. |
| |
| Keywords: | cloud computing trusted reviews permissions control data encryption |
| 本文献已被 维普 等数据库收录! |
| 点击此处可从《》浏览原始摘要信息 |
|
点击此处可从《》下载全文 |
|
