本文關(guān)鍵詞： 云平臺(tái) 安全審計(jì) 代理 關(guān)聯(lián)分析　出處：《北京郵電大學(xué)》2014年碩士論文　論文類(lèi)型：學(xué)位論文

【摘要】：近年來(lái)隨著網(wǎng)絡(luò)規(guī)模的不斷擴(kuò)大,人們更加傾向?qū)⒕W(wǎng)絡(luò)作為日常業(yè)務(wù)的處理的途徑,網(wǎng)絡(luò)為用戶(hù)進(jìn)行信息的交流與存儲(chǔ)提供了平臺(tái)。云計(jì)算技術(shù)在這種用戶(hù)需求不斷增大的背景下應(yīng)運(yùn)而生,各大廠(chǎng)商相繼推出基于云計(jì)算技術(shù)的服務(wù)平臺(tái),依靠其通用性與低使用成本而得到了廣泛的使用。然而,云平臺(tái)的安全性問(wèn)題也逐漸暴露出來(lái),對(duì)云計(jì)算服務(wù)提供商來(lái)說(shuō),用戶(hù)在使用服務(wù)的過(guò)程中是否有異常行為,對(duì)異常行為的審計(jì)是保證服務(wù)正常運(yùn)行的重要環(huán)節(jié)。 本文首先對(duì)云平臺(tái)安全審計(jì)相關(guān)的技術(shù)進(jìn)行了全面的深入的研究,包括學(xué)習(xí)傳統(tǒng)安全審計(jì)的標(biāo)準(zhǔn)和模型與云平臺(tái)審計(jì)相關(guān)的技術(shù)；分析傳統(tǒng)安全審計(jì)的不足、云環(huán)境安全與傳統(tǒng)網(wǎng)絡(luò)安全的區(qū)別,為審計(jì)系統(tǒng)設(shè)計(jì)與實(shí)現(xiàn)建立了理論依據(jù)。提出一種面向云計(jì)算服務(wù)平臺(tái)的安全審計(jì)模型。該模型具有以下特點(diǎn)： (1)基于云平臺(tái)Agent的審計(jì)信息收集。在審計(jì)信息收集階段,通過(guò)部署在集群服務(wù)器上的云平臺(tái)Agent,進(jìn)行云環(huán)境下審計(jì)信息的采集和格式化,再將格式化數(shù)據(jù)發(fā)送給存儲(chǔ)服務(wù)器,同時(shí)進(jìn)行實(shí)時(shí)審計(jì)。通過(guò)應(yīng)用分布式部署的云平臺(tái)Agent,提高審計(jì)信息收集的能力； (2)采用基于對(duì)稱(chēng)密鑰加密的審計(jì)信息存儲(chǔ)。在審計(jì)信息存儲(chǔ)的過(guò)程中,通過(guò)對(duì)敏感的審計(jì)信息進(jìn)行加密及安全的密鑰存儲(chǔ)管理體系,并支持使用對(duì)稱(chēng)密鑰加密后信息的密文檢索,防止云服務(wù)商內(nèi)部竊取和篡改數(shù)據(jù),保證了半可信的云環(huán)境中審計(jì)信息的機(jī)密性； (3)實(shí)時(shí)與事后相結(jié)合的審計(jì)信息分析。云平臺(tái)Agent根據(jù)下發(fā)至本地規(guī)則庫(kù)中的規(guī)則進(jìn)行初步的實(shí)時(shí)審計(jì),審計(jì)分析模塊根據(jù)規(guī)則庫(kù)進(jìn)行事后審計(jì)。通過(guò)兩種審計(jì)相結(jié)合的方式,保證審計(jì)分析的有效性。 同時(shí),本文對(duì)云平臺(tái)事后審計(jì)分析使用的Apriori算法的連接步進(jìn)行了改進(jìn),減少了無(wú)效的連接和比較次數(shù),減輕了系統(tǒng)I/0的負(fù)荷,提高了算法的效率。 在云計(jì)算服務(wù)平臺(tái)安全審計(jì)模型的基礎(chǔ)上實(shí)現(xiàn)的“北京工業(yè)云計(jì)算平臺(tái)保障項(xiàng)目”,包括對(duì)審計(jì)信息收集、審計(jì)信息安全存儲(chǔ)、審計(jì)信息分析等主要系統(tǒng)功能的實(shí)現(xiàn),對(duì)使用系統(tǒng)的用戶(hù)提供友好的操作界面,具有較高的易用性。經(jīng)過(guò)測(cè)試,系統(tǒng)滿(mǎn)足云平臺(tái)審計(jì)的要求。
[Abstract]:In recent years, with the continuous expansion of the scale of the network, people are more inclined to take the network as a way to deal with daily business. The network provides a platform for users to exchange and store information. Cloud computing technology emerges as the times require in the background of increasing user demand, each major manufacturer has launched a service platform based on cloud computing technology. Because of its versatility and low cost of use, it has been widely used. However, the security problems of cloud platform have been gradually exposed. For cloud computing service providers, whether the user has abnormal behavior in the process of using the service, The audit of abnormal behavior is an important link to ensure the normal operation of service. Firstly, this paper makes a comprehensive and in-depth study on the technologies related to the security audit of cloud platform, including learning the standard and model of traditional security audit and the technology related to the audit of cloud platform, analyzing the shortcomings of the traditional security audit, The difference between cloud environment security and traditional network security establishes the theoretical basis for the design and implementation of audit system. A security audit model for cloud computing service platform is proposed. The model has the following characteristics:. Audit information collection based on cloud platform Agent. In the stage of audit information collection, through the cloud platform agent deployed on the cluster server, the audit information is collected and formatted in the cloud environment, and then the formatted data is sent to the storage server. At the same time, real-time audit. Through the application of distributed deployment of cloud platform agent, improve the ability of audit information collection; Audit information storage based on symmetric key encryption is adopted. In the process of audit information storage, the sensitive audit information is encrypted and a secure key storage management system is adopted. It also supports the ciphertext retrieval of information encrypted by symmetric key to prevent the cloud service providers from stealing and tampering with the data, which ensures the confidentiality of audit information in the semi-trusted cloud environment. The cloud platform Agent carries on the preliminary real-time audit according to the rule sent to the local rule base, the audit analysis module carries on the post audit according to the rule base. Through the two kinds of audit combination way, the cloud platform Agent carries on the preliminary real-time audit according to the rule base. Ensure the effectiveness of audit analysis. At the same time, this paper improves the join step of the Apriori algorithm used in the post-audit analysis of cloud platform, reduces the invalid connection and comparison times, lightens the load of the system I / 0 and improves the efficiency of the algorithm. Based on the security audit model of cloud computing service platform, the "Beijing Industrial Cloud Computing platform guarantee Project" includes the realization of the main system functions, such as audit information collection, audit information security storage, audit information analysis and so on. The system provides a friendly interface for the users of the system, and it is easy to use. After testing, the system meets the requirements of cloud platform audit.
【學(xué)位授予單位】：北京郵電大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類(lèi)號(hào)】：TP393.09

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 石彪,胡華平,劉利枚;網(wǎng)絡(luò)環(huán)境下的日志監(jiān)控與安全審計(jì)系統(tǒng)設(shè)計(jì)與實(shí)現(xiàn)[J];福建電腦;2004年12期

2 許霆,袁萌,史美林;網(wǎng)絡(luò)監(jiān)控審計(jì)系統(tǒng)的設(shè)計(jì)與實(shí)現(xiàn)[J];計(jì)算機(jī)工程與應(yīng)用;2002年18期

3 楊向榮,宋擒豹,沈鈞毅;基于數(shù)據(jù)挖掘的智能化入侵檢測(cè)系統(tǒng)[J];計(jì)算機(jī)工程;2001年09期

4 徐菁,劉寶旭,許榕生;基于數(shù)據(jù)挖掘技術(shù)的入侵檢測(cè)系統(tǒng)設(shè)計(jì)與實(shí)現(xiàn)[J];計(jì)算機(jī)工程;2002年06期

5 張建勛;古志民;鄭超;;云計(jì)算研究進(jìn)展綜述[J];計(jì)算機(jī)應(yīng)用研究;2010年02期

6 王偉釗,李承,李家濱;網(wǎng)絡(luò)安全審計(jì)系統(tǒng)的實(shí)現(xiàn)方法[J];計(jì)算機(jī)應(yīng)用與軟件;2002年11期

7 陳世強(qiáng);蔡超;;審計(jì)系統(tǒng)中基于數(shù)據(jù)挖掘的關(guān)聯(lián)規(guī)則自動(dòng)發(fā)現(xiàn)技術(shù)研究[J];計(jì)算機(jī)應(yīng)用與軟件;2007年01期

8 田秀霞;王曉玲;高明;周傲英;;數(shù)據(jù)庫(kù)服務(wù)——安全與隱私保護(hù)[J];軟件學(xué)報(bào);2010年05期

9 鮑偉民;;基于云計(jì)算的安全審計(jì)系統(tǒng)研究與設(shè)計(jì)[J];軟件產(chǎn)業(yè)與工程;2012年06期

10 王強(qiáng);皮德常;李偉奇;呂軍;;基于A(yíng)gent和數(shù)據(jù)挖掘的分布式信息審計(jì)平臺(tái)[J];計(jì)算機(jī)技術(shù)與發(fā)展;2006年04期

，

本文編號(hào)：1541752