本文選題：數(shù)據(jù)流　切入點(diǎn)：云計(jì)算　出處：《哈爾濱工業(yè)大學(xué)》2012年碩士論文　論文類型：學(xué)位論文

【摘要】：“網(wǎng)絡(luò)即計(jì)算機(jī)”的想法早在80年代就被Sun公司（Sun Microsystems）提出過，可謂是云計(jì)算思想的鼻祖，而直到2006年Google的CEO施密特才在搜索引擎大會（SES San Jose2006）上正式提出了“云計(jì)算”的概念，使其迅速成為了計(jì)算機(jī)領(lǐng)域最火的關(guān)鍵詞。云計(jì)算徹底改變了電子信息產(chǎn)業(yè)的經(jīng)營模式和發(fā)展方向，它使用規(guī)模龐大的服務(wù)器集群組成資源池提供給用戶幾近無限量的計(jì)算和存儲能力，它不僅為云的開發(fā)者帶來了巨大的經(jīng)濟(jì)效益，而且改變了眾多中小企業(yè)的經(jīng)營模式，同時它節(jié)能環(huán)保的特點(diǎn)也非常符合當(dāng)今經(jīng)濟(jì)發(fā)展的需求。 在云計(jì)算給人們帶來便捷服務(wù)和經(jīng)濟(jì)利益的同時，云計(jì)算所帶來的新的安全威脅也在深深的困擾著用戶和企業(yè)，由于云計(jì)算的組織架構(gòu)和服務(wù)模式較傳統(tǒng)的主機(jī)和服務(wù)器有著天壤之別，云中的安全風(fēng)險來自各方各面，因而傳統(tǒng)的安全措施和風(fēng)險管理技術(shù)在云平臺上存在各方面的局限性，而各大IT公司為云計(jì)算所開發(fā)的安全工具一般都只能針對某個特定“云”的特定問題，而沒有一個通用而有效的解決方案。而且現(xiàn)有的針對云計(jì)算的風(fēng)險評估只能針對整個云平臺來進(jìn)行，不能細(xì)化到云平臺上單個服務(wù)的安全狀態(tài)。因此本文提出一種針對云上服務(wù)的風(fēng)險評估方法，通過分析服務(wù)的歷史行為量化評估威脅出現(xiàn)的可能性。 本文提出的方法通過跟蹤和監(jiān)控服務(wù)的行為，從中提取出代表服務(wù)行為的數(shù)據(jù)流，，并通過與服務(wù)正常行為即服務(wù)模式的對比，識別出其中隱藏的威脅與風(fēng)險，并用歷史行為中出現(xiàn)威脅的概率來量化評估威脅的程度。因?yàn)榛跀?shù)據(jù)流的方法監(jiān)控數(shù)據(jù)在不同服務(wù)與進(jìn)程間的流動，所以此方法能夠同時評估來自云平臺內(nèi)部和外部的威脅，包括來自云平臺的管理者、用戶和服務(wù)提供商的威脅，因此本文提出的方法適合于云計(jì)算環(huán)境中的風(fēng)險評估。最后通過模擬云服務(wù)，實(shí)驗(yàn)證明了此方法的可行性，為云計(jì)算中的風(fēng)險評估提出了一種新的思路，提供一種通用的方法，為云計(jì)算安全管理研究提供了參考。
[Abstract]:The idea of "network as a computer" was put forward by Sun as early as 80s. It can be said that it is the originator of cloud computing. It was not until 2006 that CEO Schmidt of Google formally put forward the concept of "cloud computing" at the search engine conference SES San Jose2006. Cloud computing has completely changed the business model and development direction of the electronic information industry. It uses a large server cluster to form a pool of resources to provide users with almost unlimited computing and storage capabilities. It not only brings tremendous economic benefits to cloud developers, but also changes the business model of many small and medium-sized enterprises. At the same time, its energy-saving and environmental protection features are also very in line with the needs of today's economic development. Cloud computing brings people convenient services and economic benefits, at the same time, cloud computing brings new security threats also deeply perplexing users and enterprises. Because the organizational structure and service mode of cloud computing are different from the traditional hosts and servers, the security risks in the cloud come from all sides, so the traditional security measures and risk management technology have various limitations on the cloud platform. The security tools developed by major IT companies for cloud computing are generally limited to a specific "cloud" issue. There is no universal and effective solution. And the existing risk assessment for cloud computing can only be done for the entire cloud platform, The security status of a single service on a cloud platform cannot be refined. Therefore, this paper proposes a risk assessment method for services on the cloud, which quantifies the possibility of threat by analyzing the historical behavior of the service. The method proposed in this paper extracts the data stream representing the service behavior by tracking and monitoring the behavior of the service, and identifies the hidden threats and risks by comparing with the normal service behavior namely the service pattern. Because a data-flow based approach monitors the flow of data between services and processes, this method can assess threats from both inside and outside the cloud platform at the same time. The method proposed in this paper is suitable for risk assessment in cloud computing environment. Finally, the feasibility of this method is proved by simulating cloud services. This paper provides a new idea for risk assessment in cloud computing, a general method and a reference for the research of cloud computing security management.
【學(xué)位授予單位】：哈爾濱工業(yè)大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2012
【分類號】：TP309

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 閆強(qiáng),陳鐘,段云所,王立福;信息系統(tǒng)安全度量與評估模型[J];電子學(xué)報;2003年09期

2 謝曉蘭;劉亮;趙鵬;;面向云計(jì)算基于雙層激勵和欺騙檢測的信任模型[J];電子與信息學(xué)報;2012年04期

3 網(wǎng)界;;公有云vs私有云 到底誰更安全?[J];中國數(shù)字電視;2011年12期

4 劉宇芳;;云計(jì)算及其實(shí)質(zhì)的探究[J];惠州學(xué)院學(xué)報(自然科學(xué)版);2010年06期

5 高云璐;沈備軍;孔華鋒;;基于SLA與用戶評價的云計(jì)算信任模型[J];計(jì)算機(jī)工程;2012年07期

6 黃汝維;桂小林;余思;莊威;;云環(huán)境中支持隱私保護(hù)的可計(jì)算加密方法[J];計(jì)算機(jī)學(xué)報;2011年12期

7 朱國強(qiáng),劉真,李宗伯;對計(jì)算機(jī)系統(tǒng)中程序行為的分析和研究[J];計(jì)算機(jī)應(yīng)用;2005年12期

8 張建勛;古志民;鄭超;;云計(jì)算研究進(jìn)展綜述[J];計(jì)算機(jī)應(yīng)用研究;2010年02期

9 馮本明;唐卓;李肯立;;云環(huán)境中存儲資源的風(fēng)險計(jì)算模型[J];計(jì)算機(jī)工程;2011年11期

10 胡慧;王輝;;云計(jì)算技術(shù)現(xiàn)狀與發(fā)展趨勢分析[J];軟件導(dǎo)刊;2009年09期

相關(guān)博士學(xué)位論文 前1條

1 葉建偉;云計(jì)算系統(tǒng)中作業(yè)安全技術(shù)研究[D];哈爾濱工業(yè)大學(xué);2011年

本文編號：1621368