电子学报 ›› 2013, Vol. 41 ›› Issue (2): 371-381.DOI: 10.3969/j.issn.0372-2112.2013.02.026

• 综述评论 • 上一篇    下一篇

云安全研究进展综述

俞能海, 郝卓, 徐甲甲, 张卫明, 张驰   

  1. 中国科学技术大学信息科学与技术学院,安徽合肥 230027
  • 收稿日期:2012-04-16 修回日期:2012-10-17 出版日期:2013-02-25 发布日期:2013-02-25
  • 作者简介:俞能海 男,1964年生于安徽无为.中国科学家技术大学信息科学技术学院教授,博士生导师.研究方向图橡处理体内容安全、互联网信息检索与数据挖掘. E-mail:ynh@ustc.edu.cn
  • 基金资助:

    国家自然基金(No.61170234,No.60803155);中国科学院"面向感知中国的新一代信息技术研究"战略性先导科技专项子课题(No.XDA06030601)

Review of Cloud Computing Security

YU Neng-hai, HAO Zhuo, XU Jia-jia, ZHANG Wei-ming, ZHANG Chi   

  1. School of Science and Technology, University of Science and Technology of China, Hefei, Anhui 230027, China
  • Received:2012-04-16 Revised:2012-10-17 Online:2013-02-25 Published:2013-02-25

摘要: 随着云计算在学术界和工业界的兴起,云计算也不可避免的带来了一些安全问题.本文对云计算的安全需求进行了总结,指出云计算不仅在机密性、数据完整性、访问控制和身份认证等传统安全性上存在需求,而且在可信性、配置安全性、虚拟机安全性等方面具有新的安全需求.我们对云计算的两个典型产品Amazon Web Services和Windows Azure的安全状况进行了总结,并阐述了针对云计算的拒绝服务攻击和旁通道攻击.基于云计算的安全需求和面临的攻击,对现有安全机制进行了优缺点分析,系统的总结了现有的安全机制.

关键词: 云计算, 机密性, 数据完整性, 访问控制, 公开认证, 可信性, 虚拟机安全性

Abstract: With the development of cloud computing in the academia and industry,it is inevitable that many security problems arise.This paper summarizes the security requirements of cloud computing,which not only cover the traditional security requirements like confidentiality,data integrity,access control and identity authentication,but also introduce new security requirements in the credibility,configuration and virtual machinery.We make conclusions about the security situations on two typical cloud computing products:Amazon Web Services and Windows Azure and elaborate two attack mechanisms against cloud computing:Denial of service attack and Side channel attack.Based on the security requirements and attacks against cloud computing,we systematically summarize the current security protection mechanisms and further make a comparison among them.

Key words: cloud computing, confidentiality, data integrity, access control, public verifiability, credibility, security of virtual machine

中图分类号: