摘要
Abstract
In the context of network integration,after a large number of businesses are deployed to the cloud,traditional north-south protection methods find it difficult to monitor cloud native risks such as container escape,insecure mirroring,and horizontal attacks.The challenges of network security,computing power isolation,and data isolation increase,and cloud platforms urgently need to improve their security measures.A research plan for cloud security management and protection evaluation is proposed from the aspects of protection schemes,evaluation,and protection practices,targeting the importance of cloud security.In terms of the work concept of cloud security management,a cloud security protection system based on security technology and security management capabilities has been proposed.Baseline evaluation requirements and protection plans for cloud security management have been established from five aspects:platform basic security requirements and security product capabilities.Based on practical experience,the process and methods of cloud security evaluation were summarized and studied,in order to construct a security evaluation template for subsequent cloud platform systems and form a template based,high standard cloud security management specification.关键词
云安全/安全管理/基线测评/安全防护/算网融合Key words
Cloud security/Security management/Baseline assessment/Security protection/Computing-network convergence分类
信息技术与安全科学
