云计算环境下学术信息资源共享安全保障实施
|
摘要
[目的/意义]提出云计算环境下学术信息资源共享安全保障实施方案,为学术信息资源服务机构在云计算环境下的资源共享优化提供指导。[方法/过程]围绕云计算环境下学术信息资源共享安全保障中的资源、技术及管理实施过程,进行共享安全保障方案的设计。[结果/结论]进行基于安全等级保护思想的保障策略设计,在此基础上构建了基于深度防御的学术信息资源共享安全技术保障方案及云计算环境下学术信息资源共享安全保障的主体协同方案。
[Purpose/significance] This paper proposes an implementation scheme for academic information resources sharing security assurance in cloud computing environment in order to guide academic information resources service organizations to optimize the resources sharing in cloud computing environment.[Method/process] The paper designs the security assurance scheme around the implementation process of resources,technology and management in academic information resources sharing security assurance in cloud computing environment.[Result/conclusion] The security strategy is designed based on classified information security protection.On this basis,the paper proposes a security technology support scheme for academic information resources sharing based on the defense-in-depth strategy,and a collaborative scheme for the security assurance of academic information resources sharing in the cloud computing environment.
[Purpose/significance] This paper proposes an implementation scheme for academic information resources sharing security assurance in cloud computing environment in order to guide academic information resources service organizations to optimize the resources sharing in cloud computing environment.[Method/process] The paper designs the security assurance scheme around the implementation process of resources,technology and management in academic information resources sharing security assurance in cloud computing environment.[Result/conclusion] The security strategy is designed based on classified information security protection.On this basis,the paper proposes a security technology support scheme for academic information resources sharing based on the defense-in-depth strategy,and a collaborative scheme for the security assurance of academic information resources sharing in the cloud computing environment.
引文
[1] 公通字[2007]43号.信息安全等级保护管理办法[EB/OL].[2018-04-09].http://www.gov.cn/gzdt/2007-07/24/content_694380.htm.
[2] 申飞驹.基于SSL-VPN的数字图书馆资源共享服务平台研究[J].图书馆理论与实践,2010(8):84-85.
[3] 冯登国,赵险峰.信息安全技术概论[M].2版.北京:电子工业出版社,2014:235-237.
[4] 王蕊,冯登国,杨轶,等.基于语义的恶意代码行为特征提取及检测方法[J].软件学报,2012,23(2):378-393.
[5] NARUDIN F A,FEIZOLLAH A,ANUAR N B,et al.Evaluation of machine learning classifiers for mobile malware detection[J].Soft Computing,2016,20(1):343-357.
[6] 刘梅彦,黄改娟.面向信息内容安全的文本过滤模型研究[J].中文信息学报,2017,31(2):126-131.
[7] 熊金波,李素萍,张媛媛,等.共享所有权证明:协作云数据安全去重新方法[J].通信学报,2017,38(7):18-27.
[8] ZHANG Y,XIONG J,LI X,et al.A multi-replica associated deleting scheme in cloud[C]//International Conference on Complex,Intelligent,and Software Intensive Systems.IEEE,2016:444-448.
[9] 熊金波,沈薇薇,黄阳群,等.云环境下的数据多副本安全共享与关联删除方案[J].通信学报,2015,36(S1):136-140.
[10] RADHA V,REDDY D H.A Survey on single sign-on techniques[J].Procedia Technology,2012,4(11):134-139.
[11] 关志涛,杨亭亭,徐茹枝,等.面向云存储的基于属性加密的多授权中心访问控制方案[J].通信学报,2015,36(6):116-126.
[12] CHONG C N,ETALLE S,HARTEl P H.Comparing logic-based and XML-based rights expression languages[M]//On the move to meaningful internet systems 2003:OTM 2003 workshops Berlin Heidelberg:Springer,2017:779-792.
[13] 傅文奇,吴小翠.图书馆电子书版权授权模式研究[J].中国图书馆学报,2017(3):104-118.
[14] 张宝军.网络入侵检测若干技术研究[D].杭州:浙江大学,2010.
[2] 申飞驹.基于SSL-VPN的数字图书馆资源共享服务平台研究[J].图书馆理论与实践,2010(8):84-85.
[3] 冯登国,赵险峰.信息安全技术概论[M].2版.北京:电子工业出版社,2014:235-237.
[4] 王蕊,冯登国,杨轶,等.基于语义的恶意代码行为特征提取及检测方法[J].软件学报,2012,23(2):378-393.
[5] NARUDIN F A,FEIZOLLAH A,ANUAR N B,et al.Evaluation of machine learning classifiers for mobile malware detection[J].Soft Computing,2016,20(1):343-357.
[6] 刘梅彦,黄改娟.面向信息内容安全的文本过滤模型研究[J].中文信息学报,2017,31(2):126-131.
[7] 熊金波,李素萍,张媛媛,等.共享所有权证明:协作云数据安全去重新方法[J].通信学报,2017,38(7):18-27.
[8] ZHANG Y,XIONG J,LI X,et al.A multi-replica associated deleting scheme in cloud[C]//International Conference on Complex,Intelligent,and Software Intensive Systems.IEEE,2016:444-448.
[9] 熊金波,沈薇薇,黄阳群,等.云环境下的数据多副本安全共享与关联删除方案[J].通信学报,2015,36(S1):136-140.
[10] RADHA V,REDDY D H.A Survey on single sign-on techniques[J].Procedia Technology,2012,4(11):134-139.
[11] 关志涛,杨亭亭,徐茹枝,等.面向云存储的基于属性加密的多授权中心访问控制方案[J].通信学报,2015,36(6):116-126.
[12] CHONG C N,ETALLE S,HARTEl P H.Comparing logic-based and XML-based rights expression languages[M]//On the move to meaningful internet systems 2003:OTM 2003 workshops Berlin Heidelberg:Springer,2017:779-792.
[13] 傅文奇,吴小翠.图书馆电子书版权授权模式研究[J].中国图书馆学报,2017(3):104-118.
[14] 张宝军.网络入侵检测若干技术研究[D].杭州:浙江大学,2010.