Research on the design of cloud security management platform
[Purpose]In order to improve cloud security protection capabilities,and ensure the security of information systems,networks and data on cloud platforms,this paper explores the construction of a cloud security management platform,achieving unified control of security resources,automated deployment of security services,cloud security situation awareness and big data linkage analysis and defense,forming a comprehensive security guarantee system that can effectively respond to various network and data security risks and challenges.[Method]Building a cloud security management platform to achieve the intensification of multi-source heterogeneous security resources,the service-oriented security capabilities,and the intelligence of security management.Relying on virtualization technology and artificial intelligence algorithms,we fully integrated various security capabilities such as detection,protection and auditing,and carry out network and data security governance in a hierarchical,modular and systematic manner.[Result]Realized dynamic expansion of cloud security resources,on-demand allocation of security capabilities,and rapid response to business needs.We had also achieved comprehensive cloud security monitoring capabilities,deep defense capabilities,comprehensive auditing capabilities and situational awareness capabilities.We had greatly improved the security protection level of cloud platforms from two dimensions:external attack defense and internal security control.[Conclusion]Through the design and research of the cloud security management platform,the protection measures and management methods of cloud platforms have been enriched,and a replicable and promoteable effective way for information systems,network security and data security on the cloud has been explored,providing an effective reference for cloud security management.
NETL
NSTL
万方数据
