In enterprises and institutions,traditional PCs are commonly used as office desktop terminals,but their security can-not be guaranteed,which makes them susceptible to security incidents such as file leaks and network attacks.Moreover,net-work isolation is required between systems necessitates the placement of multiple PCs on office desks,resulting in significant space occupation and cost wastage.To address these issues,this paper takes cloud desktop as terminal and integrates the secu-ring concept of zero trust,proposes a"one machine,multiple networks"cloud desktop architecture based on the zero-trust se-curity concept.Building upon traditional cloud desktops,this architecture employs a network isolation switch to ensure secure network transmission and strong logical isolation.Additionally,it anonymizes the public network access port to enhance the se-curity of desktop terminals while reducing the redundancy of traditional office PCs.
万方数据