云原生架构与SASE安全融合实践
Integration Practice of Cloud Native Architecture and SASE
贺译册 1余思阳 1曹京卫 1高贯银 2徐宝辰2
作者信息
- 1. 中国联合网络通信集团有限公司,北京 100033
- 2. 中讯邮电咨询设计院有限公司,北京 100048
- 折叠
摘要
面对数字化转型与复杂网络安全威胁,构建可靠的安全防护体系至关重要.研究了云原生架构下安全访问服务边缘(SASE)模型的构建.聚焦云原生技术特性和SASE在多云及分布式环境下的应用,通过案例分析与理论研讨发现,集成SASE的安全服务可有效实现身份验证、加密通信和细粒度访问控制,显著提升网络安全性和管理灵活性.此外,提出了一种统一管理框架,规范了SASE在身份验证、网络连接和威胁防御中的配置策略,强化网络安全并简化复杂环境中的安全操作.
Abstract
Facing digital transformation and complex network security threats,building a reliable security defense system is crucial.It explores the construction of Secure Access Service Edge(SASE)model within a cloud-native architecture.Focusing on the characteristics of cloud-native technologies and the application of SASE in multi-cloud and distributed environments,through case analysis and theoretical discussion,it shows that integrating SASE security services can effectively achieve identity verification,encrypted communication,and fine-grained access control,which significantly enhances network security and management flexibility.Additionally,it proposes an unified management framework that standardizes SASE configuration strategies for identity verification,network connection,and threat defense,strengthens network security and simplifies security operations in complex environments.
关键词
云原生安全/安全访问服务边缘/网络安全/身份验证/加密通信Key words
Cloud native security/Security access service edge/Network security/Identity verification/Encrypted communication引用本文复制引用
出版年
2024
NETL
NSTL
万方数据