计算机科学 ›› 2017, Vol. 44 ›› Issue (7): 16-20.doi: 10.11896/j.issn.1002-137X.2017.07.003

  1. 解放军信息工程大学网络空间安全学院 郑州450001数字工程与先进计算国家重点实验室 郑州450001,解放军信息工程大学网络空间安全学院 郑州450001数字工程与先进计算国家重点实验室 郑州450001,解放军信息工程大学网络空间安全学院 郑州450001数字工程与先进计算国家重点实验室 郑州450001,解放军信息工程大学网络空间安全学院 郑州450001数字工程与先进计算国家重点实验室 郑州450001
Review on Security Audit Technology for Cloud Computing

WANG Wen-juan, DU Xue-hui, WANG Na and SHAN Di-bin   

摘要: 目前安全问题已经成为阻碍云计算推广和发展的巨大障碍,云计算环境特有的数据和服务外包、虚拟化、多租户和跨域共享等特点使得其面临的安全威胁相比传统IT环境更复杂多样,对安全审计技术也提出了更高的要求。首先分析了云计算环境下安全审计面临的主要挑战,提出云环境下的安全审计参考框架,从用户维、业务维、数据维、设施维等4个维度上对云环境进行全方位的“体检”。然后针对不同维度,围绕日志审计、存储审计、配置审计3个方面的研究进行了评述,以期为我国未来云计算安全审计的发展研究提供有益的参考。

关键词: 云计算,安全审计,日志审计,存储审计,配置审计

Abstract: Now the security concern has become a huge impediment to the development of cloud computing.Due to the specific characteristics such as data and service outsourcing,virtualization,multi-tenant and cross domain sharing,the cloud computing environment faces more complicated threats compared with traditional IT environment,and the security audit technology also needs higher demands.Firstly,this paper analyzed the main challenges that cloud security audit confronts with,proposed a security audit technology framework in cloud environment which provides all-around examination from four dimensions such as user dimension,business dimension,data dimension,infrastructure dimension.Then according to different dimensions,the studies were reviewed from three aspects including log audit,storage audit and configuration audit,in order to provide useful reference to the development research of security audit for cloud computing in our country.

Key words: Cloud computing,Security audit,Log audit,Storage audit,Configuration audit

