[1]焦宏宇,何利文,黄俊.基于蜜场的 Openstack 安全系统[J].计算机技术与发展,2018,28(10):92-96.[doi:10.3969/ j. issn.1673-629X.2018.10.019]
 JIAO Hong-yu,HE Li-wen,HUANG Jun.Openstack Security System Based on Honeyfarm[J].,2018,28(10):92-96.[doi:10.3969/ j. issn.1673-629X.2018.10.019]
点击复制

基于蜜场的 Openstack 安全系统()
分享到:

《计算机技术与发展》[ISSN:1006-6977/CN:61-1281/TN]

卷:
28
期数:
2018年10期
页码:
92-96
栏目:
智能、算法、系统工程
出版日期:
2018-10-10

文章信息/Info

Title:
Openstack Security System Based on Honeyfarm
文章编号:
1673-629X(2018)10-0092-05
作者:
焦宏宇何利文黄俊
南京邮电大学 计算机学院,江苏 南京 210046
Author(s):
JIAO Hong-yuHE Li-wenHUANG Jun
School of Computer Science,Nanjing University of Posts and Telecommunications, Nanjing 210046,China
关键词:
Openstack蜜场虚拟机虚拟网络重定向蜜罐
Keywords:
OpenstackHoneyfarmvirtual machinevirtual networkredirectionHoneypot
分类号:
TP302
DOI:
10.3969/ j. issn.1673-629X.2018.10.019
文献标志码:
A
摘要:
随着云计算的普及,大量采用 Openstack 的私有云出现在现今网络中,同时虚拟机被普遍用于部署公司业务, Openstack 上大量虚拟机的安全问题也变得日益严峻。 蜜场作为主动安全防御的技术,既能为 Openstack 上部署的虚拟机带来安全保障,同时能记录下黑客的行为作为反向追踪依据。 由于 Openstack 虚拟化网络与传统物理网络有很大的区别, 所以根据 Openstack 虚拟化网络的特殊性设计出一个新型的蜜场系统。 首先将网络攻击流量重定向与虚拟化紧密结合, 将异常流量通过虚拟化网络重定向到蜜场中;其次将异常检测系统用于检测流量,增大了业务系统的安全性;最后根据虚拟机灵活配置的特性,设计出动态蜜罐部署系统。 实验结果表明,该系统能够有效地检测出异常流量,并将其正确地重定向到蜜场中,同时在蜜场中的蜜罐上记录下黑客的攻击行为用于后续分析。
Abstract:
With the popularization of cloud computing,a large number of private clouds adopting Openstack appear in today’s network.Meanwhile,virtual machines are widely used to deploy company business,so the security of a large number of virtual machines on Openstack is becoming increasingly serious. As an active security defense technology,Honeyfarm can not only provide security for virtual machines deployed on Openstack,but also record the hacker’s behavior as the basis of reverse tracking. Because Openstack virtualized network is quite different from traditional physical network,a new Honeyfarm system is designed according to the particularity of Openstack virtualized network. Firstly,the network attack traffic redirection is closely combined with virtualization,and abnormal traffic is redirected to Honeyfarm through virtualized network. Secondly,the abnormal detection system is used to detect the flow,which increases the security of the business system. Finally,the dynamic Honeypot deployment system is designed according to the flexible configuration of the virtual machine. The experiment shows that the system can detect the abnormal flow effectively and redirect it to the Honeyfarm correctly. Meanwhile,the hacker’s attack behavior is recorded on the Honeypot in the Honeyfarm for subsequent analysis.

相似文献/References:

[1]赵 丹,沈苏彬,吴振宇.一种面向节能的虚拟机在线迁移解决方案[J].计算机技术与发展,2018,28(02):78.[doi:10.3969/j.issn.1673-629X.2018.02.018]
 ZHAO Dan,SHEN Su-bin,WU Zhen-yu.A Live Migration Solution of Virtual Machine for Energy-saving[J].,2018,28(10):78.[doi:10.3969/j.issn.1673-629X.2018.02.018]
[2]孙磊,沈苏彬. 一种基于 OpenStack 的云管理平台[J].计算机技术与发展,2016,26(01):185.
 SUN Lei,SHEN Su-bin. A Cloud Management Platform Based on OpenStack[J].,2016,26(10):185.
[3]唐兴助,解月江,马颖劲. 基于OpenStack的桌面云的应用与挑战[J].计算机技术与发展,2017,27(02):147.
 TANG Xing-zhu,XIE Yue-jiang,MA Ying-jin. Application and Challenge of Desktop Cloud Based on OpenStack[J].,2017,27(10):147.
[4]王元,王志明.OpenStack 云平台的监控系统算法设计与实现[J].计算机技术与发展,2018,28(07):196.[doi:10.3969/ j. issn.1673-629X.2018.07.042]
 WANG Yuan,WANG Zhi-ming.Design and Implementation of Monitoring System Algorithm for OpenStack[J].,2018,28(10):196.[doi:10.3969/ j. issn.1673-629X.2018.07.042]
[5]姚捃,严南.OpenStack 高可用分布式存储方案设计与实现[J].计算机技术与发展,2019,29(02):35.[doi:10.3969/j.issn.1673-629X.2019.02.007]
 YAO Jun,YAN Nan.Design and Implementation of High Available Distributed Storage Scheme Based on OpenStack[J].,2019,29(10):35.[doi:10.3969/j.issn.1673-629X.2019.02.007]
[6]张可颖,彭丽苹,吕晓丹,等.开源云上的 Kubernetes弹性调度[J].计算机技术与发展,2019,29(02):109.[doi:10.3969/j.issn.1673-629X.2019.02.023]
 ZHANG Keying,PENG Liping,LYU Xiaodan,et al.Elastic Scheduling Strategy for Private Cloud Resource Based on Kubernetes and Openstack[J].,2019,29(10):109.[doi:10.3969/j.issn.1673-629X.2019.02.023]
[7]邱 亚,颜金尧,陈 宇,等.开源云计算资源调度策略优化研究[J].计算机技术与发展,2023,33(06):8.[doi:10. 3969 / j. issn. 1673-629X. 2023. 06. 002]
 QIU Ya,YAN Jin-yao,CHEN Yu,et al.Research on Optimization of Resource Scheduling in Open Source Cloud Computing[J].,2023,33(10):8.[doi:10. 3969 / j. issn. 1673-629X. 2023. 06. 002]

更新日期/Last Update: 2018-10-10