随着云计算技术的蓬勃发展,OpenStack作为“云”家族中的新兴成员正在逐步成为该领域的核心技术。作为公有云和私有云的共同技术基础,OpenStack不但可以提供基础平台层的服务,而且能够实现统一的云管理平台自动化。然而,OpenStack作为一种新型的、动态的云服务,目前在安全性方面仍不完善。本文重点对OpenStack的对象存储进行安全性分析,发现 OpenStack 对象存储中身份认证、访问管理两个方面存在安全隐患。针对这些安全问题,本文提出相应的改进方案,提高了OpenStack对象存储的安全等级,为用户提供更为安全的平台服务。%With the booming development of cloud computing technology, OpenStack as a new platform in the range of cloud management is gradually becoming the core technology, which provides a common technical basis for public and private cloud. It can not only friendly provide a base platform layer service, but also uniformly achieve an auto-mated cloud management platform. However, there still exist several weaknesses in the aspect of security due to its dy-namic nature of the emerging OpenStack. In this paper, we focus on the research of OpenStack Object Storage, and find out some security risks in the modules of authentication and access management of OpenStack Object Storage. In order to solve these security problems, this paper puts forward the corresponding improved schemes. These improvements can enhance the safety level of OpenStack Object Storage, and provide users with a more secure service platform.
展开▼
