Aiming at the security issues existing in cloud platform,this paper designed a quantitative assessment system for cloud platform security situation for the first time,to improve administrator' s security situational awareness of the whole cloud platform,and make the cloud platform more controllable.The existing security situational assessment methods are analyzed and compared in detail,in view of the multi-source information in cloud platform security,a new method to fuse multi-source heterogeneous data based on the cloud computing security indicator system is proposed.Using big data processing tools,the security situation values of each protection levels are got through situational indicator,s fusion and the security situation value of cloud platform is calculated by protection levels situation fusion.In the end,the cloud platform security situation assessment result is obtained.In this paper,the system is used to assess the openstack cloud platform,the results show that the system can accurately reflect the security situation of cloud platform in real time.%针对云平台的安全性问题,为提高系统管理员对云平台整体的安全态势感知能力,增强对云平台的可控性,本文首次设计了一种面向多源异构数据的云平台安全态势量化评估系统.对已有的安全态势评估方法进行了分析比较,针对云平台安全中多数据源的特点,提出基于云计算安全性指标体系的多源异构数据融合方法.利用大数据处理工具,对云平台的多源异构数据进行各保护层面态势指标融合和保护层面态势融合,得到整体的安全态势.本文运用该系统对所搭建的openstack云平台进行评估,实验结果表明该系统能够准确实时地反映云平台的安全态势.
展开▼