CN103746988A - Security management method and system of cloud host machine - Google Patents
Security management method and system of cloud host machine Download PDFInfo
- Publication number
- CN103746988A CN103746988A CN201310751702.9A CN201310751702A CN103746988A CN 103746988 A CN103746988 A CN 103746988A CN 201310751702 A CN201310751702 A CN 201310751702A CN 103746988 A CN103746988 A CN 103746988A
- Authority
- CN
- China
- Prior art keywords
- security
- main frame
- factor
- safety
- cloud main
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Computer And Data Communications (AREA)
Abstract
The invention provides a security management method of a cloud host machine. The method comprises the following steps that safety factors of the cloud host machine are determined, and in addition, the safety factors of the cloud host machine are monitored; when any one safety factor in the safety factors is monitored to be changed relative to a corresponding security base line, corresponding warning information is generated. In addition, the invention also provides a security management system of the cloud host machine. The invention provides the security management method and the security management system of the cloud host machine for realizing the management and the monitoring on the safety state of the cloud host machine.
Description
Technical field
The present invention relates to field of computer technology, more specifically, relate to a kind of method for managing security of cloud main frame and a kind of safety management system of cloud main frame.
Background technology
For in most cloud operating system, have pair state of cloud main frame and the monitoring of resource at present, great majority are all at running status and the resource status of monitoring and management host, Host Security state are not managed and are monitored.At cloud computing center, there are hundreds and thousands of cloud main frames to move at the same time, keeper cannot monitor the safe condition of each main frame, and therefore this safety that is cloud computing center has caused very large hidden danger.
In addition, the management of All hosts in cloud computing center is only limited to the state of running status and the resource of main frame, the current safe condition of main frame is not managed, and generally only limit to artificial management and configuration, to administrative staff, caused very large workload, also for cloud computing center Host Security has caused great hidden danger.
For the problem in correlation technique, effective solution is not yet proposed at present.
Summary of the invention
For the problem in correlation technique, the present invention proposes a kind of method for managing security and system of cloud main frame, to realize, the safe condition of cloud main frame is managed and is monitored.
For achieving the above object, on the one hand, the invention provides a kind of method for managing security of cloud main frame, comprising: determine the security factor of cloud main frame, and the security factor of cloud main frame is monitored; And when monitoring any in security factor and change with respect to corresponding security baseline, produce corresponding warning information.
According to the present invention, security factor comprises at least one in account safety, rights management safety, file system safe and service safe.
According to the present invention, this method for managing security also comprises: receiving after warning information, according to security baseline, the security factor changing is being recovered.
According to the present invention, this method for managing security also comprises: by the system minimizes of cloud main frame.
According to the present invention, warning information comprises the security factor of variation and the file address relating to and content.
On the other hand, the present invention also provides a kind of safety management system of cloud main frame, comprising: TSM Security Agent device, be configured on each cloud main frame, and safety management platform; Wherein, TSM Security Agent device comprises: monitoring module, for determining after the security factor of cloud main frame, the security factor of cloud main frame is monitored; And, when monitoring any in security factor and change with respect to corresponding security baseline, produce corresponding warning information; Communication module, for sending to safety management platform by warning information.
According to the present invention, TSM Security Agent device also comprises recovery module, for record security baseline, and by communication module, is receiving after the recovery order that safety management platform sends, and the security factor of variation is returned to the state of security baseline.
According to the present invention, safety management platform is also for security baseline is configured, and sends to TSM Security Agent device.
According to the present invention, security factor comprises at least one in account safety, rights management safety, file system safe and service safe.
According to the present invention, warning information comprises the security factor of variation and the file address relating to and content.
Than prior art, beneficial effect of the present invention is:
In cloud Host Security management method of the present invention and system, due to the security factor of cloud main frame is monitored, and when any changes in safety factor, produce warning information, therefore than prior art, the present invention can realize the safe condition of cloud main frame is managed and monitored.
In other words, the present invention can realize: the security factor of paying close attention on statistics cloud main frame, and for security baseline is set up in the configuration of security factor, by being deployed in the TSM Security Agent on cloud main frame, the state of all security factors on each cloud main frame of monitoring in real time, thereby the security risk of reduction cloud computing center main frame.
Accompanying drawing explanation
Fig. 1 is the schematic diagram of an embodiment of the method for managing security of cloud main frame of the present invention;
Fig. 2 is the structural representation of an embodiment of the safety management system of cloud main frame of the present invention.
Embodiment
Below in conjunction with accompanying drawing, the present invention is further illustrated.
With reference to Fig. 1, what illustrate is the schematic diagram of an embodiment of cloud Host Security management method of the present invention, and the method comprises the steps:
S101, determines the security factor of cloud main frame, and the security factor of cloud main frame is monitored; And
S102, when monitoring any in security factor and change with respect to corresponding security baseline, produces corresponding warning information.
In a preferred embodiment, above-mentioned security factor comprises at least one in account safety, rights management safety, file system safe and service safe.
Further, in another alternative embodiment of the invention, this method for managing security also can comprise the steps: receiving after warning information, according to security baseline, the security factor changing is recovered.More preferred, method for managing security of the present invention can also comprise: by the step of the system minimizes of cloud main frame.In a preferred embodiment, above-mentioned warning information comprises the security factor of variation and the file address relating to and content.
On the other hand, as shown in Figure 2, the present invention also provides a kind of safety management system of cloud main frame, and this system comprises the TSM Security Agent device 20 and the safety management platform 50 that are configured on each cloud main frame 10.
Further, TSM Security Agent device 20 comprises monitoring module 30 and communication module 40.Wherein, monitoring module 30 is for determining after the security factor of cloud main frame 10, security factor to cloud main frame 10 is monitored, and monitoring module 30 also, for when any that monitors security factor changes with respect to corresponding security baseline, produces corresponding warning information; And communication module 40 is for sending to warning information safety management platform 50.
In a preferred embodiment of the invention, TSM Security Agent device 20 can also comprise recovery module 60.This recovery module 60 can be used for record security baseline, and by communication module 40, is receiving after the recovery order that safety management platform 50 sends, and the security factor of variation is returned to the state of security baseline.
In addition, in an optional embodiment, safety management platform 50 is also for security baseline is configured, and sends to above-mentioned TSM Security Agent device 20.
Preferably, the security factor in the present invention can comprise at least one in account safety, rights management safety, file system safe and service safe.In addition, warning information can comprise the security factor of variation and the file address relating to and content.Certainly should be appreciated that the present invention is not limited thereto.
Now in conjunction with principle of the present invention and practical application, be described.Specifically, method and system provided by the invention can be monitored a large amount of cloud main frames 10 of cloud computing center, finds at any time the variation of the safe condition of cloud main frame 10, and can automatically cloud main frame 10 be returned to safe condition.Detailed process is as follows:
First, by the system minimizes of cloud main frame 10, simplify service unnecessary in host computer system.Although because the scale of cloud main frame 10 is very large, the system requirements of all cloud main frames 10 is all consistent and clear and definite with configuration requirement.So system can be simplified, remove unnecessary systems soft ware and service, reduce potential safety hazard.
Secondly, for example, such as, according to the various security factors in the feature of cloud main frame 10 and demand statistics host computer system: the key elements such as the service safe (interface security of libvirt) of account safety, rights management safety, file system safe, special services (libvirt etc.).
Further, each security factor is configured, forms security baseline.Security configuration is carried out in the setting that each security factor is related to, and this configuration is formed to baseline.
Next the security factor of All hosts is monitored, and compared with baseline state.When finding that safe condition changes, produce warning information and then prompting keeper.
Then, keeper is according to warning information, and the main frame that safe condition is changed carries out manual recovery, or directly by Host Security management system, to Host Security, configuration recovers automatically.
On the other hand, in system of the present invention, realize two parts that mainly contain of safety management: TSM Security Agent device 20 and safety management platform 50.
TSM Security Agent device 20 is deployed on each cloud main frame 10, comprises three part of module: monitoring module 30, recovery module 60 and communication module 40.Monitoring module 30 is monitored Host Security key element, by real-time the safe condition of the main frame communication module 40 of issuing, and is dealt into safety management platform 50 by communication module 40.It also can produce warning information when the state of security factor changes, and warning information is sent to communication module 40, and these alarming informations comprise the security factor of variation and the file address relating to and content; Recovering module 60 can record the security baseline of main frame, and can receive the order of communication module 40, the security factor of specifying is configured, by its recovering state to baseline state; In communication module 40, mainly moving web services, and issuing REST(Representational State Transfer, statement sexual state shifts) interface, be responsible for communicating by letter of TSM Security Agent and Host Security management platform 50.
In addition, safety management platform 50 is responsible for the warning information of all Host Security agencies' of monitoring state, the safe condition that receives All hosts and issue Host Security.Keeper just can monitor the safe condition of all cloud main frames 10 by safety management platform 50, and when Host Security state changes, can navigate to the security factor specifically changing.Except monitoring, keeper can also recover the security factor of given host by safety management platform 50, to realize the function of automatic recovery security baseline.
In sum, in cloud main frame 10 method for managing security of the present invention and system, due to the security factor of cloud main frame 10 is monitored, and when any changes in safety factor, produce warning information, therefore than prior art, the present invention can realize the safe condition of cloud main frame 10 is managed and monitored.
In other words, the present invention can add up on cloud main frame 10 security factor of paying close attention to, and sets up security baseline for the configuration of security factor.By being deployed in the TSM Security Agent device 20 on cloud main frame 10, monitor in real time the state of all security factors on each cloud main frame 10.When the state of Host Security key element changes, and when departing from baseline, TSM Security Agent device 20 just can send warning information to Host Security management platform 50.Thereby the position that keeper can positioning security event be occurred, and can be by safety management platform 50 handling safety agent apparatus 20 by the recovering state of cloud main frame 10 to baseline state.
The present invention not only can make keeper be concerned about in real time the safe condition of main frame, and can help keeper to recover automatically main frame.In this way, realize the workload that reduces keeper, reduced the effect of cloud computing center Host Security risk.
The foregoing is only preferred embodiment of the present invention, in order to limit the present invention, within the spirit and principles in the present invention not all, any modification of doing, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.
Claims (10)
1. a method for managing security for cloud main frame, comprising:
Determine the security factor of described cloud main frame, and the security factor of described cloud main frame is monitored; And
When monitoring any in security factor and change with respect to corresponding security baseline, produce corresponding warning information.
2. method for managing security according to claim 1, is characterized in that, described security factor comprises at least one in account safety, rights management safety, file system safe and service safe.
3. method for managing security according to claim 1, is characterized in that, described method for managing security also comprises:
Receiving after described warning information, according to described security baseline, the security factor changing is being recovered.
4. method for managing security according to claim 1, is characterized in that, described method for managing security also comprises: by the system minimizes of cloud main frame.
5. method for managing security according to claim 1, described warning information comprises the security factor of variation and the file address relating to and content.
6. a safety management system for cloud main frame, comprising: TSM Security Agent device, be configured on each cloud main frame, and safety management platform; Wherein,
Described TSM Security Agent device comprises: monitoring module, for determining after the security factor of described cloud main frame, the security factor of described cloud main frame is monitored; And, when monitoring any in security factor and change with respect to corresponding security baseline, produce corresponding warning information;
Communication module, for sending to described safety management platform by described warning information.
7. safety management system according to claim 6, it is characterized in that, described TSM Security Agent device also comprises recovery module, be used for recording described security baseline, and by described communication module, receiving after the recovery order that described safety management platform sends, the security factor of variation is returned to the state of security baseline.
8. safety management system according to claim 6, is characterized in that, described safety management platform is also for described security baseline is configured, and sends to described TSM Security Agent device.
9. safety management system according to claim 6, is characterized in that, described security factor comprises at least one in account safety, rights management safety, file system safe and service safe.
10. according to right, want the safety management system described in 6, it is characterized in that, described warning information comprises the security factor of variation and the file address relating to and content.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310751702.9A CN103746988A (en) | 2013-12-31 | 2013-12-31 | Security management method and system of cloud host machine |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310751702.9A CN103746988A (en) | 2013-12-31 | 2013-12-31 | Security management method and system of cloud host machine |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103746988A true CN103746988A (en) | 2014-04-23 |
Family
ID=50503975
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310751702.9A Pending CN103746988A (en) | 2013-12-31 | 2013-12-31 | Security management method and system of cloud host machine |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103746988A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105592015A (en) * | 2014-10-24 | 2016-05-18 | ***通信集团广东有限公司 | Safety checking method and apparatus in cloud environment |
| CN106559249A (en) * | 2015-09-30 | 2017-04-05 | 中国联合网络通信集团有限公司 | Check the method and device of security baseline |
| CN106845244A (en) * | 2016-12-19 | 2017-06-13 | 郑州云海信息技术有限公司 | A kind of detection method and device |
| CN109905347A (en) * | 2017-12-07 | 2019-06-18 | 中移(苏州)软件技术有限公司 | Security baseline configuration method, device, equipment, cloud host, medium and system |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120265865A1 (en) * | 2011-04-14 | 2012-10-18 | Ricoh Company, Ltd. | Device management system |
| CN103152414A (en) * | 2013-03-01 | 2013-06-12 | 四川省电力公司信息通信公司 | High available system based on cloud calculation and implementation method thereof |
-
2013
- 2013-12-31 CN CN201310751702.9A patent/CN103746988A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120265865A1 (en) * | 2011-04-14 | 2012-10-18 | Ricoh Company, Ltd. | Device management system |
| CN103152414A (en) * | 2013-03-01 | 2013-06-12 | 四川省电力公司信息通信公司 | High available system based on cloud calculation and implementation method thereof |
Non-Patent Citations (1)
| Title |
|---|
| 邵宗有 等: ""云计算中的主机安全技术"", 《信息安全与技术》 * |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105592015A (en) * | 2014-10-24 | 2016-05-18 | ***通信集团广东有限公司 | Safety checking method and apparatus in cloud environment |
| CN105592015B (en) * | 2014-10-24 | 2019-05-24 | ***通信集团广东有限公司 | Safety detection method and device under cloud environment |
| CN106559249A (en) * | 2015-09-30 | 2017-04-05 | 中国联合网络通信集团有限公司 | Check the method and device of security baseline |
| CN106845244A (en) * | 2016-12-19 | 2017-06-13 | 郑州云海信息技术有限公司 | A kind of detection method and device |
| CN109905347A (en) * | 2017-12-07 | 2019-06-18 | 中移(苏州)软件技术有限公司 | Security baseline configuration method, device, equipment, cloud host, medium and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10887247B2 (en) | Dynamic resource allocation for sensor devices on a cellular network | |
| CN102609346B (en) | Monitoring method and monitoring device on basis of service operation | |
| CN102664747B (en) | Cloud calculating platform system | |
| CN104750596B (en) | A kind of alarm information processing method and service subsystem | |
| CN104461752A (en) | Two-level fault-tolerant multimedia distributed task processing method | |
| CN103166773A (en) | Method and system for monitoring operation state of server | |
| CN103746988A (en) | Security management method and system of cloud host machine | |
| CN103490919A (en) | Fault management system and fault management method | |
| CN103475696A (en) | System and method for monitoring state of cloud computing cluster server | |
| CN104021438A (en) | Method for monitoring physical equipment in business system based on business model and device thereof | |
| WO2011026390A1 (en) | Method and device for alarm synchronization | |
| CN114095522A (en) | Vehicle monitoring method, service system, management terminal, vehicle and storage medium | |
| CN105376266A (en) | Remote pump station monitoring system based on mobile terminal | |
| CN103580920B (en) | A kind of information system operation exception detection method based on cloud computing technology | |
| CN115022722A (en) | Video monitoring method and device, electronic equipment and storage medium | |
| CN104639890A (en) | Facility monitoring control system | |
| CN102946408A (en) | Cloud computing system, device and method for providing application service | |
| CN112187537A (en) | Method, device and equipment for synchronizing assets to security component | |
| CN106527613B (en) | A kind of connection method and generic server of generic server and tax control core board | |
| CN105516365A (en) | Management method of distributed mirror image storage block equipment based on network | |
| CN112995278B (en) | Block chain device management method based on cloud computing platform and SDN controller | |
| CN104615509A (en) | System for improving running reliability of portal website | |
| CN104700309A (en) | Intelligent transportation remote management system | |
| CN102968320A (en) | Cloud-backup-based automatic recovery system for industrial control equipment and operating method thereof | |
| CN105278499A (en) | Efficient enterprise informatization system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information | ||
| CB02 | Change of applicant information |
Address after: 100193 Beijing, Haidian District, northeast Wang West Road, building 8, building 36, floor 5 Applicant after: Shuguang Cloud Computing Group Co Ltd Address before: 100193 Beijing, Haidian District, northeast Wang West Road, building 8, building 36, floor 5 Applicant before: Shuguang Cloud Computing Technology Co., Ltd. |
|
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140423 |