Research on micro-segmentation security of public cloud based on zero trust

管纪伟; 朱凌君; 张文勇

doi:10.13992/j.cnki.tetas.2021.12.009

Chinese

您当前的位置：

首页 >

文章列表页 >

Research on micro-segmentation security of public cloud based on zero trust

更新时间：2026-04-20

- Research on micro-segmentation security of public cloud based on zero trust
- Vol. 34, Issue 12, Pages: 46-50+56(2021)
- 作者机构：
  
  中移(苏州)软件技术有限公司
- 作者简介：
- 基金信息：
- DOI：10.13992/j.cnki.tetas.2021.12.009
  CLC： TP393.08
- Published：2021
- 稿件说明：
移动端阅览
管纪伟, 朱凌君, 张文勇. Research on micro-segmentation security of public cloud based on zero trust[J]. 2021, 34(12): 46-50+56.
DOI：

管纪伟, 朱凌君, 张文勇. Research on micro-segmentation security of public cloud based on zero trust[J]. 2021, 34(12): 46-50+56. DOI： 10.13992/j.cnki.tetas.2021.12.009.

摘要

公有云因其成本低

灵活性高

在受到市场青睐的同时

网络安全方面也面临着极大的挑战。为解决传统网络边界保护中心资产方案的困境

本文介绍了零信任模型

从一个全新的角度审视了安全防范策略。以数据形式分析了零信任在受攻击面上的优势

并基于人工智能介绍了策略引擎的探索方法。阐述了以零信任为核心思想构建的微隔离应用方案

并分析了其面临的困境。随着基于零信任的微隔离的推广

公有云安全防护边界也将得到进一步拓宽。

Abstract

Public cloud has become more and more popular in the market due to its low cost and high flexibility. But then the cyber security is facing significant challenges. In order to solve the dilemma of the traditional network boundary protection center asset solution

this paper introduces the zero trust model

and examines the security defense strategy from a new perspective. It analyzes the advantages of zero trust on the attacked surface in the form of data

and introduces the exploration method of the strategy engine based on artificial intelligence. This paper also expounds the micro-segmentation application scheme based on the core idea of zero trust

and summarizes its difficulties. With the promotion of zero trust micro-segmentation

the public cloud security protection boundary will also be further broadened.

关键词

Keywords

references

Views

277

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Research on local case of ZT architecture based on operator network

Architecture design and deployment practice of a 5G parallel simulation cyber range

Implementation of a sustainable security operation system

Discussion on cyber security threat intelligence work of telecom operators

Building a public cloud service platform based on OpenStack

Related Author

吴晶

聂滢

卢永頔

王海光

姜宁

戢茜

陈斌

章建聪

Related Institution

中移动信息技术有限公司

华信咨询设计研究院有限公司

中国移动通信集团山东有限公司

中国移动通信集团公司信息安全管理与运行中心

中国移动通信集团公司政企客户分公司

AI问答

Postal code：100079
Tel：（010）53879206 Email：tmw@bjxintong.com.cn
Technical support is provided by Beijing Founder electronics co., LTD 京ICP备09082226号-64 京公网安备11010602201714号
It is recommended to read the content of this site in Chrome&IE9+. Please switch to extreme mode in browser 360.
Cookies We use cookies to help provide and enhance our service and tailor content. By continuing, you agree to the use of cookies.

⁰