• 中国精品科技期刊
  • CCF推荐A类中文期刊
  • 计算领域高质量科技期刊T1类
高级检索

一种基于软件定义安全和云取证趋势分析的云取证方法

刘雪花, 丁丽萍, 刘文懋, 郑涛, 李彦峰, 吴敬征

刘雪花, 丁丽萍, 刘文懋, 郑涛, 李彦峰, 吴敬征. 一种基于软件定义安全和云取证趋势分析的云取证方法[J]. 计算机研究与发展, 2019, 56(10): 2262-2276. DOI: 10.7544/issn1000-1239.2019.20190394
引用本文: 刘雪花, 丁丽萍, 刘文懋, 郑涛, 李彦峰, 吴敬征. 一种基于软件定义安全和云取证趋势分析的云取证方法[J]. 计算机研究与发展, 2019, 56(10): 2262-2276. DOI: 10.7544/issn1000-1239.2019.20190394
Liu Xuehua, Ding Liping, Liu Wenmao, Zheng Tao, Li Yanfeng, Wu Jingzheng. A Cloud Forensics Method Based on SDS and Cloud Forensics Trend Analysis[J]. Journal of Computer Research and Development, 2019, 56(10): 2262-2276. DOI: 10.7544/issn1000-1239.2019.20190394
Citation: Liu Xuehua, Ding Liping, Liu Wenmao, Zheng Tao, Li Yanfeng, Wu Jingzheng. A Cloud Forensics Method Based on SDS and Cloud Forensics Trend Analysis[J]. Journal of Computer Research and Development, 2019, 56(10): 2262-2276. DOI: 10.7544/issn1000-1239.2019.20190394

一种基于软件定义安全和云取证趋势分析的云取证方法

基金项目: 江西省经济犯罪侦查与防控技术协同创新中心开放基金资助课题(JXJZXTCX-007,JXJZXTCX-009);国家重点研发计划项目(2016QY01W0200);广州市科技计划项目(201802020015);羊城创新创业领军人才支持计划资助(领军人才2016008)
详细信息
  • 中图分类号: TP393.08

A Cloud Forensics Method Based on SDS and Cloud Forensics Trend Analysis

  • 摘要: 随着云计算的发展与普及,云计算环境下的安全问题日益突出.云取证技术作为事后追责与惩治技术手段,对维护云计算环境安全具有重大意义.云取证技术研究发展尚处于早期,云取证面临电子证据不完整、取证开销较大、取证过程智能化不足等难题.为缓解这些问题,提出一种基于软件定义安全(software defined security, SDS)和云取证趋势分析的智能云取证方法.首先,提出一种基于软件定义安全的云取证架构,实现云网络与云计算平台协同实时取证.其次,提出基于隐Markov模型的云取证趋势分析算法,实现云取证架构中的智能取证策略决策和智能取证资源调度.实验结果表明:相较于单独的网络取证与云计算平台取证,该方法取证能力提高至91.6%,而取证开销则介于两者之间.该方法对云服务商提供云取证服务具有广泛的借鉴意义.
    Abstract: With the development and popularization of cloud computing, the security situation of cloud computing environment is getting worse. Cloud forensics is of great significance for safeguarding the cloud computing security. The current cloud forensics technology research is at an early stage, and cloud forensics is faced with problems such as lack of digital evidence integrity, high forensics overhead and low intelligence. Therefore, an intelligent cloud forensics method based on SDS (software defined security) and cloud forensics trend analysis is proposed to mitigate some of these problems. Firstly, a cloud forensics architecture based on software defined security is proposed to realize collaborative real-time forensics between cloud network and cloud computing platform. Secondly, a cloud forensics trend analysis algorithm based on the HMM (hidden Markov model) is proposed to realize intelligent forensics strategy decision-making and forensics resource scheduling in the cloud forensics architecture. The experimental results show that, compared with the separate network forensics method and cloud computing platform forensics method, the forensics capacity of this method increases to 91.6%, and the forensics overhead of this method is in between, achieving a better effect between forensics capability and forensics overhead. This method has some referential significance for cloud service providers to provide cloud forensics service.
  • 期刊类型引用(6)

    1. 陈培欣,罗志娟. 基于区块链的云取证方案. 网络安全技术与应用. 2024(03): 124-126 . 百度学术
    2. 丁丽萍,杜漠,黄昭颖,肖炯恩. 基于人工智能与区块链技术融合的端到云智慧执法平台. 警察技术. 2022(01): 62-69 . 百度学术
    3. 吕锋. 云平台下入侵人员位置实时监测方法研究. 计算技术与自动化. 2022(02): 29-33 . 百度学术
    4. 陈葳葳,曹利,顾翔. 基于区块链的车联网电子取证模型. 计算机应用. 2021(07): 1989-1995 . 百度学术
    5. 唐寅,何嘉. 基于软件定义的安全功能服务链部署方法. 计算机工程与设计. 2021(11): 3052-3058 . 百度学术
    6. 李嘉鑫,马征兆,张叶舟,唐远新,翟继强. 基于云取证的轻量级虚拟机监视器设计. 计算机与网络. 2020(23): 61-64 . 百度学术

    其他类型引用(4)

计量
  • 文章访问数:  1265
  • HTML全文浏览量:  3
  • PDF下载量:  467
  • 被引次数: 10
出版历程
  • 发布日期:  2019-09-30

目录

    /

    返回文章
    返回