互联网数据中心安全管理

阅读本文请下载本期完整版PDF： 

[摘要] 文章认为互联网数据中心面临的主要安全威胁包括侵入攻击、拒绝服务攻击和分布式拒绝服务攻击、蠕虫病毒等。在数据中心网络安全建设和管理中，文章建议从网络架构、安全设备、安全管理多方面保障互联网数据中心安全。具体手段上建议采取网络多层多区域设计原则，建立安全边界，实施不同等级的安全措施和防护办法，以形成多层次的网络架构；部署多方面的网络安全设备，形成全方位一体化安全防护体系；制订健全的安全管理和运维制度，建设系统的安全管理体系。

[关键词] 互联网数据中心；网络架构；安全威胁；安全技术；安全管理

[Abstract] Security threats for data centers include intrusion, denial of service, distributed denial of service, and worms. In this paper, we suggest that research into data center security should focus on network architecture, security equipment, and security management. We suggest ways of securing a data center, including building an architecture based on multilayers and multizones, establishing secure borders, and using different levels of security and different protective measures. We also suggest deploying a wide range of network security devices and formulating security management and operation and maintenance rules.

[Keywords] Internet data center; network architecture; security threats; security management.