CN107707531A - A kind of safe cloud computing system - Google Patents
A kind of safe cloud computing system Download PDFInfo
- Publication number
- CN107707531A CN107707531A CN201710822013.0A CN201710822013A CN107707531A CN 107707531 A CN107707531 A CN 107707531A CN 201710822013 A CN201710822013 A CN 201710822013A CN 107707531 A CN107707531 A CN 107707531A
- Authority
- CN
- China
- Prior art keywords
- cloud computing
- output end
- input
- module
- electrical connection
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/06—Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1097—Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a kind of safe cloud computing system, including cloud center, safe cloud computing terminal and client terminal, the input of the output end electrical connection compression module of client terminal, the input of the output end electrical connection encrypting module of compression module, the input of the output end electrical connection information sending module of encrypting module, the input of the output end electrical connection information receiving module of information sending module, the input of the output end electrical connection FWSM of information receiving module, the input of the output end electrical connection client terminal of FWSM, information sending module with safe cloud computing terminal is two-way electrically connects, cloud center is connected with safe cloud computing terminal, cloud center includes self contained data base, isolated data storehouse and shared data bank, self contained data base, transmission channel is provided between isolated data storehouse and shared data bank.The present invention can flexibly select storage form, can so save resource, reduce cost according to the height of data security levels.
Description
Technical field
The present invention relates to information security field, specifically a kind of safe cloud computing system.
Background technology
With information-based fast development, cloud computing is more and more concerned, either internet manufacturer and operator, also
It is communication manufacturer and basic network operator, all cloud computing is shown greatly to pay close attention to.It is substantial amounts of to use under cloud computing scene
Family information all concentrates on cloud computing provider, and compared with traditional Internet service, its information is more concentrated, information assets valency
The attack that value is higher, faces also can be more.The security solution of cloud computing needs the safe need of differentiation according to different business
Ask, there is provided security solution.And the security solution traditionally formulated for single business, cloud computing can not be adapted to and put down
The characteristic of platform shared resources, therefore, it is necessary to cloud computing is innovated safely in system-level architecture, to adapt to the new spy of platform
Property, meet the personalized secure demand of all business on platform.The popularization and use of cloud computing, its biggest obstacle are not work(
Can, but the safety problem that user worries, if cloud computing is once broken, destructive power can be bigger.Therefore, it is necessary to talk cloud computing
Pay attention to cloud terminal because data and service be on " cloud ", but final user to access these services will be by terminal, therefore
Terminal security is extremely important.At present, as the terminal for being connected to high in the clouds is on the increase, gradually expose that identity is given away secrets, data are stolen
Take, information lose etc. many potential safety hazards, the safety guarantee of cloud terminal it is in urgent need of strengthening.
The content of the invention
It is an object of the invention to provide a kind of safe cloud computing system, is asked with solve to propose in above-mentioned background technology
Topic.
To achieve the above object, the present invention provides following technical scheme:
A kind of safe cloud computing system, including cloud center, safe cloud computing terminal and client terminal, the output of the client terminal
The input of end electrical connection compression module, the input of the output end electrical connection encrypting module of the compression module, the encryption
The input of the output end electrical connection information sending module of module, the output end electrical connection information of described information sending module receive
The input of module, the input of the output end electrical connection FWSM of described information receiving module, the FWSM
Output end electrical connection client terminal input, described information sending module with safe cloud computing terminal is two-way electrically connects, institute
State cloud center with the safe cloud computing terminal to be connected, the cloud center includes self contained data base, isolated data storehouse and shared number
According to storehouse, be provided with transmission channel between the self contained data base, isolated data storehouse and shared data bank, the self contained data base, every
Interconnected two-by-two by transmission channel between database and shared data bank.
As the further scheme of the present invention:The safe cloud computing terminal includes mainboard, digital certificate computing storage IC
Module and fingerprint instrument.
As the further scheme of the present invention:The mainboard passes through the transmission channel and the independent data at the cloud center
Storehouse, isolated data storehouse and shared data bank are respectively connected with.
As the further scheme of the present invention:The digital certificate computing storage IC modules are integrated on the mainboard.
As further scheme of the invention:The fingerprint instrument is connected with digital certificate computing storage IC modules.
Compared with prior art, the beneficial effects of the invention are as follows:Using self contained data base, isolated data storehouse and shared data
The data storage areas form of three kinds of storehouse framework, it is bright storage form flexibly to be selected according to the height of data security levels, this
Sample can save resource, reduce cost, and the and can data higher to security level required provide effective safety assurance;Meanwhile
By way of authentication, the situation that cloud computing terminal safeguard procedures weakness causes user profile to reveal is efficiently solved,
Many potential safety hazards such as identity is given away secrets, data theft, information are lost can be effectively effected a radical cure, pass through compression module and encrypting module
The data of user is compressed and encrypted respectively, the efficiency of uplink data can be improved, and prevents that data is compromised, safety
Property it is high.
Brief description of the drawings
Fig. 1 is the structural representation of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Site preparation describes, it is clear that described embodiment is only part of the embodiment of the present invention, rather than whole embodiments.It is based on
Embodiment in the present invention, those of ordinary skill in the art are obtained every other under the premise of creative work is not made
Embodiment, belong to the scope of protection of the invention.
Referring to Fig. 1, in the embodiment of the present invention, a kind of safe cloud computing system, including cloud center 8, safe cloud computing end
End 1 and client terminal 5, the input of the output end electrical connection compression module 4 of the client terminal 5, the compression module 4 it is defeated
Going out the input of end electrical connection encrypting module 3, the output end of the encrypting module 3 electrically connects the input of information sending module 2,
The input of the output end electrical connection information receiving module 6 of described information sending module 2, the output of described information receiving module 6
The input of end electrical connection FWSM 7, the input of the output end electrical connection client terminal 5 of the FWSM 7, institute
State information sending module 2 and safe cloud computing terminal 1 is two-way electrically connects, the cloud center 8 and the safe phase of cloud computing terminal 1
Even, the cloud center 8 includes self contained data base 9, isolated data storehouse 10 and shared data bank 11, the self contained data base 9, isolation
Transmission channel, the self contained data base 9, isolated data storehouse 0 and shared data are provided between database 10 and shared data bank 11
Interconnected two-by-two by transmission channel between storehouse 11.
The safe cloud computing terminal 1 includes mainboard, digital certificate computing storage IC modules and fingerprint instrument, the mainboard
Phase is distinguished by the transmission channel and self contained data base 9, isolated data storehouse 10 and the shared data bank 11 at the cloud center 8
Even, the digital certificate computing storage IC modules are integrated on the mainboard, and the fingerprint instrument is deposited with the digital certificate computing
Storage IC modules are connected.
Using the data storage areas form of 11 3 kinds of self contained data base 9, isolated data storehouse 0 and shared data bank frameworks,
It is bright flexibly to select storage form according to the height of data security levels, can so save resource, reduce cost, and can
The data higher to security level required provide effective safety assurance;Meanwhile by way of authentication, efficiently solve
Cloud computing terminal safeguard procedures weakness causes the situation that user profile is revealed, can effectively effect a radical cure identity give away secrets, data theft, letter
Many potential safety hazards such as breath loss, are compressed and added to the data of user respectively by compression module 4 and encrypting module 3
It is close, the efficiency of uplink data can be improved, and prevent that data is compromised, it is safe.
It is obvious to a person skilled in the art that the invention is not restricted to the details of above-mentioned one exemplary embodiment, Er Qie
In the case of without departing substantially from spirit or essential attributes of the invention, the present invention can be realized in other specific forms.Therefore, no matter
From the point of view of which point, embodiment all should be regarded as exemplary, and be nonrestrictive, the scope of the present invention is by appended power
Profit requires rather than described above limits, it is intended that all in the implication and scope of the equivalency of claim by falling
Change is included in the present invention.Any reference in claim should not be considered as to the involved claim of limitation.
Moreover, it will be appreciated that although the present specification is described in terms of embodiments, not each embodiment is only wrapped
Containing an independent technical scheme, this narrating mode of specification is only that those skilled in the art should for clarity
Using specification as an entirety, the technical solutions in the various embodiments may also be suitably combined, forms those skilled in the art
It is appreciated that other embodiment.
Claims (5)
1. a kind of safe cloud computing system, including cloud center, safe cloud computing terminal and client terminal, it is characterised in that described
The input of the output end electrical connection compression module of client terminal, the output end of the compression module electrically connect the defeated of encrypting module
Enter end, the input of the output end electrical connection information sending module of the encrypting module, the output end of described information sending module
The input of information receiving module is electrically connected, the output end of described information receiving module electrically connects the input of FWSM,
The input of the output end electrical connection client terminal of the FWSM, described information sending module and safe cloud computing terminal
Two-way electrical connection, the cloud center are connected with the safe cloud computing terminal, and the cloud center includes self contained data base, isolation number
According to storehouse and shared data bank, transmission channel is provided between the self contained data base, isolated data storehouse and shared data bank, it is described only
It is vertical to be interconnected two-by-two by transmission channel between database, isolated data storehouse and shared data bank.
2. a kind of safe cloud computing system according to claim 1, it is characterised in that the safe cloud computing terminal includes
Mainboard, digital certificate computing storage IC modules and fingerprint instrument.
3. a kind of safe cloud computing system according to claim 2, it is characterised in that the mainboard is logical by the transmission
Self contained data base, isolated data storehouse and the shared data bank in road and the cloud center are respectively connected with.
4. a kind of safe cloud computing system according to claim 2, it is characterised in that the digital certificate computing stores IC
Module is integrated on the mainboard.
5. a kind of safe cloud computing system according to claim 2, it is characterised in that the fingerprint instrument is demonstrate,proved with the numeral
Book computing storage IC modules are connected.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710822013.0A CN107707531A (en) | 2017-09-13 | 2017-09-13 | A kind of safe cloud computing system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710822013.0A CN107707531A (en) | 2017-09-13 | 2017-09-13 | A kind of safe cloud computing system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107707531A true CN107707531A (en) | 2018-02-16 |
Family
ID=61172379
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710822013.0A Pending CN107707531A (en) | 2017-09-13 | 2017-09-13 | A kind of safe cloud computing system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107707531A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109117659A (en) * | 2018-08-29 | 2019-01-01 | 广东恒电信息科技股份有限公司 | A kind of big data security isolation management system under multi-tenant mode |
| CN111464551A (en) * | 2020-04-10 | 2020-07-28 | 广东电网有限责任公司惠州供电局 | Network security analysis system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120297184A1 (en) * | 2011-05-20 | 2012-11-22 | Lockheed Martin Corporation | Cloud computing method and system |
| CN104092728A (en) * | 2014-06-20 | 2014-10-08 | 裴兆欣 | Safe cloud computing system |
| CN205179098U (en) * | 2015-11-05 | 2016-04-20 | 天津鸿鑫伟业科技有限公司 | Cloud computing system of high -efficient high security |
-
2017
- 2017-09-13 CN CN201710822013.0A patent/CN107707531A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120297184A1 (en) * | 2011-05-20 | 2012-11-22 | Lockheed Martin Corporation | Cloud computing method and system |
| CN104092728A (en) * | 2014-06-20 | 2014-10-08 | 裴兆欣 | Safe cloud computing system |
| CN205179098U (en) * | 2015-11-05 | 2016-04-20 | 天津鸿鑫伟业科技有限公司 | Cloud computing system of high -efficient high security |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109117659A (en) * | 2018-08-29 | 2019-01-01 | 广东恒电信息科技股份有限公司 | A kind of big data security isolation management system under multi-tenant mode |
| CN111464551A (en) * | 2020-04-10 | 2020-07-28 | 广东电网有限责任公司惠州供电局 | Network security analysis system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101183932B (en) | Security identification system of wireless application service and login and entry method thereof | |
| CN100399739C (en) | Method and system for realizing trust identification based on negotiation communication | |
| CN106792692B (en) | A kind of physics dicing method based on SDN technology | |
| CN106991329A (en) | A kind of trust calculation unit and its operation method based on domestic TCM | |
| CN107480540B (en) | Data access control system and method | |
| CN104283961B (en) | Community management integrates cloud service platform and method | |
| CN109756579B (en) | Block chain-based Internet of things information secure transmission system and transmission method | |
| CN106452793A (en) | Method and system of electronic signature | |
| CN107277000B (en) | A kind of electronic certificate method for managing security and system | |
| CN102457560B (en) | A kind of method for managing security of cloud computing and system | |
| CN108123795A (en) | Distributing method, application process, publishing platform and the system of quantum key chip | |
| KR101403626B1 (en) | Method of integrated smart terminal security management in cloud computing environment | |
| CN108615154A (en) | A kind of block chain digital signature system and process for using based on hardware encipherment protection | |
| CN108616540A (en) | A kind of platform authentication method and system filtering certification with statement formula based on cross-platform Encryption Algorithm | |
| CN107707531A (en) | A kind of safe cloud computing system | |
| CN109561075B (en) | Enterprise tax handling safety channel system | |
| Lanois | Caught in the Clouds: The Web 2.0, Cloud Computing, and Privacy? | |
| CN106991332A (en) | The method and device that a kind of mass data is stored safely | |
| CN104092728A (en) | Safe cloud computing system | |
| CN106713228A (en) | Cloud platform key management method and system | |
| CN108600266A (en) | A kind of statement filtering authentication method and Verification System | |
| CN106060032B (en) | User data integration and reassignment method and system | |
| CN111132136B (en) | Mobile application information security system application system | |
| CN105743855A (en) | Safety control system and method for interment application equipment | |
| Rahman et al. | Man in the Middle Attack Prevention for edg-fog, mutual authentication scheme |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180216 |
|
| RJ01 | Rejection of invention patent application after publication |