Tp ch Khoa hc Trng i hc Cn Th

S chuyn : Cng ngh Thng tin (2013): 39-46

TNG QUAN V AN NINH TRN IN TON M MY

Trn Cao 1
1

Khoa Cng ngh Thng tin & Truyn thng, Trung i hc Cn Th ABSTRACT In recent years cloud computing has emerged as a new development phase of the Internet. Cloud computing, its service models in particular, allows the use of hardware, software as services, that leads a fundamental change in the application of information technology in practice - shift from investment to the hire of computing resources. However, cloud adoption is still controversy issues surrounding the safety and security of system. This paper provides an overview on safety issues and security of cloud computing, from the perspective of architecture, services as well as main characters of cloud computing. TM TT My nm gn y in ton m my (cloud computing) ni ln nh l mt giai on pht trin mi ca Internet. in ton m my m c th l cc m hnh dch v ca n cho php s dng phn cng, phn mm nh l dch v lm thay i cn bn vic ng dng cng ngh thng tin trong thc tin chuyn t u t sang thu bao. Tuy nhin, vic chp nhn in ton m my vn cn kh d dt xoay quanh vn an ton v an ninh h thng. Bi vit ny cung cp mt ci nhn tng quan v vn an ton v an ninh ca in ton m my, t gc kin trc cho n dch v cng nh tnh cht ca m my in t. nng m rng v tnh cht co gin m in ton m my cung cp. Thay v mt kin trc h thng tnh, in ton m my h tr kh nng t ng m rng quy m v nhanh chng thu hp quy m, cung cp cho khch hng cc dch v c tin cy cao, thi gian p ng nhanh chng v s linh hot x l cc bin ng thng lng v nhu cu. in ton m my cng h tr nhiu ngi dng, cung cp cc h thng cu hnh trong sut mt cch thng nht mang tnh chia s c. Cng ngh o ha cho php cc nh cung cp in ton m my chuyn i mt my ch thnh nhiu my o, do loi b my tnh client-server vi cc h thng mt mc ch. iu ny ti a ha kh nng phn cng v cho php khch hng tn dng trit v kinh t theo quy m s dng. 39

Thng tin chung: Ngy nhn: 03/09/2013 Ngy chp nhn: 21/10/2013 Title: Overview on cloud computing security T kha: An ton mng, kin trc hng dch v, IaaS, PaaS, SaaS Keywords: Network security, Service oriented architecture, IaaS, PaaS, SaaS

1 GII THI U in ton m my ang nhanh chng ni ln nh mt xu hng cng ngh, hu ht cc nh cung cp cng ngh hoc s dng phn mm, phn cng v c s h tng u c th tn dng. Cng ngh v kin trc dch v in ton m my cho php khch hng ca cc dch v ny khng s hu ti sn trong cc m my in t nhng tr tin trn c s mi ln s dng. V bn cht, h ang thu c s h tng vt l v cc ng dng trong kin trc dng chung. Dch v in ton m my c th t lu tr d liu cho n cc ng dng Web ca ngi dng cui, cng vi cc dch v in ton tp trung khc. Mt s khc bit quan trng gia m hnh tnh ton truyn thng v in ton m my l kh

Tp ch Khoa hc Trng i hc Cn Th

S chuyn : Cng ngh Thng tin (2013): 39-46

Theo nghin cu ca Gartner a ra trong 4, doanh thu trn ton th gii t in ton m my nm 2009 l 58.6 t USD, d bo t 148 t USD vo 2015. Nghin cu gn y ca IDC 4 ch r doanh thu trn ton th gii t in ton m my cng cng (public cloud) nm 2010 l hn 21,5 t USD v s t 72,9 t USD vo nm 2015, tc tng trng hng nm l 27,6%. Tc tng trng ny gp hn bn ln so vi tc tng trng d bo cho ton th trng CNTT trn th gii ni chung (6,7%). Cng theo IDC, in ton m my lun nm trong tp 10 cc cng ngh nh m nht trong cc nm t 2009 n nay trong lnh vc cng ngh thng tin. Mc d c nhng li ch v tim nng pht trin nh vy nhng in ton m my vn cn gp nhiu d dt trong chp nhn v nhn rng ch yu l vn an ton. Tm gc qua vn k thut, t quan im ca ngi dng th cc vn ch yu cn tr vic chp nhn in ton m my l : Cc doanh nghip giao vic qun l an ninh cho mt bn th ba nn c th khng kim sot c vn an ninh. Ti sn ca nhiu ngi thu bao khc nhau nm trong cng mt v tr (server) v s dng cng mt dch v m khng bit r cch thc kim sot an ninh, bo mt ca nh cung cp. Thiu s m bo an ton, an ninh trong cc hp ng gia ngi dng (ngi thu bao) in ton m my v cc nh cung cp in ton m my. Cc my ch tp trung cc ti sn c gi tr v cng khai c s h tng lm tng xc sut cc cuc tn cng nguy him. Bi vit ny s phn tch nhng thch thc v cc vn lin quan an ninh trn in ton m my, nhng im yu trong m hnh in ton m my. Nhng vn ny s c xem xt t gc kin trc dch v n m hnh cng vi cc c trng ca in ton m my. 2 IN TON M MY 2.1 Khi nim Thut ng in ton m my (cloud computing) ra i vo khong gia nm 2007 nhm khi qut li cc hng pht trin mi ca cng ngh thng tin nh vo mng Internet bng thng rng v cc trung tm in ton khng l ca cc hng cng ngh nh Google, Amazon, IBM, Microsoft, in ton m my gn lin vi mt 40

quan nim mi v cng ngh thng tin, l: cc ngun lc in ton khng l nh phn mm, d liu dch v s nm ti cc my ch o (m my) trn Internet thay v trong my tnh ca t chc, c nhn mi ngi kt ni v s dng khi cn. Vi cc dch v h tng, phn mm sn c trn Internet, doanh nghip khng phi mua v duy tr hng trm, thm ch hng nghn my tnh cng nh phn mm cho cng ty. H c th thu ton b h tng cng ngh thng tin nh thu bao in thoi hay s dng in, nc hng ngy. Theo nh ngha ca NIST 1: in ton m my l mt m hnh cho php thun tin, truy cp mng theo yu cu n mt ni cha cc ngun ti nguyn tnh ton c th chia s v cu hnh c (v d: mng, my ch, lu tr, ng dng v dch v), chng c th c cung cp v pht hnh nhanh chng vi n lc qun l hoc tng tc vi nh cung cp ti thiu.

Hnh 1: Minh ha cho in ton m my theo Wikipedia 2 in ton m my i khi cn c coi l th h Internet mi. T in m Wikipedia 2 nh ngha: in ton m my l vic s dng cc ti nguyn my tnh (phn cng v phn mm) c sn t xa v truy cp c qua mng (thng l Internet). Hnh 1 pht ha khi nim v in ton m my. in ton m my cung cp cc tin ch truy cp vo ti nguyn chia s v c s h tng chung, cung cp dch v theo yu cu qua mng thc hin cc hot ng p ng nhu cu tc nghip. V tr ca ngun lc vt cht v thit b c truy cp l trong sut, khng c bit (v cng khng cn bit) i vi ngi dng cui (end user). N cng cung cp phng tin cho ngi s dng (hay khch hng) pht trin, trin khai v

Tp ch Khoa hc Trng i hc Cn Th

S chuyn : Cng ngh Thng tin (2013): 39-46

qun l cc ng dng ca h trn cc m my, k c o ha cc ngun ti nguyn, t bo tr v qun l cc ng dng. 2.2 Cc dch v c bn ca in ton m my in ton m my cung cp 3 m hnh dch v c bn: dch v h tng (IaaS), dch v nn tng (PaaS) v dch v phn mm (SaaS), vi mt s c trng chnh: thu bao theo yu cu, nhiu thu bao, dng bao nhiu tr by nhiu. V mt k thut, m my l mt tp hp ti nguyn tnh ton rng ln v cung cp 3 dch v ni trn. Dch v h tng (IaaS - Infrastructure as a Service) ni n kh nng cung cp cho khch hng ti nguyn phn cng nh kh nng tnh ton, x l (tc l CPU), lu tr, mng v cc ti nguyn khc, khch hng c th trin khai v chy phn mm ty , trong c th bao gm cc h iu hnh v cc ng dng. Khch hng s khng qun l hoc kim sot cc c s h tng in ton m my nhng c kim sot i vi cc h iu hnh, lu tr, ng dng trin khai v kim sot c hn ch cc thnh phn mng c cung cp. IaaS gn lin vi vic o ha ti nguyn phn cng. Nhng Nh cung cp IaaS in hnh l Amazon EC2, GoGrid v HP [19]. Nh cung cp dch v Iaas s chu trch nhim mi cng vic nng n v thit lp h tng, thit lp chc nng cung cp h tng v thu ph thu bao h tng. Khch hng c th tng gim mt cch t ng, thun tin v ti nguyn h cn. Mt s lng ln ti nguyn c th c cung cp v sn dng trong mt thi gian ngn sau khi c yu cu v quan trng hn l hnh vi ca h thng khng thay i, khng c li tim tng do chuyn i t h thng nh sang h thng ln hn hay ngc li.

Dch v nn tng (PaaS- Platform as a Service): l kh nng cung cp cho khch hng nn tng trin khai trn c s h tng in ton m my cc ng dng do khch hng to ra t ngn ng lp trnh v cc cng c h tr ca nh cung cp. Khch hng khng qun l hoc kim sot c s h tng in ton m my c bn nh mng, my ch, h iu hnh, thit b lu tr, nhng c kim sot i vi cc ng dng trin khai v c th thc hin cu hnh mi trng lu tr. C th coi dch v ny cung cp cc phn mm h thng cn thit nh l ngn ng lp trnh, mi trng lp trnh, mi trng thc thi, h iu hnh ngi dng truy cp ti nguyn v to ra cc ng dng ca mnh. Cc nh cung cp dch v ny in hnh nh Microsoft Windows Azure, Google App Engine. Dch v phn mm (SaaS Software as a Service) l kh nng cung cp cho khch hng s dng cc ng dng (phn mm) ca nh cung cp ang chy trn mt c s h tng in ton m my. Cc ng dng c th truy cp t cc thit b khc nhau thng qua mt giao din ngi dng nh mt trnh duyt web. Khch hng khng qun l hoc kim sot cc c s h tng c bn m my nhng c th thit lp cu hnh cho ng dng ph hp vi mnh. Nhiu ngi trong chng ta chc s dng phn mm trn in ton m my ca Google nh: Gmail, Google Docs, trnh tm kim ca Google,... l nhng v d in hnh v SaaS. Dch v phn mm c cung cp da theo c ch dch v web (web service) v cc cng thng tin in t (portal). 2.3 Cc m hnh trin khai in ton m my C bn m hnh chnh trin khai in ton m my l:

Hnh 2: Nm c trng quan trng ca in ton m my

41

Tp ch Khoa hc Trng i hc Cn Th

S chuyn : Cng ngh Thng tin (2013): 39-46

m my cng cng (Public Cloud): m my c thit lp v cung cp cho rng ri ngi dng thng qua Internet. N cn c bit nh l m my nhiu thu bao vi cc c trng c bn l h tng thng nht, chnh sch chung, ngun lc chia s cho nhiu thu bao, a qui m. M hnh m my ny thng t an ton hn cc m hnh khc v thng ch cung cp cc dch v phn mm chung nht nh b phn mm vn phng, chat, hp trc tuyn, m my ring (Private Cloud): m my c thit lp ch cho mt t chc tng t nh mt mng ni b. N c th c qun l bi chnh t chc hoc mt bn th ba v c th tn ti trn c s h tng trc c. M hnh ny cn c gi l m my ni b v thng ch dnh quyn truy cp vo ti nguyn ca n cho ngi dng trong ni b t chc l ch s hu m my. c im c bn ca m my ring l h tng khng ng nht, chnh sch may o v ty chnh, ti nguyn dnh ring, c s h tng cy nh l vn. Tuy nhin do ch c cc t chc v ngi dng c php mi c th truy cp nn n c th c bo v bi cc quy trnh, quy ch bo mt ring, iu ny lm cho n kh b tn cng hn. m my cng ng (Community Cloud): y l dng m my m h tng c chia s bi mt vi t chc. N h tr mt vi th chung ca cng ng , chng hn nh nhim v, chnh sch bo mt, cc chun, m my hn hp (Hybrid Cloud): h tng ca m my l mt s kt ni ca nhiu m hnh trin khai m my (chung, ring, cng ng) 2.4 c trng ca in ton m my v li ch ca n in ton m my c 5 c trng quan trng (xem Hnh 2): Kh nng co gin (scalability): m my c th cung cp ti nguyn tnh ton theo yu cu. Vic cung cp ny trn nguyn tc l ng v nhiu thu bao, v vy trnh lng ph (dng bao nhiu tr by nhiu). Kh nng qun tr v vn hnh (manageability): y l kh nng iu khin, kim sot h thng v tnh cc ph thu bao. Kh nng truy cp (accessibility) v kh chuyn: truy cp mi lc mi ni mt cch nht qun v kh nng truy cp vi cc thit b nh, yu (thin client) nh l in thoi di ng. 42

Hiu nng cao v ti u ha (performance and Optimization): h tng m my gii quyt v che du mi vn phc tp trong tnh ton song song, cn bng ti, lp lch cung cp kh nng tnh ton hiu nng cao v ti u ha. Kh nng sn dng vi tin cy cao (availability): h tng m my cng c cung cp rng ri cho ngi dng vi kh nng chu ng li cao, h thng tn ti lu di v kh nng bo mt tt. 3 NGHIN CU C LIN QUAN V AN TON TRN IN TON M MY R rng rng c nhiu vn cn bn trong quyt nh chp nhn in ton m my. Hnh 3 cho mt s vn chnh trn in ton m my. y l nhng ch lun c quan tm, theo nghin cu ch ra trong 5, vn an ton c t hng u. Vn th kh nhng l do c v tht n gin, bi v ngi ta t d liu ca mnh (loi ti sn (rt) c gi tr) trn mt my tnh trn my, dng mt phn mm ca ai (mt nh cung cp) mt ni no khng bit r v chy trn mt my o m my tht (tc l CPU vt l) nm u cng khng r nt. C rt nhiu ni lo lng trong hon cnh nh vy: mt d liu, thng tin b r r, b theo di, b ly cp, la o, nghn mng, Nhiu nghin cu v vn an ton trn in ton m my c thc hin. Nhm Cloud Computing Use Cases 6 tho lun nhiu vn lin quan ti m hnh in ton m my trn cc quan im ca ngi dng, nh pht trin v k s bo mt. Vn phng an ton thng tin v mng Chu u (ENISA) 7 a ra cc ri ro, cc nh hng, cc im yu ca in ton m my. Mt nghin cu v an ton c rng buc bng hp ng 9 c gng a ra cc c t lin quan ti v tr t d liu, phn nhm d liu v phc hi d liu. Mt s vn chuyn bit v an ton trn in ton m my nh ton vn d liu, tnh ring t v thng tin nhy cm c tho lun trong 10. Vn k thut tn cng, chng hn kiu tn cng XML (XML-attack) c th tm thy trong 11, l hng bo mt m my c th tm thy trong 12. Cc thch thc an ton v bo mt lin quan n cc m hnh dch v ca in ton m my, c bit l m hnh SaaS c th tham kho trong 13. Vn an ton trn in ton m my l rt phc tp v n lin quan n nhiu kha cnh v ch th: kin trc, dch v in ton m my, c trng ca m my, thu bao, ch s hu, chnh sch bo

Tp ch Khoa hc Trng i hc Cn Th

S chuyn : Cng ngh Thng tin (2013): 39-46

mt d liu, Hnh 4 cho mt hnh nh rng, khi qut v s phc tp ca vn ny. Phn tip theo ca bi vit s i vo tng hp v vn an

ninh trn in ton m my t gc kin trc, dch v v mt s c im chnh ca in ton m my.

Hnh 3: Cc vn quan tm hng u trong in ton m my 5

Hnh 4: S phc tp ca vn an ton trn in ton m my 13 4 MT S VN C QUAN TM V AN TON TRN IN TON M MY 4.1 Vn an ton lin quan n kin trc ca in ton m my Mt m my in t l mt cm my tnh kt ni nhau thng qua mng cc b hoc mng din rng trn c s o ha ti nguyn phn cng nh chc nng o ha cung cp mt cch trong sut 3 dch v c bn ca in ton m my l SaaS, PaaS v IaaS. M hnh trin khai m my c th 43 l cng cng, m my ring hoc cng ng hay hn hp nh ni phn trn. Cc dch v in ton m my c kin trc phn tng (layer), mi tng cung cp cc dch v v tin ch (chc nng) ring ca n trn c s cc dch v v tin ch ca tng thp hn (xem Hnh 5). V vy an ninh ca h thng ph thuc vo an ninh ca mi tng c thit k v ci t km theo nh l 1 dch v hay tin ch.

Tp ch Khoa hc Trng i hc Cn Th

S chuyn : Cng ngh Thng tin (2013): 39-46

4.1.2 An ninh mc dch v nn tng mc trung gian, dch v nn tng (PaaS) da trn dch v tng di (IaaS) v cung cp dch v ca mnh cho tng trn n (SaaS). mc ny, cc dch v hay tin ch v an ton c th c ci t thm hoc cu hnh cc dch v c cung cp t tng di. y, ngi dng c th qun tr phn thu bao ca mnh to ra mi trng thc thi cc ng dng. Hin nay, dch v PaaS ca m my da trn m hnh kin trc hng dch v (SOA) v vy nhng nguy c v an ton ging ht nh nhng nguy c an ton ca SOA nh tn cng t chi dch v, tn cng XML v nhiu cch tn cng khc 1114. V dch v nn tng l dch v a thu bao, nhiu ngi dng nn c ch xc thc, chng thc l rt quan trng. Trch nhim bo mt v an ton trong trng hp ny lin quan n c nh cung cp, ngi thu bao v ngi dng (user). Cc dch v PaaS phi cung cp mi trng pht trin ng dng bao gm chc nng tc nghip, cc chc nng an ton v qun l h thng. Nh cung cp cn c c ch bt buc chng thc truy cp cc dch v PaaS, ngi thu bao c trch nhim pht trin hay cung cp cc chc nng bo mt cn thit thng qua c ch chng thc chung v ngi dng phi c trch nhim bo v ti khon ng nhp c nhn ca mnh. 4.1.3 An ninh mc dch v phn mm mc dch v phn mm (SaaS), cc phn mm c cung cp nh l dch v trn mng, s dng cc chnh sch bo mt d liu v ti nguyn khc t cc tng bn di cung cp. Mt s dch v phn mm kh ph bin hin nay l Google Search Engine, Google mail Khch hng ca cc dch v ny khng bit c d liu ca mnh c qun l v khai thc nh th no v n nm u trn th gii ny. Vn an ninh y lin quan n bo mt d liu, r r thng tin nhy cm v nguy c b tn cng t chi truy cp Trch nhim v an ton c chia s cho nh cung cp h tng m my v nh cung cp dch v phn mm. Ngi dng u cui (end user) ch l ngi dng phn mm vi cc la chn cu hnh khc nhau c cung cp bi phn mm nn khng c nhiu vai tr trong an ton h thng. Ngi dng cui ch bit tin vo nh cung cp phn mm v cc cam kt ca nh cung cp v trch nhim bo mt. Thng thng cc cam kt ny c th l iu khon trong hp ng thu bao phn mm, nh l: an ton thng tin v cht lng dch v. Chng thng bao gm: dung lng d liu, ton vn d liu, chnh 44

Hnh 5: Kin trc phn tng dch v trong in ton m my 4.1.1 An ninh mc h tng An ninh ca cc dch v tng thp nh tng vt l hay h tng (IaaS) ph thuc vo nh cung cp, tc l ch s hu ca m my. Hin ti, c mt s nh cung cp dch v IaaS nhng cha c chun no v an ninh cho cc dch v ny. V mt nguyn tc, khch hng thu bao dch v IaaS c th p t cc chnh sch an ninh ca mnh bng cch pht trin cc dch v hay tin ch ring thng qua cc dch v ca tng vt l v cc dch v IaaS ca nh cung cp. Chnh sch v an ton mc ny l rt phc tp v nhiu chnh sch khc nhau p t ln cng mt mi trng phn cng (vt l). Nhng mi e da an ton mc ny c th lin quan ti my ch o (Virtual Machine) nh l vi-rt v cc phn mm c hi khc. Nh cung cp dch v chu trch nhim chnh v gii php cho vn ny. Khch hng thu bao cng c th thc hin cc gii php v chnh sch an ton ring cho mnh, t lm gia tng gnh nng ln phn cng v hiu nng chung ca h thng. Cc my ch o vn c th b ly nhim hay b kim sot bi phn mm c hi. Trong trng hp ny, cc chnh sch an ninh ca khch hng c th b v hiu, nh vy nh cung cp dch v phi l ngi c vai tr chnh trong an ninh mc ny. Ngoi ra, v IaaS khai thc h tng vt l v chnh sch chung nh DNS Server, Switch, IP protocol, V vy, kh nng b tn cng vo khch hng yu nht sau ly lan cho cc khch hng khc. Vn ny hin nay khch hng thu bao khng th can thip g v nhiu my ch o chia s cng ti nguyn vt l nh CPU, b nh, a, Mi nh x vt l-my o, my o-vt l u thng qua mt b o ha, nu b ny b phn mm c hi kim sot th ton b khch hng trong m my s b cng mt mi him ha nh nhau.

Tp ch Khoa hc Trng i hc Cn Th

S chuyn : Cng ngh Thng tin (2013): 39-46

sch v phn tn, sao lu v phc hi d liu khi c s c, tin cy, tnh ring t v an ton mng cng vi cc cam kt khc v cht lng dch v nh dung lng ng truyn, tnh sn dng 13. mc ny, cc phn mm c cung cp trn nn web (web-based application). Cc web ny thng c t my ch o trn m my, cho nn chng phi c kim tra bng cch qut cc yu im web nh vo mt ng dng qut no , v d nh cc phn mm c cc chc nng nh trong cng b 15. Cc tng la c th c dng ngn chn cc tn cng vo im yu bit ca cc phn mm nn web. Nhng cng vic ny thuc v nh cung cp phn mm hoc m my, ngi dng cui nhiu lm l tham gia vo la chn cc cu hnh (option) khc nhau m thi. Tnh hnh ny c th dn n nhng ln xn trong cu hnh an ton chung ca h thng do tnh cht a thu bao, ko theo nhng l hng trong an ton h thng. V vy, cc nh cung cp phi c nhng chnh sch chung bt buc v cch kim sot sao cho nhng cu hnh an ton, bo mt phi nht qun, cht ch v khng c l hng. 4.2 Vn qun l an ton h thng Phn trn va trnh by cho thy tnh phc tp trong k thut an ton trn m my t gc kin trc v dch v ca in ton m my. Phn ny xin cp n mt s kha cnh v qun l, vn khng th tch ri vi k thut nhm m bo cho s p dng chnh sch bo mt ng n, cng tc v c trch nhim gia cc bn c lin quan trong in ton m my. Nghin cu v qun l an ton trn m my l rt phc tp v n lin quan n s lng ln ngi c lin quan vi cc yu cu (requirement) khc nhau v an ton. Vic qun l an ton lin quan ti vic xy dng cc yu cu v an ton, c t chnh sch an ton, c ch kim sot v cc cu hnh khc nhau v an ton tng ng vi cc chnh sch c th. Vic qun l ny l ng v lun phi p ng cc yu cu mi, cc phn hi t mi trng v t chnh qu trnh kim sot an ton. in ton m my cung cp cc dch v trn c s mt hp ng trch nhim (SLA Service Level Agreement), y l php l quan trng trong cc tranh chp, bt ng sau ny. Hp ng thng thng bao gm cht lng dch v, tnh sn dng, tin cy v an ton. V nh bao cam kt hp ng, n c nhng iu khon v tr ph dch v x pht v bi thng. Mt i hi cao v an ton thng dn n mt tiu tn nhiu ngun lc v v vy mc gi dch v s cao ln tng ng. Mt 45

mu (template) hng dn v hp ng dch v m my c th tm thy ti 16. c gi quan tm su phn ny c th xem thm trong 17. Cn lu rng nhng i hi khc khe v an ton c th nh hng n hiu nng chung ca h thng (cng knh hn, chm hn,). V vy, cn c s cn bng gia yu cu an ton, chi ph v hiu nng ca h thng. Nhiu kha cnh khc lin quan n qun l an ton cng nh cc c quan qun l an ton m my c th tm thy trong cng b 18. 5 KT LUN Mc d in ton m my ang c coi l mt cuc cch mng Internet lm thay i cch ng dng cng ngh thng tin, nhng vic chp nhn n vn cn nhiu vn v e ngi chung quanh cu hi an ton, bo mt thng tin. Li ch ca in ton m my l r rng v v cng hp dn, n lm gim nh chi ph u t v gnh nng bo tr phn cng, phn mm, tuy nhin t kin trc, dch v v cc c im ca in ton m my cho thy vn cn nhiu cu hi t ra cho vn an ton v bo mt. Cc vn bo mt cp cng thp th vai tr v trch nhim ca nh cung cp cng ln, nhng khch hng c th cm thy bt an v h khng nm r. iu ny c th khc phc bng cc hp ng (SLA) r rng, cht ch v tin cy. Vn an ton c th lin quan ti my ch o, b o ha cng nh l kin trc hng dch v SOA. Mt khc, vn an ton trn in ton m my khng ch l trch nhim ca nh cung cp dch v m cn l trch nhim ca tt c cc bn c lin quan trong m my: nh cung cp, khch hng, ngi dng cui. Vn ny c l vn cn phi cn mt thi gian na c th c gii php tha ng lm tng an ton ca m my, nht l m my cng cng (public). in ton m my cn rt mi v cn tim nng pht trin v ng dng, vn an ton ca m my cn c nghin cu tip tc ngy cng tr nn an ton hn. Mt khc, s dng m my nh th no cho c li, cn bng gia li ch v tnh an ton l s tnh ton ca cc nh qun l cng ty, doanh nghip v s t vn sng sut ca cc chuyn gia cng ngh thng tin. TI LIU THAM KHO 1. Peter Mell, Timothy Grance, The NIST Definition of Cloud Computing, National Institute of Standards and Technology, Special Publication 800-145, September 2011.

Tp ch Khoa hc Trng i hc Cn Th

S chuyn : Cng ngh Thng tin (2013): 39-46

2. http://en.wikipedia.org/wiki/Cloud_computing 3. Frank Gens, Robert P Mahowald and Richard L Villars, IDC Cloud Computing 2010. 4. http://www.idc.com/prodserv/idc_cloud.jsp 5. Chang, L, Ti ; Chin L; Chang, A.Y.; Chun J, C;(2010), Information security issue of enterprises adopting the application of cloud computing, IEEE 2010 Sixth International Conference on Networked Computing and Advanced Information Management (NCM), pp.645, 16-18 Aug. 2010. 6. Cloud Computing Use Case Discussion Group, "Cloud Computing Use Cases Version 3.0," 2010. 7. ENISA, "Cloud computing: benefits, risks and recommendations for information security," 2009, 8. http://www.enisa.europa.eu/act/rm/files/deli verables/cloud-computingrisk-assessment 9. Balachandra Reddy Kandukuri, Ramakrishna Paturi and Atanu Rakshit, "Cloud Security Issues," in Proceedings of the 2009 IEEE International Conference on Services Computing, 2009, pp. 517-520. 10. Kresimir Popovic , Zeljko Hocenski, "Cloud computing security issues and challenges," in The Third International Conference on Advances in Human-oriented and Personalized Mechanisms, Technologies, and Services, 2010, pp. 344-349.

11. Meiko Jensen, Jrg Schwenk, Nils Gruschka and Luigi Lo Iacono, "On Technical Security Issues in Cloud Computing," in IEEE ICCC, Bangalore 2009, pp. 109-116. 12. Bernd Grobauer, Tobias Walloschek and Elmar Stcker, "Understanding CloudComputing Vulnerabilities," IEEE Security and Privacy, vol. 99, 2010. 13. S. Subashini, ,Kavitha, V., "A survey on security issues in service delivery models of cloud computing," Journal of Network and Computer Applications, Vol. 34, 2011. 14. Z. Wenjun, "Integrated Security Framework for Secure Web Services," in IITSI 2010 , pp. 178-183. 15. F. Elizabeth, , Vadim, Okun, "Web Application Scanners: Definitions and Functions," in HICSS 2007, pp. 280b-280b. 16. http://www.ibm.com/developerworks/cloud/ library/cl-slastandards/ 17. Wieder, P.; Butler, J.M.; Theilmann, W.; Yahyapour, R. (Eds.), Service Level Agreements for Cloud Computing, Springer, XXII, 2011. 18. Mohamed Al Morsy, John Grundy and Ingo Mller, An Analysis of The Cloud Computing Security Problem, Proceedings of APSEC 2010 Cloud Workshop, Sydney, Australia, 2010. 19. http://www.clouds360.com/iaas.php

46