Tp ch Khoa hc Trng i hc Cn Th S chuyn : Cng ngh Thng tin (2013): 39-46

TNG QUAN V AN NINH TRN IN TON M MY

Trn Cao 1
1
Khoa Cng ngh Thng tin & Truyn thng, Trung i hc Cn Th

Thng tin chung:
Ngy nhn: 03/09/2013
Ngy chp nhn: 21/10/2013
Title:
Overview on cloud
computing security
T kha:
An ton mng, kin trc
hng dch v, IaaS, PaaS,
SaaS
Keywords:
Network security, Service
oriented architecture, IaaS,
PaaS, SaaS
ABSTRACT
In recent years cloud computing has emerged as a new development phase
of the Internet. Cloud computing, its service models in particular, allows
the use of hardware, software as services, that leads a fundamental
change in the application of information technology in practice - shift
from investment to the hire of computing resources. However, cloud
adoption is still controversy issues surrounding the safety and security of
system. This paper provides an overview on safety issues and security of
cloud computing, from the perspective of architecture, services as well as
main characters of cloud computing.
TM TT
My nm gn y in ton m my (cloud computing) ni ln nh l
mt giai on pht trin mi ca Internet. in ton m my m c th
l cc m hnh dch v ca n cho php s dng phn cng, phn mm
nh l dch v lm thay i cn bn vic ng dng cng ngh thng tin
trong thc tin chuyn t u t sang thu bao. Tuy nhin, vic chp
nhn in ton m my vn cn kh d dt xoay quanh vn an ton v
an ninh h thng. Bi vit ny cung cp mt ci nhn tng quan v vn
an ton v an ninh ca in ton m my, t gc kin trc cho n
dch v cng nh tnh cht ca m my in t.

1 GII THI U nng m rng v tnh cht co gin m in ton

m my cung cp. Thay v mt kin trc h thng
in ton m my ang nhanh chng ni ln
tnh, in ton m my h tr kh nng t ng
nh mt xu hng cng ngh, hu ht cc nh
m rng quy m v nhanh chng thu hp quy m,
cung cp cng ngh hoc s dng phn mm, phn
cung cp cho khch hng cc dch v c tin cy
cng v c s h tng u c th tn dng. Cng
cao, thi gian p ng nhanh chng v s linh hot
ngh v kin trc dch v in ton m my cho
x l cc bin ng thng lng v nhu cu.
php khch hng ca cc dch v ny khng s hu
in ton m my cng h tr nhiu ngi dng,
ti sn trong cc m my in t nhng tr tin
cung cp cc h thng cu hnh trong sut mt
trn c s mi ln s dng. V bn cht, h ang
cch thng nht mang tnh chia s c. Cng
thu c s h tng vt l v cc ng dng trong
ngh o ha cho php cc nh cung cp in ton
kin trc dng chung. Dch v in ton m my
m my chuyn i mt my ch thnh nhiu
c th t lu tr d liu cho n cc ng dng Web
my o, do loi b my tnh client-server vi
ca ngi dng cui, cng vi cc dch v in
cc h thng mt mc ch. iu ny ti a ha
ton tp trung khc.
kh nng phn cng v cho php khch hng tn
Mt s khc bit quan trng gia m hnh tnh dng trit v kinh t theo quy m s dng.
ton truyn thng v in ton m my l kh

39
Tp ch Khoa hc Trng i hc Cn Th
Theo nghin cu ca Gartner a ra trong 4,
doanh thu trn ton th gii t in ton m my
nm 2009 l 58.6 t USD, d bo t 148 t USD
vo 2015. Nghin cu gn y ca IDC 4 ch r
doanh thu trn ton th gii t in ton m my
cng cng (public cloud) nm 2010 l hn 21,5 t
USD v s t 72,9 t USD vo nm 2015, tc
tng trng hng nm l 27,6%. Tc tng
trng ny gp hn bn ln so vi tc tng
trng d bo cho ton th trng CNTT trn th
gii ni chung (6,7%). Cng theo IDC, in ton
m my lun nm trong tp 10 cc cng ngh
nh m nht trong cc nm t 2009 n nay
trong lnh vc cng ngh thng tin.
Mc d c nhng li ch v tim nng pht
trin nh vy nhng in ton m my vn cn
gp nhiu d dt trong chp nhn v nhn rng ch
yu l vn an ton. Tm gc qua vn k
thut, t quan im ca ngi dng th cc vn
ch yu cn tr vic chp nhn in ton m
my l :
Cc doanh nghip giao vic qun l an ninh
cho mt bn th ba nn c th khng kim sot
c vn an ninh.
Ti sn ca nhiu ngi thu bao khc nhau
nm trong cng mt v tr (server) v s dng cng
mt dch v m khng bit r cch thc kim sot
an ninh, bo mt ca nh cung cp.
Thiu s m bo an ton, an ninh trong
cc hp ng gia ngi dng (ngi thu bao)
in ton m my v cc nh cung cp in ton
m my.
Cc my ch tp trung cc ti sn c gi tr
v cng khai c s h tng lm tng xc sut cc
cuc tn cng nguy him.
Bi vit ny s phn tch nhng thch thc v
cc vn lin quan an ninh trn in ton m
my, nhng im yu trong m hnh in ton m
my. Nhng vn ny s c xem xt t gc
kin trc dch v n m hnh cng vi cc c
trng ca in ton m my.
2 IN TON M MY
2.1 Khi nim
Thut ng in ton m my (cloud
computing) ra i vo khong gia nm 2007
nhm khi qut li cc hng pht trin mi ca
cng ngh thng tin nh vo mng Internet bng
thng rng v cc trung tm in ton khng l ca
cc hng cng ngh nh Google, Amazon, IBM,
Microsoft, in ton m my gn lin vi mt
S chuyn : Cng ngh Thng tin (2013): 39-46
quan nim mi v cng ngh thng tin, l: cc
ngun lc in ton khng l nh phn mm, d
liu dch v s nm ti cc my ch o (m my)
trn Internet thay v trong my tnh ca t chc, c
nhn mi ngi kt ni v s dng khi cn. Vi
cc dch v h tng, phn mm sn c trn Internet,
doanh nghip khng phi mua v duy tr hng
trm, thm ch hng nghn my tnh cng nh phn
mm cho cng ty. H c th thu ton b h tng
cng ngh thng tin nh thu bao in thoi hay s
dng in, nc hng ngy.
Theo nh ngha ca NIST 1: in ton m
my l mt m hnh cho php thun tin, truy cp
mng theo yu cu n mt ni cha cc ngun ti
nguyn tnh ton c th chia s v cu hnh c
(v d: mng, my ch, lu tr, ng dng v dch
v), chng c th c cung cp v pht hnh
nhanh chng vi n lc qun l hoc tng tc vi
nh cung cp ti thiu.
Hnh 1: Minh ha cho in ton m my theo
Wikipedia 2
in ton m my i khi cn c coi l th
h Internet mi. T in m Wikipedia 2 nh
ngha: in ton m my l vic s dng cc ti
nguyn my tnh (phn cng v phn mm) c sn
t xa v truy cp c qua mng (thng l
Internet). Hnh 1 pht ha khi nim v in ton
m my. in ton m my cung cp cc tin ch
truy cp vo ti nguyn chia s v c s h tng
chung, cung cp dch v theo yu cu qua mng
thc hin cc hot ng p ng nhu cu tc
nghip. V tr ca ngun lc vt cht v thit b
c truy cp l trong sut, khng c bit (v
cng khng cn bit) i vi ngi dng cui (end
user). N cng cung cp phng tin cho ngi s
dng (hay khch hng) pht trin, trin khai v
40
Tp ch Khoa hc Trng i hc Cn Th
qun l cc ng dng ca h trn cc m my, k
c o ha cc ngun ti nguyn, t bo tr v qun
l cc ng dng.
2.2 Cc dch v c bn ca in ton m my
in ton m my cung cp 3 m hnh dch v
c bn: dch v h tng (IaaS), dch v nn tng
(PaaS) v dch v phn mm (SaaS), vi mt s
c trng chnh: thu bao theo yu cu, nhiu thu
bao, dng bao nhiu tr by nhiu. V mt k
thut, m my l mt tp hp ti nguyn tnh ton
rng ln v cung cp 3 dch v ni trn.
Dch v h tng (IaaS - Infrastructure as a
Service) ni n kh nng cung cp cho khch
hng ti nguyn phn cng nh kh nng tnh
ton, x l (tc l CPU), lu tr, mng v cc ti
nguyn khc, khch hng c th trin khai v
chy phn mm ty , trong c th bao gm cc
h iu hnh v cc ng dng. Khch hng s
khng qun l hoc kim sot cc c s h tng
in ton m my nhng c kim sot i vi cc
h iu hnh, lu tr, ng dng trin khai v kim
sot c hn ch cc thnh phn mng c cung
cp. IaaS gn lin vi vic o ha ti nguyn phn
cng. Nhng Nh cung cp IaaS in hnh l
Amazon EC2, GoGrid v HP [19]. Nh cung cp
dch v Iaas s chu trch nhim mi cng vic
nng n v thit lp h tng, thit lp chc nng
cung cp h tng v thu ph thu bao h tng.
Khch hng c th tng gim mt cch t ng,
thun tin v ti nguyn h cn. Mt s lng ln
ti nguyn c th c cung cp v sn dng trong
mt thi gian ngn sau khi c yu cu v quan
trng hn l hnh vi ca h thng khng thay i,
khng c li tim tng do chuyn i t h thng
nh sang h thng ln hn hay ngc li.
Hnh 2: Nm c trng quan
trng ca in ton m my
S chuyn : Cng ngh Thng tin (2013): 39-46
Dch v nn tng (PaaS- Platform as a Service):
l kh nng cung cp cho khch hng nn tng
trin khai trn c s h tng in ton m my
cc ng dng do khch hng to ra t ngn ng lp
trnh v cc cng c h tr ca nh cung cp.
Khch hng khng qun l hoc kim sot c s h
tng in ton m my c bn nh mng, my
ch, h iu hnh, thit b lu tr, nhng c kim
sot i vi cc ng dng trin khai v c th thc
hin cu hnh mi trng lu tr. C th coi dch
v ny cung cp cc phn mm h thng cn thit
nh l ngn ng lp trnh, mi trng lp trnh,
mi trng thc thi, h iu hnh ngi dng
truy cp ti nguyn v to ra cc ng dng ca
mnh. Cc nh cung cp dch v ny in hnh nh
Microsoft Windows Azure, Google App Engine.
Dch v phn mm (SaaS Software as a
Service) l kh nng cung cp cho khch hng
s dng cc ng dng (phn mm) ca nh cung
cp ang chy trn mt c s h tng in ton
m my. Cc ng dng c th truy cp t cc thit
b khc nhau thng qua mt giao din ngi dng
nh mt trnh duyt web. Khch hng khng qun
l hoc kim sot cc c s h tng c bn m
my nhng c th thit lp cu hnh cho ng dng
ph hp vi mnh. Nhiu ngi trong chng ta
chc s dng phn mm trn in ton m my
ca Google nh: Gmail, Google Docs, trnh tm
kim ca Google,... l nhng v d in hnh v
SaaS. Dch v phn mm c cung cp da theo
c ch dch v web (web service) v cc cng
thng tin in t (portal).
2.3 Cc m hnh trin khai in ton m my
C bn m hnh chnh trin khai in ton
m my l:
41
Tp ch Khoa hc Trng i hc Cn Th
m my cng cng (Public Cloud): m my
c thit lp v cung cp cho rng ri ngi dng
thng qua Internet. N cn c bit nh l m
my nhiu thu bao vi cc c trng c bn l h
tng thng nht, chnh sch chung, ngun lc chia
s cho nhiu thu bao, a qui m. M hnh m
my ny thng t an ton hn cc m hnh khc
v thng ch cung cp cc dch v phn mm
chung nht nh b phn mm vn phng, chat, hp
trc tuyn,
m my ring (Private Cloud): m my c
thit lp ch cho mt t chc tng t nh mt
mng ni b. N c th c qun l bi chnh t
chc hoc mt bn th ba v c th tn ti trn
c s h tng trc c. M hnh ny cn
c gi l m my ni b v thng ch dnh
quyn truy cp vo ti nguyn ca n cho ngi
dng trong ni b t chc l ch s hu m my.
c im c bn ca m my ring l h tng
khng ng nht, chnh sch may o v ty
chnh, ti nguyn dnh ring, c s h tng cy
nh l vn. Tuy nhin do ch c cc t chc v
ngi dng c php mi c th truy cp nn
n c th c bo v bi cc quy trnh, quy ch
bo mt ring, iu ny lm cho n kh b tn
cng hn.
m my cng ng (Community Cloud): y
l dng m my m h tng c chia s bi mt
vi t chc. N h tr mt vi th chung ca cng
ng , chng hn nh nhim v, chnh sch bo
mt, cc chun,
m my hn hp (Hybrid Cloud): h tng ca
m my l mt s kt ni ca nhiu m hnh trin
khai m my (chung, ring, cng ng)
2.4 c trng ca in ton m my v li
ch ca n
in ton m my c 5 c trng quan trng
(xem Hnh 2):
Kh nng co gin (scalability): m my c th
cung cp ti nguyn tnh ton theo yu cu. Vic
cung cp ny trn nguyn tc l ng v nhiu thu
bao, v vy trnh lng ph (dng bao nhiu tr by
nhiu).
Kh nng qun tr v vn hnh
(manageability): y l kh nng iu khin, kim
sot h thng v tnh cc ph thu bao.
Kh nng truy cp (accessibility) v kh
chuyn: truy cp mi lc mi ni mt cch nht
qun v kh nng truy cp vi cc thit b nh, yu
(thin client) nh l in thoi di ng.
S chuyn : Cng ngh Thng tin (2013): 39-46
Hiu nng cao v ti u ha (performance
and Optimization): h tng m my gii quyt v
che du mi vn phc tp trong tnh ton song
song, cn bng ti, lp lch cung cp kh nng
tnh ton hiu nng cao v ti u ha.
Kh nng sn dng vi tin cy cao
(availability): h tng m my cng c cung
cp rng ri cho ngi dng vi kh nng chu
ng li cao, h thng tn ti lu di v kh nng
bo mt tt.
3 NGHIN CU C LIN QUAN V AN
TON TRN IN TON M MY
R rng rng c nhiu vn cn bn trong
quyt nh chp nhn in ton m my. Hnh 3
cho mt s vn chnh trn in ton m my.
y l nhng ch lun c quan tm, theo
nghin cu ch ra trong 5, vn an ton c
t hng u. Vn th kh nhng l do c v
tht n gin, bi v ngi ta t d liu ca mnh
(loi ti sn (rt) c gi tr) trn mt my tnh
trn my, dng mt phn mm ca ai (mt
nh cung cp) mt ni no khng bit r v
chy trn mt my o m my tht (tc l CPU vt
l) nm u cng khng r nt. C rt nhiu ni
lo lng trong hon cnh nh vy: mt d liu,
thng tin b r r, b theo di, b ly cp, la o,
nghn mng,
Nhiu nghin cu v vn an ton trn in ton
m my c thc hin. Nhm Cloud
Computing Use Cases 6 tho lun nhiu vn
lin quan ti m hnh in ton m my trn cc
quan im ca ngi dng, nh pht trin v k s
bo mt. Vn phng an ton thng tin v mng
Chu u (ENISA) 7 a ra cc ri ro, cc nh
hng, cc im yu ca in ton m my. Mt
nghin cu v an ton c rng buc bng hp
ng 9 c gng a ra cc c t lin quan ti v tr
t d liu, phn nhm d liu v phc hi d liu.
Mt s vn chuyn bit v an ton trn in ton
m my nh ton vn d liu, tnh ring t v
thng tin nhy cm c tho lun trong 10. Vn
k thut tn cng, chng hn kiu tn cng
XML (XML-attack) c th tm thy trong 11, l
hng bo mt m my c th tm thy trong 12.
Cc thch thc an ton v bo mt lin quan n
cc m hnh dch v ca in ton m my, c
bit l m hnh SaaS c th tham kho trong 13.
Vn an ton trn in ton m my l rt phc
tp v n lin quan n nhiu kha cnh v ch th:
kin trc, dch v in ton m my, c trng
ca m my, thu bao, ch s hu, chnh sch bo
42
Tp ch Khoa hc Trng i hc Cn Th S chuyn : Cng ngh Thng tin (2013): 39-46

mt d liu, Hnh 4 cho mt hnh nh rng, khi ninh trn in ton m my t gc kin trc,
qut v s phc tp ca vn ny. Phn tip dch v v mt s c im chnh ca in ton
theo ca bi vit s i vo tng hp v vn an m my.

Hnh 3: Cc vn quan tm hng u trong in ton m my 5

Hnh 4: S phc tp ca vn an ton trn in ton m my 13

4 MT S VN C QUAN TM
V AN TON TRN IN TON M MY
4.1 Vn an ton lin quan n kin trc
ca in ton m my
Mt m my in t l mt cm my tnh kt
ni nhau thng qua mng cc b hoc mng din
rng trn c s o ha ti nguyn phn cng nh
chc nng o ha cung cp mt cch trong sut
3 dch v c bn ca in ton m my l SaaS,
PaaS v IaaS. M hnh trin khai m my c th
l cng cng, m my ring hoc cng ng hay
hn hp nh ni phn trn.
Cc dch v in ton m my c kin trc
phn tng (layer), mi tng cung cp cc dch v v
tin ch (chc nng) ring ca n trn c s cc
dch v v tin ch ca tng thp hn (xem Hnh 5).
V vy an ninh ca h thng ph thuc vo an ninh
ca mi tng c thit k v ci t km theo nh
l 1 dch v hay tin ch.

43
Tp ch Khoa hc Trng i hc Cn Th
Hnh 5: Kin trc phn tng dch v
trong in ton m my
4.1.1 An ninh mc h tng
An ninh ca cc dch v tng thp nh tng
vt l hay h tng (IaaS) ph thuc vo nh cung
cp, tc l ch s hu ca m my. Hin ti, c
mt s nh cung cp dch v IaaS nhng cha c
chun no v an ninh cho cc dch v ny. V mt
nguyn tc, khch hng thu bao dch v IaaS c
th p t cc chnh sch an ninh ca mnh bng
cch pht trin cc dch v hay tin ch ring thng
qua cc dch v ca tng vt l v cc dch v IaaS
ca nh cung cp. Chnh sch v an ton mc
ny l rt phc tp v nhiu chnh sch khc nhau
p t ln cng mt mi trng phn cng (vt l).
Nhng mi e da an ton mc ny c th
lin quan ti my ch o (Virtual Machine) nh l
vi-rt v cc phn mm c hi khc. Nh cung
cp dch v chu trch nhim chnh v gii php
cho vn ny. Khch hng thu bao cng c th
thc hin cc gii php v chnh sch an ton ring
cho mnh, t lm gia tng gnh nng ln phn
cng v hiu nng chung ca h thng. Cc my
ch o vn c th b ly nhim hay b kim sot bi
phn mm c hi. Trong trng hp ny, cc
chnh sch an ninh ca khch hng c th b v
hiu, nh vy nh cung cp dch v phi l ngi
c vai tr chnh trong an ninh mc ny. Ngoi ra,
v IaaS khai thc h tng vt l v chnh sch
chung nh DNS Server, Switch, IP protocol, V
vy, kh nng b tn cng vo khch hng yu
nht sau ly lan cho cc khch hng khc.
Vn ny hin nay khch hng thu bao khng
th can thip g v nhiu my ch o chia s cng
ti nguyn vt l nh CPU, b nh, a, Mi nh
x vt l-my o, my o-vt l u thng qua mt
b o ha, nu b ny b phn mm c hi kim
sot th ton b khch hng trong m my s b
cng mt mi him ha nh nhau.
S chuyn : Cng ngh Thng tin (2013): 39-46
4.1.2 An ninh mc dch v nn tng
mc trung gian, dch v nn tng (PaaS) da
trn dch v tng di (IaaS) v cung cp dch v
ca mnh cho tng trn n (SaaS). mc ny, cc
dch v hay tin ch v an ton c th c ci t
thm hoc cu hnh cc dch v c cung cp t
tng di. y, ngi dng c th qun tr phn
thu bao ca mnh to ra mi trng thc thi cc
ng dng. Hin nay, dch v PaaS ca m my
da trn m hnh kin trc hng dch v (SOA) v
vy nhng nguy c v an ton ging ht nh nhng
nguy c an ton ca SOA nh tn cng t chi
dch v, tn cng XML v nhiu cch tn cng
khc 1114.
V dch v nn tng l dch v a thu bao,
nhiu ngi dng nn c ch xc thc, chng thc
l rt quan trng. Trch nhim bo mt v an ton
trong trng hp ny lin quan n c nh cung
cp, ngi thu bao v ngi dng (user). Cc dch
v PaaS phi cung cp mi trng pht trin
ng dng bao gm chc nng tc nghip, cc chc
nng an ton v qun l h thng. Nh cung cp cn
c c ch bt buc chng thc truy cp cc dch
v PaaS, ngi thu bao c trch nhim pht trin
hay cung cp cc chc nng bo mt cn thit
thng qua c ch chng thc chung v ngi dng
phi c trch nhim bo v ti khon ng nhp c
nhn ca mnh.
4.1.3 An ninh mc dch v phn mm
mc dch v phn mm (SaaS), cc phn
mm c cung cp nh l dch v trn mng, s
dng cc chnh sch bo mt d liu v ti nguyn
khc t cc tng bn di cung cp. Mt s dch v
phn mm kh ph bin hin nay l Google Search
Engine, Google mail Khch hng ca cc dch
v ny khng bit c d liu ca mnh c
qun l v khai thc nh th no v n nm u
trn th gii ny. Vn an ninh y lin quan
n bo mt d liu, r r thng tin nhy cm v
nguy c b tn cng t chi truy cp Trch
nhim v an ton c chia s cho nh cung cp h
tng m my v nh cung cp dch v phn mm.
Ngi dng u cui (end user) ch l ngi dng
phn mm vi cc la chn cu hnh khc nhau
c cung cp bi phn mm nn khng c nhiu
vai tr trong an ton h thng. Ngi dng cui ch
bit tin vo nh cung cp phn mm v cc cam kt
ca nh cung cp v trch nhim bo mt. Thng
thng cc cam kt ny c th l iu khon trong
hp ng thu bao phn mm, nh l: an ton
thng tin v cht lng dch v. Chng thng bao
gm: dung lng d liu, ton vn d liu, chnh
44
Tp ch Khoa hc Trng i hc Cn Th
sch v phn tn, sao lu v phc hi d liu khi
c s c, tin cy, tnh ring t v an ton mng
cng vi cc cam kt khc v cht lng dch v
nh dung lng ng truyn, tnh sn dng 13.
mc ny, cc phn mm c cung cp trn
nn web (web-based application). Cc web ny
thng c t my ch o trn m my, cho
nn chng phi c kim tra bng cch qut cc
yu im web nh vo mt ng dng qut no ,
v d nh cc phn mm c cc chc nng nh
trong cng b 15. Cc tng la c th c dng
ngn chn cc tn cng vo im yu bit
ca cc phn mm nn web. Nhng cng vic ny
thuc v nh cung cp phn mm hoc m my,
ngi dng cui nhiu lm l tham gia vo la
chn cc cu hnh (option) khc nhau m thi. Tnh
hnh ny c th dn n nhng ln xn trong cu
hnh an ton chung ca h thng do tnh cht a
thu bao, ko theo nhng l hng trong an ton h
thng. V vy, cc nh cung cp phi c nhng
chnh sch chung bt buc v cch kim sot sao
cho nhng cu hnh an ton, bo mt phi nht
qun, cht ch v khng c l hng.
4.2 Vn qun l an ton h thng
Phn trn va trnh by cho thy tnh phc tp
trong k thut an ton trn m my t gc
kin trc v dch v ca in ton m my. Phn
ny xin cp n mt s kha cnh v qun l,
vn khng th tch ri vi k thut nhm m bo
cho s p dng chnh sch bo mt ng n, cng
tc v c trch nhim gia cc bn c lin quan
trong in ton m my. Nghin cu v qun l an
ton trn m my l rt phc tp v n lin quan
n s lng ln ngi c lin quan vi cc yu
cu (requirement) khc nhau v an ton. Vic qun
l an ton lin quan ti vic xy dng cc yu cu
v an ton, c t chnh sch an ton, c ch kim
sot v cc cu hnh khc nhau v an ton tng
ng vi cc chnh sch c th. Vic qun l ny l
ng v lun phi p ng cc yu cu mi, cc
phn hi t mi trng v t chnh qu trnh kim
sot an ton.
in ton m my cung cp cc dch v trn
c s mt hp ng trch nhim (SLA Service
Level Agreement), y l php l quan trng trong
cc tranh chp, bt ng sau ny. Hp ng thng
thng bao gm cht lng dch v, tnh sn dng,
tin cy v an ton. V nh bao cam kt hp
ng, n c nhng iu khon v tr ph dch v
x pht v bi thng. Mt i hi cao v an ton
thng dn n mt tiu tn nhiu ngun lc v v
vy mc gi dch v s cao ln tng ng. Mt
S chuyn : Cng ngh Thng tin (2013): 39-46
mu (template) hng dn v hp ng dch v
m my c th tm thy ti 16. c gi quan tm
su phn ny c th xem thm trong 17. Cn lu
rng nhng i hi khc khe v an ton c th nh
hng n hiu nng chung ca h thng (cng
knh hn, chm hn,). V vy, cn c s cn
bng gia yu cu an ton, chi ph v hiu nng
ca h thng. Nhiu kha cnh khc lin quan n
qun l an ton cng nh cc c quan qun l an
ton m my c th tm thy trong cng b 18.
5 KT LUN
Mc d in ton m my ang c coi l
mt cuc cch mng Internet lm thay i cch
ng dng cng ngh thng tin, nhng vic chp
nhn n vn cn nhiu vn v e ngi chung
quanh cu hi an ton, bo mt thng tin. Li ch
ca in ton m my l r rng v v cng hp
dn, n lm gim nh chi ph u t v gnh nng
bo tr phn cng, phn mm, tuy nhin t kin
trc, dch v v cc c im ca in ton m
my cho thy vn cn nhiu cu hi t ra cho vn
an ton v bo mt. Cc vn bo mt cp
cng thp th vai tr v trch nhim ca nh cung
cp cng ln, nhng khch hng c th cm thy
bt an v h khng nm r. iu ny c th khc
phc bng cc hp ng (SLA) r rng, cht ch v
tin cy. Vn an ton c th lin quan ti my
ch o, b o ha cng nh l kin trc hng dch
v SOA.
Mt khc, vn an ton trn in ton m
my khng ch l trch nhim ca nh cung cp
dch v m cn l trch nhim ca tt c cc bn c
lin quan trong m my: nh cung cp, khch
hng, ngi dng cui. Vn ny c l vn cn
phi cn mt thi gian na c th c gii php
tha ng lm tng an ton ca m my, nht
l m my cng cng (public).
in ton m my cn rt mi v cn tim
nng pht trin v ng dng, vn an ton ca
m my cn c nghin cu tip tc ngy
cng tr nn an ton hn. Mt khc, s dng m
my nh th no cho c li, cn bng gia li ch
v tnh an ton l s tnh ton ca cc nh qun l
cng ty, doanh nghip v s t vn sng sut ca
cc chuyn gia cng ngh thng tin.
TI LIU THAM KHO
1. Peter Mell, Timothy Grance, The NIST
Definition of Cloud Computing, National
Institute of Standards and Technology, Special
Publication 800-145, September 2011.
45
Tp ch Khoa hc Trng i hc Cn Th
2. http://en.wikipedia.org/wiki/Cloud_computing
3. Frank Gens, Robert P Mahowald and
Richard L Villars, IDC Cloud Computing
2010.
4. http://www.idc.com/prodserv/idc_cloud.jsp
5. Chang, L, Ti ; Chin L; Chang, A.Y.; Chun
J, C;(2010), Information security issue of
enterprises adopting the application of cloud
computing, IEEE 2010 Sixth International
Conference on Networked Computing and
Advanced Information Management
(NCM), pp.645, 16-18 Aug. 2010.
6. Cloud Computing Use Case Discussion
Group, "Cloud Computing Use Cases
Version 3.0," 2010.
7. ENISA, "Cloud computing: benefits, risks
and recommendations for information
security," 2009,
8. http://www.enisa.europa.eu/act/rm/files/deli
verables/cloud-computingrisk-assessment
9. Balachandra Reddy Kandukuri,
Ramakrishna Paturi and Atanu Rakshit,
"Cloud Security Issues," in Proceedings of
the 2009 IEEE International Conference on
Services Computing, 2009, pp. 517-520.
10. Kresimir Popovic , Zeljko Hocenski, "Cloud
computing security issues and challenges,"
in The Third International Conference on
Advances in Human-oriented and
Personalized Mechanisms, Technologies,
and Services, 2010, pp. 344-349.
46
S chuyn : Cng ngh Thng tin (2013): 39-46
11. Meiko Jensen, Jrg Schwenk, Nils
Gruschka and Luigi Lo Iacono, "On
Technical Security Issues in Cloud
Computing," in IEEE ICCC, Bangalore
2009, pp. 109-116.
12. Bernd Grobauer, Tobias Walloschek and
Elmar Stcker, "Understanding Cloud-
Computing Vulnerabilities," IEEE Security
and Privacy, vol. 99, 2010.
13. S. Subashini, ,Kavitha, V., "A survey on
security issues in service delivery models of
cloud computing," Journal of Network and
Computer Applications, Vol. 34, 2011.
14. Z. Wenjun, "Integrated Security Framework
for Secure Web Services," in IITSI 2010 ,
pp. 178-183.
15. F. Elizabeth, , Vadim, Okun, "Web
Application Scanners: Definitions and
Functions," in HICSS 2007, pp. 280b-280b.
16. http://www.ibm.com/developerworks/cloud/
library/cl-slastandards/
17. Wieder, P.; Butler, J.M.; Theilmann, W.;
Yahyapour, R. (Eds.), Service Level
Agreements for Cloud Computing,
Springer, XXII, 2011.
18. Mohamed Al Morsy, John Grundy and Ingo
Mller, An Analysis of The Cloud
Computing Security Problem, Proceedings
of APSEC 2010 Cloud Workshop, Sydney,
Australia, 2010.
19. http://www.clouds360.com/iaas.php