Professional Documents
Culture Documents
An Ning Trên Cloud PDF
An Ning Trên Cloud PDF
ABSTRACT
Thng tin chung:
Ngy nhn: 03/09/2013 In recent years cloud computing has emerged as a new development phase
Ngy chp nhn: 21/10/2013 of the Internet. Cloud computing, its service models in particular, allows
the use of hardware, software as services, that leads a fundamental
Title: change in the application of information technology in practice - shift
Overview on cloud from investment to the hire of computing resources. However, cloud
computing security adoption is still controversy issues surrounding the safety and security of
system. This paper provides an overview on safety issues and security of
T kha: cloud computing, from the perspective of architecture, services as well as
An ton mng, kin trc main characters of cloud computing.
hng dch v, IaaS, PaaS,
TM TT
SaaS
My nm gn y in ton m my (cloud computing) ni ln nh l
Keywords: mt giai on pht trin mi ca Internet. in ton m my m c th
Network security, Service l cc m hnh dch v ca n cho php s dng phn cng, phn mm
oriented architecture, IaaS, nh l dch v lm thay i cn bn vic ng dng cng ngh thng tin
PaaS, SaaS trong thc tin chuyn t u t sang thu bao. Tuy nhin, vic chp
nhn in ton m my vn cn kh d dt xoay quanh vn an ton v
an ninh h thng. Bi vit ny cung cp mt ci nhn tng quan v vn
an ton v an ninh ca in ton m my, t gc kin trc cho n
dch v cng nh tnh cht ca m my in t.
39
Tp ch Khoa hc Trng i hc Cn Th S chuyn : Cng ngh Thng tin (2013): 39-46
Theo nghin cu ca Gartner a ra trong 4, quan nim mi v cng ngh thng tin, l: cc
doanh thu trn ton th gii t in ton m my ngun lc in ton khng l nh phn mm, d
nm 2009 l 58.6 t USD, d bo t 148 t USD liu dch v s nm ti cc my ch o (m my)
vo 2015. Nghin cu gn y ca IDC 4 ch r trn Internet thay v trong my tnh ca t chc, c
doanh thu trn ton th gii t in ton m my nhn mi ngi kt ni v s dng khi cn. Vi
cng cng (public cloud) nm 2010 l hn 21,5 t cc dch v h tng, phn mm sn c trn Internet,
USD v s t 72,9 t USD vo nm 2015, tc doanh nghip khng phi mua v duy tr hng
tng trng hng nm l 27,6%. Tc tng trm, thm ch hng nghn my tnh cng nh phn
trng ny gp hn bn ln so vi tc tng mm cho cng ty. H c th thu ton b h tng
trng d bo cho ton th trng CNTT trn th cng ngh thng tin nh thu bao in thoi hay s
gii ni chung (6,7%). Cng theo IDC, in ton dng in, nc hng ngy.
m my lun nm trong tp 10 cc cng ngh
Theo nh ngha ca NIST 1: in ton m
nh m nht trong cc nm t 2009 n nay
my l mt m hnh cho php thun tin, truy cp
trong lnh vc cng ngh thng tin.
mng theo yu cu n mt ni cha cc ngun ti
Mc d c nhng li ch v tim nng pht nguyn tnh ton c th chia s v cu hnh c
trin nh vy nhng in ton m my vn cn (v d: mng, my ch, lu tr, ng dng v dch
gp nhiu d dt trong chp nhn v nhn rng ch v), chng c th c cung cp v pht hnh
yu l vn an ton. Tm gc qua vn k nhanh chng vi n lc qun l hoc tng tc vi
thut, t quan im ca ngi dng th cc vn nh cung cp ti thiu.
ch yu cn tr vic chp nhn in ton m
my l :
Cc doanh nghip giao vic qun l an ninh
cho mt bn th ba nn c th khng kim sot
c vn an ninh.
Ti sn ca nhiu ngi thu bao khc nhau
nm trong cng mt v tr (server) v s dng cng
mt dch v m khng bit r cch thc kim sot
an ninh, bo mt ca nh cung cp.
Thiu s m bo an ton, an ninh trong
cc hp ng gia ngi dng (ngi thu bao)
in ton m my v cc nh cung cp in ton
m my.
Cc my ch tp trung cc ti sn c gi tr
v cng khai c s h tng lm tng xc sut cc
cuc tn cng nguy him.
Hnh 1: Minh ha cho in ton m my theo
Bi vit ny s phn tch nhng thch thc v Wikipedia 2
cc vn lin quan an ninh trn in ton m
my, nhng im yu trong m hnh in ton m in ton m my i khi cn c coi l th
my. Nhng vn ny s c xem xt t gc h Internet mi. T in m Wikipedia 2 nh
kin trc dch v n m hnh cng vi cc c ngha: in ton m my l vic s dng cc ti
trng ca in ton m my. nguyn my tnh (phn cng v phn mm) c sn
t xa v truy cp c qua mng (thng l
2 IN TON M MY Internet). Hnh 1 pht ha khi nim v in ton
2.1 Khi nim m my. in ton m my cung cp cc tin ch
truy cp vo ti nguyn chia s v c s h tng
Thut ng in ton m my (cloud chung, cung cp dch v theo yu cu qua mng
computing) ra i vo khong gia nm 2007 thc hin cc hot ng p ng nhu cu tc
nhm khi qut li cc hng pht trin mi ca nghip. V tr ca ngun lc vt cht v thit b
cng ngh thng tin nh vo mng Internet bng c truy cp l trong sut, khng c bit (v
thng rng v cc trung tm in ton khng l ca cng khng cn bit) i vi ngi dng cui (end
cc hng cng ngh nh Google, Amazon, IBM, user). N cng cung cp phng tin cho ngi s
Microsoft, in ton m my gn lin vi mt dng (hay khch hng) pht trin, trin khai v
40
Tp ch Khoa hc Trng i hc Cn Th S chuyn : Cng ngh Thng tin (2013): 39-46
41
Tp ch Khoa hc Trng i hc Cn Th S chuyn : Cng ngh Thng tin (2013): 39-46
42
Tp ch Khoa hc Trng i hc Cn Th S chuyn : Cng ngh Thng tin (2013): 39-46
mt d liu, Hnh 4 cho mt hnh nh rng, khi ninh trn in ton m my t gc kin trc,
qut v s phc tp ca vn ny. Phn tip dch v v mt s c im chnh ca in ton
theo ca bi vit s i vo tng hp v vn an m my.
43
Tp ch Khoa hc Trng i hc Cn Th S chuyn : Cng ngh Thng tin (2013): 39-46
44
Tp ch Khoa hc Trng i hc Cn Th S chuyn : Cng ngh Thng tin (2013): 39-46
sch v phn tn, sao lu v phc hi d liu khi mu (template) hng dn v hp ng dch v
c s c, tin cy, tnh ring t v an ton mng m my c th tm thy ti 16. c gi quan tm
cng vi cc cam kt khc v cht lng dch v su phn ny c th xem thm trong 17. Cn lu
nh dung lng ng truyn, tnh sn dng 13. rng nhng i hi khc khe v an ton c th nh
hng n hiu nng chung ca h thng (cng
mc ny, cc phn mm c cung cp trn
knh hn, chm hn,). V vy, cn c s cn
nn web (web-based application). Cc web ny
bng gia yu cu an ton, chi ph v hiu nng
thng c t my ch o trn m my, cho
ca h thng. Nhiu kha cnh khc lin quan n
nn chng phi c kim tra bng cch qut cc
qun l an ton cng nh cc c quan qun l an
yu im web nh vo mt ng dng qut no ,
ton m my c th tm thy trong cng b 18.
v d nh cc phn mm c cc chc nng nh
trong cng b 15. Cc tng la c th c dng 5 KT LUN
ngn chn cc tn cng vo im yu bit
Mc d in ton m my ang c coi l
ca cc phn mm nn web. Nhng cng vic ny
mt cuc cch mng Internet lm thay i cch
thuc v nh cung cp phn mm hoc m my,
ng dng cng ngh thng tin, nhng vic chp
ngi dng cui nhiu lm l tham gia vo la
nhn n vn cn nhiu vn v e ngi chung
chn cc cu hnh (option) khc nhau m thi. Tnh
quanh cu hi an ton, bo mt thng tin. Li ch
hnh ny c th dn n nhng ln xn trong cu
ca in ton m my l r rng v v cng hp
hnh an ton chung ca h thng do tnh cht a
dn, n lm gim nh chi ph u t v gnh nng
thu bao, ko theo nhng l hng trong an ton h
bo tr phn cng, phn mm, tuy nhin t kin
thng. V vy, cc nh cung cp phi c nhng
trc, dch v v cc c im ca in ton m
chnh sch chung bt buc v cch kim sot sao
my cho thy vn cn nhiu cu hi t ra cho vn
cho nhng cu hnh an ton, bo mt phi nht
an ton v bo mt. Cc vn bo mt cp
qun, cht ch v khng c l hng.
cng thp th vai tr v trch nhim ca nh cung
4.2 Vn qun l an ton h thng cp cng ln, nhng khch hng c th cm thy
Phn trn va trnh by cho thy tnh phc tp bt an v h khng nm r. iu ny c th khc
trong k thut an ton trn m my t gc phc bng cc hp ng (SLA) r rng, cht ch v
kin trc v dch v ca in ton m my. Phn tin cy. Vn an ton c th lin quan ti my
ny xin cp n mt s kha cnh v qun l, ch o, b o ha cng nh l kin trc hng dch
vn khng th tch ri vi k thut nhm m bo v SOA.
cho s p dng chnh sch bo mt ng n, cng Mt khc, vn an ton trn in ton m
tc v c trch nhim gia cc bn c lin quan my khng ch l trch nhim ca nh cung cp
trong in ton m my. Nghin cu v qun l an dch v m cn l trch nhim ca tt c cc bn c
ton trn m my l rt phc tp v n lin quan lin quan trong m my: nh cung cp, khch
n s lng ln ngi c lin quan vi cc yu hng, ngi dng cui. Vn ny c l vn cn
cu (requirement) khc nhau v an ton. Vic qun phi cn mt thi gian na c th c gii php
l an ton lin quan ti vic xy dng cc yu cu tha ng lm tng an ton ca m my, nht
v an ton, c t chnh sch an ton, c ch kim l m my cng cng (public).
sot v cc cu hnh khc nhau v an ton tng
ng vi cc chnh sch c th. Vic qun l ny l in ton m my cn rt mi v cn tim
ng v lun phi p ng cc yu cu mi, cc nng pht trin v ng dng, vn an ton ca
phn hi t mi trng v t chnh qu trnh kim m my cn c nghin cu tip tc ngy
sot an ton. cng tr nn an ton hn. Mt khc, s dng m
my nh th no cho c li, cn bng gia li ch
in ton m my cung cp cc dch v trn v tnh an ton l s tnh ton ca cc nh qun l
c s mt hp ng trch nhim (SLA Service cng ty, doanh nghip v s t vn sng sut ca
Level Agreement), y l php l quan trng trong cc chuyn gia cng ngh thng tin.
cc tranh chp, bt ng sau ny. Hp ng thng
thng bao gm cht lng dch v, tnh sn dng, TI LIU THAM KHO
tin cy v an ton. V nh bao cam kt hp 1. Peter Mell, Timothy Grance, The NIST
ng, n c nhng iu khon v tr ph dch v Definition of Cloud Computing, National
x pht v bi thng. Mt i hi cao v an ton Institute of Standards and Technology, Special
thng dn n mt tiu tn nhiu ngun lc v v Publication 800-145, September 2011.
vy mc gi dch v s cao ln tng ng. Mt
45
Tp ch Khoa hc Trng i hc Cn Th S chuyn : Cng ngh Thng tin (2013): 39-46
46