电信科学 ›› 2020, Vol. 36 ›› Issue (5): 10-15.doi: 10.11959/j.issn.1000-0801.2020140

• 专题:网络安全的智能化和高对抗性发展 • 上一篇    下一篇

面向云网融合的电信网安全防护体系参考架构

张鉴,唐洪玉,刘文韬,薄明霞   

  1. 中国电信股份有限公司研究院云安全研究所,北京 102209
  • 修回日期:2020-04-23 出版日期:2020-05-20 发布日期:2020-05-18
  • 作者简介:张鉴(1976- ),男,中国电信股份有限公司研究院云安全研究所高级工程师,主要研究方向为云安全、安全攻防、5G安全|唐洪玉(1977- ),男,中国电信股份有限公司研究院云安全研究所所长,主要研究方向为云安全、态势感知、威胁情报|刘文韬(1989- ),男,中国电信股份有限公司研究院云安全研究所工程师,主要研究方向为云安全、威胁情报|薄明霞(1978- ),女,中国电信股份有限公司研究院云安全研究所高级工程师,主要研究方向为云安全、威胁情报
  • 基金资助:
    国家重点研发计划基金资助项目(2017YFB0801801)

Reference architecture of the telecom network security protection system for cloud network convergence

Jian ZHANG,Hongyu TANG,Wentao LIU,Mingxia BO   

  1. Institute of Cloud Security,China Telecom Corporation Limited Research Institute,Beijing 102209,China
  • Revised:2020-04-23 Online:2020-05-20 Published:2020-05-18
  • Supported by:
    The National Key Research and Development Program of China(2017YFB0801801)

摘要:

云网融合已经成为云计算领域的发展趋势,也是电信运营商战略转型的关键步骤。首先从云网融合的内涵、云网融合的典型应用场景和云网融合对电信网的重构方面阐述了云网融合的发展现状;然后从3个方面较为全面地分析了面向云网融合的电信网安全需求;在安全需求分析的基础上提出了电信网面向云网融合的安全防护总体架构,包括构建基础安全防护体系和软件定义安全防护体系两大阶段的工作,并对云网融合基础安全防护体系和软件定义安全防护体系的具体层次和内容做了详尽的阐述;最后对未来的前景进行了展望。

关键词: 云网融合, 安全体系, 软件定义安全

Abstract:

Cloud network convergence has become a development trend in the field of cloud computing and a key step in the strategic transformation of telecom operators.Firstly,the development status of cloud network convergencewas expounded from the aspects of its connotation,typical application scenarios and the reconstruction of telecom network by cloud network convergence.Then,the security requirements of telecom network for cloud network convergencewere analyzed from three aspects.Based on the analysis of security requirements,the overall security protection architecture of telecom network for cloud network convergence was put forward,including the construction of basic security protection system and the software-defined security protection system,and the specific levels and contents of the basic security protection system and the software-defined security protection system were elaborated.Finally,the prospect of the future was prospected.

Key words: cloud network convergence, security system, software-defined security

中图分类号: 

No Suggested Reading articles found!