[Purpose/significance] Information security is an important factor for cloud storage of academic information resources to store in the cloud. Effective information security assurance framework and control measures can provide recommendations for cloud storage service providers to improve their storage services, and it can also offer references for users to choose cloud storage service platforms.[Method/process] Based on the security requirement analysis of academic information resources stored in the cloud,this paper built a security deployment framework and a security operation framework for academic information resources to store in cloud. Then, this paper researched the protection and control measures for academic information resources to store in the cloud from five aspects of application security assurance, virtualization security assurance, and infrastructure security assurance, data security assurance, and content security assurance. Application security assurance includes user identity authentication, user identity management, access control, application program and interface security. Virtualization security assurance includes security domain isolation, user data isolation and multi-tenant management. The infrastructure security assurance includes cloud storage facility security, physical environment security and network security. Data security assurance includes data encryption, data integrity verification, data assured deletion, data backup and recovery and data migration. Content security assurance includes content security detection and content security control.[Result/conclusion] The security deployment framework can provide a reference for the security deployment of the academic information resource to store in the cloud. The security operation framework reveales the security assurance elements and security process for the academic information resources to storage in the cloud. The security prevention and control measures provide the security technology strategy for academic information resources to store in the cloud.
Qiu Rongrong
,
Hu Changping
,
Feng Yafei
. Research on Security Assurance Framework and Control Measures of Academic Information Resource in Cloud Storage[J]. Library and Information Service, 2018
, 62(23)
: 106
-112
.
DOI: 10.13266/j.issn.0252-3116.2018.23.013
[1] 傅颖勋,罗圣美,舒继武.安全云存储系统与关键技术综述[J].计算机研究与发,2013,50(1):136-154.
[2] CLOCKSS[EB/OL].[2018-05-01].https://clockss.org/clocksswiki/files/CLOCKSS_Handout_Chinese.pdf.
[3] DPN Core[EB/OL].[2018-05-01].http://dpn.org/about.
[4] LOCKSS Preservation Principles[EB/OL].[2018-05-01].https://www.lockss.org/about/principles/.
[5] Features[EB/OL].[2018-05-01].http://www.duracloud.org/details/features.
[6] RABINOVICI-COHEN S,MARBERG J,NAGIN K,et al.PDS cloud:long term digital preservation in the cloud[C]//CAMPBELL R, LEI H, MARKL V.Proceedings of the 2013 IEEE international conference on cloud engineering. Redwood City CA:IEEE,2013:38-45.
[7] CAPLAN P. Building a Dark Archive in the Sunshine State:a case study[C]//SOC IMAGING SCI & TECHNOL. Archiving 2005 final program and proceedings. Washington DC:Society for Imaging Science and Technology,2005:9-13.
[8] SOSA-SOSA V J,HERNANDEZ-RAMIREZ E M. A file storage service on a cloud computing environment for digital libraries[J].Information technology&libraries,2012,31(4):34-45.
[9] TANG K. Research on disaster recovery model of cloud-based digital library[J].Applied mechanics and materials,2013,336(1):2134-2137.
[10] 刘万国,孙波,刘丁,等.我国自然科学学术成果流失现状及对策——基于2015年度国家自然科学奖初评获奖人学术论文成果的统计分析[J].图书情报工作,2016,60(20):20-26,35.
[11] 刘万国,周秀霞,黄颖.数字学术资源的分级保存模型构建研究[J].情报资料工作,2018(2):43-47.
[12] 马晓亭,陈臣.数字图书馆云存储应用系统研究与实现[J].图书馆理论与实践,2012(5):8-13.
[13] 李霜双,胡昌平.数字学术信息资源云存储安全保障[J].数字图书馆论坛,2017(7):8-13.
[14] 胡昌平,王丽丽. 国外面向数字学术资源的云存储服务安全研究[J].情报理论与实践, 2018,41(3):156-160.
[15] 徐国兰.云存储在数字图书馆应用中的安全与防范研究[J].现代情报,2012,32(4):57-59.
[16] 经冬鋆.高校图书馆云存储基础存储层架构安全问题对策[J].图书馆学研究,2014(1):38-41.
[17] 王于丁,杨家海,徐聪,等.云计算访问控制技术研究综述[J].软件学报,2015,26(5):1129-1150.
[18] 张玉清,王晓菲,刘雪峰,等.云计算环境安全综述[J].软件学报,2016,27(6):1328-1348.
[19] 冯朝胜,秦志光,袁丁.云数据安全存储技术[J].计算机学报,2015,38(1):150-163.
[20] 李晖,孙文海,李凤华,等.公共云存储服务数据安全及隐私保护技术综述[J].计算机研究与发展,2014,51(7):1397-1409.
[21] 傅颖勋,罗圣美,舒继武.安全云存储系统与关键技术综述[J].计算机研究与发展,2013,50(1):136-145.
[22] WEI L F,ZHU H J, CAO Z H,et al. Security and privacy for storage and computation in cloud computing[J].Information sciences,2014,258(10):371-386.
[23] 雷万云.信息安全保卫战:企业信息安全建设策略与实践[M].北京:清华大学出版社,2013:164-165.
