发明申请
US20120005724A1 METHOD AND SYSTEM FOR PROTECTING PRIVATE ENTERPRISE RESOURCES IN A CLOUD COMPUTING ENVIRONMENT
审中-公开

基本信息:
- 专利标题: METHOD AND SYSTEM FOR PROTECTING PRIVATE ENTERPRISE RESOURCES IN A CLOUD COMPUTING ENVIRONMENT
- 专利标题(中):在云计算环境中保护私有企业资源的方法和系统
- 申请号:US13234933 申请日:2011-09-16
- 公开(公告)号:US20120005724A1 公开(公告)日:2012-01-05
- 发明人: Jaushin Lee
- 申请人: Jaushin Lee
- 申请人地址: US CA San Jose
- 专利权人: Imera Systems, Inc.
- 当前专利权人: Imera Systems, Inc.
- 当前专利权人地址: US CA San Jose
- 主分类号: G06F17/00
- IPC分类号: G06F17/00
摘要:
A method for protecting private enterprise computing resources in a cloud computing environment includes determining a virtual topology comprising a secure computing zone, which includes a secure virtual vault, associated with an enterprise application of a private enterprise in a cloud computing environment. A traffic control policy associated with the secure computing zone is determined that comprises a plurality of security rules that define data traffic flow into, out of, and within the associated secure computing zone. A plurality of cloud computing nodes is selected and associated with the secure virtual vault. Any of the cloud computing nodes is a virtual computer or a physical computer device. The traffic control policy is automatically implemented in each of the cloud computing nodes associated with the secure virtual vault, where each cloud computing node is configured to enforce the plurality of security rules at an operating system level of the cloud computing node.
摘要(中):
一种用于在云计算环境中保护私有企业计算资源的方法包括:确定包括与云计算环境中的私有企业的企业应用相关联的安全计算区域的虚拟拓扑,所述安全计算区域包括安全虚拟仓库。 确定与安全计算区域相关联的流量控制策略,该流量控制策略包括多个安全规则,所述多个安全规则定义进入,离开和在关联的安全计算区域内的数据业务流。 选择多个云计算节点并与安全虚拟保管库相关联。 任何云计算节点都是虚拟计算机或物理计算机设备。 在与安全虚拟保管库相关联的每个云计算节点中自动实施流量控制策略,其中每个云计算节点被配置为在云计算节点的操作系统级别上强制执行多个安全规则。