The Design And Implementation Of Container For Security In A Paas-Based Open Platform

In recent years, as a new collaboration mode, Open Platform has changed the productmode of Internet Industry from cottage industry to mass collaboration. However, becauseof Open Platforms’ complexity, a series of safety issues have hindered the development ofOpen Platform, and third-party developers have to deal with problems such as hugeinvestment on hardware, high cost on trial-and-error, powerless to maintain and so on.Meanwhile, as a new distributed computing model, PaaS’s characteristics like nonone-time input, used and paid as needed, automatically deploy, elastic expansion, highreliability and advanced security provides good foundation to average developers forliberating business innovation ability.This paper analyzed problems and introduced the new model of Open Platform. Andthen this paper proposed a novel security container’s overall frame structure based on thePaaS. In the part of design and implementation, this paper Implemented security container.In addition, we introduced the accesses to basic services in the container, which is animportant support of PaaS and key method of maintaining the application security.Major way to secure the container is information hiding, avoiding maliciousapplications attack against the container leaks. This paper introduced two ways to hidecontainer information: one is blocking specific API of Servlet; the other is Interceptingand packaging abnormal information of container response. Open Platform kept itself safemainly by filtering output of container. Basic service module provided the ability ofaccessing resources for application, and improved the scalability and security.