| With the advent of big data of 21st century,the traditional parallel computing and grid computing have already evolved into cloud computing.Cloud computing is a product of big data,which provides strong support for the rapid development of big data.OpenStack,as one of the best cloud computing platform,has already occupied an important position in cloud computing.OpenStack has been widely recognized because of its architecture,stable,simple use and the characteristics of open source.As the OpenStack has gradually been widespread,its security is also more and more important.This paper mainly focuses on the security analysis of OpenStack.This paper describes the current situation of cloud computing,and,gives a detail description of OpenStack logical structure,platform features and common usage.This paper focus on the following four aspects of OpenStack security.1.Analysis of the overall security of OpenStack cloud computing platform.2.Analysis interface management component of OpenStack,designed safety testing methods for Horizon based on packet tampering and implement security testing.3.Analysis authentication component of OpenStack,presented security analysis method of authentication protocol based on finite state machine,and trying to find security flaws of Keystone.4.Propose new security enhancements agreement considering the flaw of original Keystone.On the basis of the functional correctness,the new agreement can upgrade the security of OpenStack. |
PDF Full Text Request