| With the development of cloud computing,many traditional industries have begun to migrate their businesses to the cloud.Although they provide users with convenient and fast cloud services,security problems for cloud computing are constantly emerging.Cryptography technology is generally used to solve security problem.The provision of cryptographic services must guarantee its own security and feasibility,so cryptographic device must be used in cloud services,cryptographic devices are constructed and used in synchronization with cloud infrastructure,so the management of cryptographic devices has become a key issue.Since 2016,the country has issued a key R & D plan for cloud service system security protection technology,cyberspace security,etc.This article focuses on the supervision of cryptographic devices under cloud passwords based on the key technology of on-demand password services in the cloud environment.This article focuses on the deployment characteristics and application scenarios of cryptographic devices in the construction of cloud cryptographic service platforms,and conducts in-depth research on the supervision methods of devices,including resource description methods,supervision standards,and supervision methods for cryptographic devices.The main innovations and main work of this article are as follows:(1)According to the diversified types of cryptographic equipment resources,combined with the supervision standards of cryptographic device,a normalized description scheme for cryptographic device resources is proposed,through which the uniform adaptation of different cryptographic device resources can be completed to facilitate unified management of resources.(2)Based on the actual deployment of cryptographic device and cloud cryptographic service scenarios,combined with the supervision method of network equipment,a hierarchical and domain-based cryptographic equipment supervision framework is proposed,and a device supervision strategy is formulated in conjunction with access control to solve Problems of horizontal cross-domain management and vertical multiple management.(3)Based on the hierarchical and domain-based supervision model of cryptographic device,a public network-based data transmission protection protocol and device management operation instructions between multi-level platforms are designed.Research on the data collection strategy and storage method between platforms to ensure the safe transmission and storage of data.(4)Aiming at the needs of cryptographic device supervision,a cryptographic device supervision system in the cloud environment is proposed,and the equipment management module is analyzed and designed.Simulation implementation and verification are carried out in combination with the supervision model proposed in this paper.According to the composition characteristics of cryptographic device resources under the cloud cryptographic service platform,this paper proposes a normalized model of equipment resources;a hierarchical and domain-based device supervision model is proposed for the vertical hierarchical and horizontal domain division of cryptographic device management;Proposed device data communication protocol between platforms for data interaction between platforms.Based on the above research,it can effectively solve the supervision problem and provide a basic guarantee for the cloud password service platform to realize efficient and safe password services. |
