算力网络安全风险分析与对策研究

王馨楠; 程启月; 陆军

doi:10.11959/j.issn.2096-8930.2025010

您当前的位置：

首页 >

文章列表页 >

算力网络安全风险分析与对策研究

应用 | 更新时间：2025-04-10

- 算力网络安全风险分析与对策研究
- Security Risk Analysis and Countermeasure Research for Computing Power Network
- 天地一体化信息网络 2025年6卷第1期页码：86-93
- 作者机构：
  
  1.量子科技长三角产业创新中心，江苏苏州 215100
  2.北京邮电大学，北京100876
- 作者简介：
  
  [ "王馨楠（1999- ），女，北京邮电大学硕士生，主要研究方向为算力网络安全。" ]
  [ "程启月（1957- ），女，博士，教授，主要研究方向为信息系统建模与仿真、量子计算。" ]
  [ "陆军（1964- ），男，中国工程院院士，主要研究方向为综合电子信息系统。" ]
- 基金信息：
  
  中国工程院行业院重大项目(2022-HYZD-01)
- DOI：10.11959/j.issn.2096-8930.2025010
  中图分类号： TP393
- 收稿：2024-10-10，
  
  修回：2025-01-10，
  
  纸质出版：2025-03-20
- 稿件说明：
移动端阅览
王馨楠,程启月,陆军.算力网络安全风险分析与对策研究[J].天地一体化信息网络,2025,06(01):86-93.

WANG Xinnan,CHENG Qiyue,LU Jun.Security Risk Analysis and Countermeasure Research for Computing Power Network[J].Space-Integrated-Ground Information Networks,2025,06(01):86-93.
王馨楠,程启月,陆军.算力网络安全风险分析与对策研究[J].天地一体化信息网络,2025,06(01):86-93. DOI： 10.11959/j.issn.2096-8930.2025010.

WANG Xinnan,CHENG Qiyue,LU Jun.Security Risk Analysis and Countermeasure Research for Computing Power Network[J].Space-Integrated-Ground Information Networks,2025,06(01):86-93. DOI： 10.11959/j.issn.2096-8930.2025010.

摘要

伴随着数字经济时代的发展，新兴技术带来了数据量的飞速增长，社会生活的各方面对算力和网络的需求急剧增大，算力网络应运而生。然而，新的技术和新的网络架构也带来了新的安全风险，原有的安全防护措施已经无法满足对算力安全的需求。分布广、数量庞大的多源算力和网络已经打破了传统安全域羁绊，算力网络在数据安全、网络安全和隐私安全等方面受到严重威胁。从算力网络架构安全、网络数据安全、网络资源安全、计算资源安全、资源管理安全和算力服务安全等角度，梳理算力网络安全相关最新研究成果和技术，分析算力网络面临安全风险和系统威胁的成因，给出加强算力网络安全性的对策建议，旨在构建全方位、多层次的算力网络安全防护体系，抵御来自数据、网络、资源、服务等方面的系统风险。

Abstract

With the development of the digital economy era

emerging technologies have brought about a rapid growth of data

the demand for computing power and network in all aspect of social life has increased dramatically. In the face of this demand

computing force network has emerged. However

new technologies and new network architectures also bring new security risks

the original security measures can no longer meet the demand for computing power security. Due to the widely distributed and massive multi-source computing power and networks have broken the traditional security domains

the computing force networks have been seriously threatened in terms of data security

network security and privacy security. The latest research results and technologies related to computing force network security were sorted out from the perspectives of computing force network architecture security

computing force network data security

network resource security

computing resource security

network resource management security and computing service security. It analyzed the causes of the security risks and system threats faced by computing force networks and give countermeasure suggestions to strengthen the security of computing force networks

aimed to establish a comprehensive and multi-layered security protection system for computing power network sand resist system risks from data

network

resources

services

and other aspects.

关键词

Keywords

references

贾庆民 , 丁瑞 , 刘辉 , 等 . 算力网络研究进展综述 [J ] . 网络与信息安全学报 , 2021 , 7 ( 5 ): 1 - 12 .

JIA Q M , DING R , LIU H , et al . Survey on research progress for compute first networking [J ] . Chinese Journal of Network and Information Security , 2021 , 7 ( 5 ): 1 - 12 .

中国人大网 . 中华人民共和国网络安全法 [EB ] . 2016 .

China People's Congress Network . Network security law of the People's Republic of China [EB ] . 2016 .

中国人大网 . 中华人民共和国个人信息保护法 [EB ] . 2021 .

China People's Congress Network . The People's Republic of China (PRC) personal information protection law [EB ] . 2021 .

中国政府网 . 关键信息基础设施安全保护条例 [EB ] . 2021 .

China Government Network . Regulations on the security protection of key information infrastructure [EB ] . 2021 .

中国联通网络技术研究院 . 中国联通算力网络白皮书 [R ] . 2019 .

China Unicom Network Technology Research Institute . China Unicom computing network white paper [R ] . 2019 .

5G工业物联 .国家发展和改革委员会办公厅工业和信息化部办公厅关于组织实施2020年新型基础设施建设工程(宽带网络5G领域)的通知[EB ] . 2021 .

5G Industry Federation . Notice of the general office of the ministry of industry and information technology of the general office of the national development and reform commission on organizing the implementation of the new infrastructure construction project in 2020 (broadband network 5G field) [EB ] . 2021 .

中国政府网 . 全国一体化大数据中心协同创新体系算力枢纽实施方案 [EB ] . 2021 .

China Government Network . Implementation plan for computing hub of collaborative innovation system of national integrated big data center [EB ] . 2021 .

AZIZ N A , MANTORO T , KHAIRUDIN M A , et al . Software defined networking (SDN) and its security issues [C ] // Proceedings of the 2018 International Conference on Computing, Engineering, and Design (ICCED) . Piscataway : IEEE Press , 2018 : 40 - 45 .

ALWAKEEL A M , ALNAIM A K , FERNANDEZ E B . A survey of network function virtualization security [C ] // Proceedings of the Southeast 2018 . Piscataway : IEEE Press , 2018 : 1 - 8 .

袁长卿 , 苏越 , 赵伟博 . 面向算力网络的安全体系研究 [J ] . 信息通信技术与政策 , 2023 ( 2 ): 82 - 86 .

YUAN C Q , SU Y , ZHAO W B . Research on security system for computing power network [J ] . Information and Communications Technology and Policy , 2023 ( 2 ): 82 - 86 .

邱勤 , 徐天妮 , 于乐 , 等 . 算力网络安全架构与数据安全治理技术 [J ] . 信息安全研究 , 2022 , 8 ( 4 ): 340 - 350 .

QIU Q , XU T N , YU L , et al . Computing force network security architecture and data security governance technology [J ] . Journal of Information Security Research , 2022 , 8 ( 4 ): 340 - 350 .

温瑶 , 陆晶晶 , 卢华 , 等 . 融合区块链的算力网络信任评估与保障方案研究 [J ] . 南京邮电大学学报(自然科学版) , 2021 , 41 ( 4 ): 99 - 106 .

WEN Y , LU J J , LU H , et al . Blockchain-based trust evaluation and guarantee scheme for computing power network [J ] . Journal of Nanjing University of Posts and Telecommunications (Natural Science Edition) , 2021 , 41 ( 4 ): 99 - 106 .

潘洁 , 叶兰 , 张鹏飞 , 等 . 基于国密算法的算力网络安全研究 [J ] . 电信科学 , 2023 , 39 ( 8 ): 1 - 16 .

PAN J , YE L , ZHANG P F , et al . Research on computer network security based on state secret algorithm [J ] . Telecommunication Science , 2023 , 39 ( 8 ): 1 - 16 .

BI T , CHEN X H , LI J , et al . Research on industrial data desensitization algorithm based on fuzzy set [C ] // Proceedings of the 2020 IEEE International Conference on Advances in Electrical Engineering and Computer Applications( AEECA) . Piscataway : IEEE Press , 2020 : 1 - 5 .

LIU Y N , ZHONG Q , CHANG L , et al . A secure data backup scheme using multi-factor authentication [J ] . IET Information Security , 2017 , 11 ( 5 ): 250 - 255 .

周赞 , 张笑燕 , 杨树杰 , 等 . 面向联邦算力网络的隐私计算自适激励机制 [J ] . 计算机学报 , 2023 , 46 ( 12 ): 2705 - 2725 .

ZHOU Z , ZHANG X Y , YANG S J , et al . Adaptive incentive mechanism of privacy computing for federated computing network [J ] . Chinese Journal of Computers , 2023 , 46 ( 12 ): 2705 - 2725 .

张海涛 , 包森成 , 何志坚 . 隐私计算在算力网络中的实践应用 [C ] // 首批可信计算认证产品发布会论文集 . 出版地不详 : 出版者不详 , 2023 : 132 - 135 .

ZHANG H T , BAO S C , HE Z J . Practical application of privacy computing in computing network [C ] //Proc eedings of the First Batch of Conference on Trusted Computing Certification Products. [S.l: s.n. ] , 2023 : 132 - 135 .

AN X S , LIN F H , XU S G , et al . A novel differential game model-based intrusion response strategy in fog computing [J ] . Security and Communication Networks , 2018 .

SAMIR A , PAHL C . Detecting and predicting anomalies for edge cluster environments using hidden Markov models [C ] // Proceedings of the 2019 Fourth International Conference on Fog and Mobile Edge Computing (FMEC) . Piscataway : IEEE Press , 2019 : 21 - 28 .

YAN Q , HUANG W Y , LUO X P , et al . A multi-level DDoS mitigation framework for the industrial Internet of Things [J ] . IEEE Communications Magazine , 2018 , 56 ( 2 ): 30 - 36 .

MOLNAR D , PIOTROWSKI M , SCHULTZ D , et al . The program counter security model: automatic detection and removal of control-flow side channel attacks [C ] // Information Security and Cryptology - ICISC 2005 . Heidelberg : Springer Berlin Heidelberg , 2006 : 156 - 168 .

PU K R , DANG H , KONG F C , et al . A quantitative analysis of non-profiled side-channel attacks based on attention mechanism [J ] . Electronics , 2023 , 12 ( 15 ): 3279 .

ELPHINSTONE K , SHEN Y Y . Increasing the trustworthiness of commodity hardware through software [C ] // Proceedings of the 2013 43rd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) . Piscataway : IEEE Press , 2013 : 1 - 6 .

AZAB A M , NING P , ZHANG X L . SICE: a hardware-level strongly isolated computing environment for x86 multi-core platforms [C ] // Proceedings of the 18th ACM Conference on Computer and Communications Security . New York : ACM , 2011 .

LIANG H , FENG L , XU F X , et al . A novel CFN-Watchdog protocol for edge computing [J ] . Applied Soft Computing , 2021 , 113 : 107873 .

高凯辉 , 李丹 , 陈力 . 算力网络资源管理安全架构与关键技术 [J ] . 信息通信技术 , 2023 , 17 ( 3 ): 13 - 20 .

GAO K H , LI D , CHEN L . Secure architecture and key technologies for resource management in computing first network [J ] . Information and Communications Technologies , 2023 , 17 ( 3 ): 13 - 20 .

张逸然 , 耿慧拯 , 粟栗 , 等 . 算力网络业务安全技术研究 [J ] . 移动通信 , 2022 , 46 ( 11 ): 90 - 96 .

ZHANG Y R , GENG H Z , SU L , et al . Research on security technology for computing force network service [J ] . Mobile Communications , 2022 , 46 ( 11 ): 90 - 96 .

董秋香 , 关志 , 陈钟 . 加密数据上的计算密码学技术研究综述 [J ] . 计算机应用研究 , 2016 , 33 ( 9 ): 2561 - 2572 .

DONG Q X , GUAN Z , CHEN Z . Cryptographic technologies enabling computation over encrypted data [J ] . Application Research of Computers , 2016 , 33 ( 9 ): 2561 - 2572 .

RIVEST R L , ADLEMAN L M , DERTOUZOS M L . On data banks and privacy homomorphisms [J ] . Foundations of Secure Compuation , 1978 .

王永建 , 杨建华 , 郭广涛 , 等 . 网络安全物理隔离技术分析及展望 [J ] . 信息安全与通信保密 , 2016 , 14 ( 2 ): 117 - 122 .

WANG Y J , YANG J H , GUO G T , et al . Analysis and prospect of physical isolation technology for network security [J ] . Information Security and Communications Privacy , 2016 , 14 ( 2 ): 117 - 122 .

曾明 . AirGap机制及实现研究 [D ] . 昆明 : 昆明理工大学 , 2003 .

ZENG M . Research on AirGap mechanism and its implementation [D ] . Kunming : Kunming University of Science and Technology , 2003 .

张莉 . 网络安全技术及解决方案探讨 [J ] . 广东公安科技 , 2003 , 11 ( 2 ): 47 - 48 .

ZHANG L . Discussion on network security technology and solutions [J ] . Guangdong Public Security Science and Technology , 2003 , 11 ( 2 ): 47 - 48 .

毛玉欣 , 陈林 , 游世林 , 等 . 5G网络切片安全隔离机制与应用 [J ] . 移动通信 , 2019 , 43 ( 10 ): 31 - 37 .

MAO Y X , CHEN L , YOU S L , et al . 5G network slicing security isolation mechanism and application [J ] . Mobile Communications , 2019 , 43 ( 10 ): 31 - 37 .

浏览量

200

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

数实融合的大规模卫星云网仿真技术

面向6G星地融合的云边协同网络架构和关键技术