服务器虚拟化、虚拟桌面等虚拟化应用,因其高资源利用率、高扩展性等优势得到迅速推广应用.检察机关及各类密级要求较高的党委机关网因其涉密属性,依照现行的分级保护标准搭建了安全防护架构.虚拟化技术在涉密机关应用时,因其安全边界难以明确、管理责任无法界定等问题,与传统分级保护规则相悖,从而难以推广.针对检察等涉密环境的特点,可从虚拟化平台等三个方面尝试实施防护,使其符合分级保护本质精神,以期建立符合涉密信息系统要求的新安全架构模式.%Virtualization applications such as server and desktop,now expand rapidly for their high resource utilization and high scalability.Procuratorate and some governments,for their high requirement of security level,usually build up their own security protection architecture based on the current classified protection standards.Compared with traditional graded protection rules,the Virtualization is more difficult to promote in the classified organizations and units,for its unclear security boundary and inability to define management responsibility.For the nature of procuratorial classified environment,the protection may be implemented it from three aspects such as virtualizated platform,thus experting to build up a novel security architecture model that make it meet the requirement of classified information system.
展开▼
