以大型企业服务器运维管理为背景,基于安全体系中的“基线”概念,提出了一种新的服务迁移机制。将原有迁移过程分为两步:先环境迁移,再服务迁移。环境迁移的过程依赖安全基线来完成,其中包括基线的定制、转换、分发与部署几个步骤。该迁移的优势在于业务与服务的前提条件不易遗漏,运行环境得以保障。同时,可由一台计算机远程统一管理多台服务器的迁移,操作简便。在文章最后,以微软安全基线为例,详细介绍了本人实现的系统和基线转换的算法。最终的实验结果证明是高效的、令人满意的。%This paper proposes a mechanism of services migration in the background of the operation management of large enterprises using the notion of“security baseline”. It splits the original migration into two parts. First, transport the environment on the server, which includes the custom, transform, distribution and deploy of baselines, and then the running services. By this way, the preconditions of the businesses and the services will not be omitted and the environment is guaranteed. Furthermore, it is of convenience that one can control multiple servers from one terminal. Finally, this paper introduces the realized system and the baseline transform algorithm in detail. The experiment result shows that the mechanism is high efficient and satisfactory.
展开▼