基于联动人侵检测的云服务零信任内网主动防御技术研究

打开文本图片集

关键词：联动入侵检测；云服务；零信任内网；主动防御技术；安全态势；蜜罐诱捕策略中图分类号：TN915.08-34；TP393 文献标识码：A 文章编号：1004-373X（2025）10-0147-05

Abstract：Inordertoensurethesecureoperationof thezero-trust intranetofcloudservicesandefectivelyimplement atackdefense，acloudservicezero-trustintranetactivedefense technologybasedoncollaborativeintrusiondetectionis proposed.Inthistechnology，basedonthezero-trust intranetarchitectureofcloudserviceanditsowndefensemechanism structure，theK-meansalgorithmwithdensityparametersisusedtoclusterthenetworkoperationdataandperceivetheintranet security situation.Thehoneypottrappngstrategyisusedtolureatackersinthenetwork basedonpereptualresults.In combinationoffuzzyconstraintcontrolmethodwithhoneypottrapping，thejointprocessingofattack behaviorischievedto completethezero-trustintranetactivedefenseofcloudservices.Theresultsshowthattheproposeddefensetechnologyhasgood intranetsituationalawarenessefet，thevalusofintraclustercompactnsaeallaboe.9O6，theintrusiobehviorspectal values are all within the range of ±0.5 dB，and the active defense effect is good.

Keywords：colaborativeintrusiondetection;cloudservice;zero-trustintranet;activedefense technology;securitysituation; honeypot trapping strategy

0 引言

云服务零信任内网可以理解为在云服务环境中采用零信任原则构建的内网安全体系，其架构打破了传统的信任边界，使得每个实体都需要经过持续的身份验证和访问控制[1-2]，从而有效地降低了内部安全风险。（剩余5313字）