Introduction: 2020GIDC Global Internet Data Conference East China Station ended successfully in Shanghai. The conference focused on the four major themes of the new "cloud network" pattern under the new infrastructure trend, edge cloud ecological construction and computing power reconstruction, and invited standard setters, cloud computing service providers, local operators in East China and hundreds of companies Mainstream IDC companies, edge cloud platforms, container cloud solution providers and other partners participated together. Alibaba Cloud senior expert Liu Qiang was invited to attend the "Edge Cloud Ecological Construction and Reconstruction of Computing Resources" sub-forum, and shared how Alibaba Cloud helps government and enterprise applications build safe and compliant Internet content distribution acceleration.
2020GIDC Global Internet Data Conference East China Station ended successfully in Shanghai. The conference focused on the four themes of the new "cloud network" pattern under the new infrastructure trend, edge cloud ecological construction and computing power reconstruction, and invited standard setters, cloud computing service providers, local operators in East China and hundreds of companies Mainstream IDC companies, edge cloud platforms, container cloud solution providers and other partners participated together. Alibaba Cloud senior expert Liu Qiang was invited to attend the "Edge Cloud Ecological Construction and Reconstruction of Computing Resources" sub-forum, and shared how Alibaba Cloud helps government and enterprise applications build safe and compliant Internet content distribution acceleration.
Online openness, stability and smoothness of government and enterprise online business are as important as security and compliance
With the rapid development of Internet + government affairs, Internet + finance and other "Internet +" new business forms, the pace of digital transformation of government and enterprises has accelerated, and networked architecture and online business have become basic requirements. Starting in the first half of 2020, more businesses have accelerated their transfer to the Internet.
In recent years, "digital governance" has been popularized in various industries. Livelihood service-related scenarios such as: one network, one run at most, etc., financial APP client, small program Internet platform, and "financial double recording" business, broadcast media The accelerated deepening of the converged media platform and the Internet terminal services built by traditional enterprises based on customer response and remote offices require the use of a large number of Internet infrastructure services.
At the same time, in recent years, the regulatory authorities have been strengthening the security requirements of government and enterprise online businesses year by year. They have strengthened the management of network security and Internet security in terms of defining regulatory objects, clarifying regulatory requirements, and implementing regulatory measures. Governments and enterprises need to quickly have the ability to provide Internet services to the public, and at the same time naturally have relatively high security requirements, manifested in both online openness, smoothness and stability, and security and compliance.
To cite a few specific examples: the official website is often troubled by network congestion caused by business peaks and business glitches when responding to sudden visits, such as registration and system opening. Broadcasting media pays great attention to broadcast control security and content Transmission security issues. In the process of its transformation from TV media to integrated media, broadcast control security and copyright protection are still very important; security is the first priority for finance, and financial security and other compliance guarantees will penetrate Internet transmission In the field of Internet distribution, technical defense is also needed against potential attack risks.
How to solve the security challenges of government and enterprises based on a secure content distribution network?
In the case of large-scale use of Internet technology in the government and enterprise industries, such as the use of content distribution network CDN services to accelerate Internet access, how to ensure an end-to-end secure closed loop is very important. This part of security cannot be effectively solved with hardware security equipment. At the same time, government and enterprise industries often require more customized security services, and security protection solutions born under the component business model of Internet companies cannot be fully applicable.
In this case, Alibaba Cloud launched a security acceleration solution for government and enterprise, focusing on the Internet transmission level to help government and enterprise customers build a complete set of security solutions. Under the premise of using CDN nodes to ensure acceleration, it integrates anti-DDoS attacks and anti-CC attack technologies. National secret algorithm, IPv6 at the transmission level, as well as application capabilities such as IP blocking, origin protection, anti-tampering, and anti-theft brushing, combined with data visualization for security reporting and demand summary, providing customers with customized one-stop solutions.
The application and value of government and enterprise security acceleration solutions in the industry
In specific business scenarios, how can government and enterprise security acceleration solutions solve pain points and meet needs?
Scenario 1: Government portal
The government-enterprise security acceleration solution serves various applications such as government portals, e-government affairs, and one-stop Internet access, as well as party building learning and online education platforms, helping them to relieve more than 95% of the network traffic pressure and cope with unpredictable concurrent visits. And hide and protect the source station. At the same time, the transmission link layer encryption is realized based on the national secret algorithm https, which effectively prevents hijacking and tampering, and protects the security of website content. In addition, through UA/IP black and white list/Refer anti-leech, and DRM digital rights management and other security mechanisms, multi-dimensional prevention of video piracy and protection of high-quality copyright content from infringement.
Scenario 2: Finance
In the financial field, the portal websites, mobile apps of banks, securities, and insurance institutions, as well as business scenarios such as transaction certification audits, financial double recording, and internal training, have strict compliance requirements, and SSL certificates and national secrets are relatively high. The government-enterprise security acceleration solution provides an end-to-end national secret https transmission encryption solution, including keyless, dual-certificate, IPv6, etc., which require relatively clear security features in compliance. At the same time, the solution is based on DDoS/CC protection and edge WAF to help financial institutions respond to cyber attacks and ensure business security and stability without interruption. In addition, the solution integrates full-site acceleration, based on the seven-layer/four-layer acceleration, effectively increasing the transaction success rate to 99.9%, shortening the transaction time by more than 30%, and optimizing the user experience of financial enterprises under cross-border and large-scale transactions and visits.
Scene 3: Media
In recent years, many districts and counties have their own financial media platforms. The penetration rate of the converged media platform HTTPS is even lower, but as a credible media, there are hidden dangers such as content tampering and video copyright protection. The government-enterprise security acceleration solution effectively prevents hijacking and tampering through the national secret https transmission encryption. At the same time, it is based on UA/IP black and white list/Refer anti-leech, and DRM digital rights management and other security mechanisms to ensure that high-quality copyrighted content is not pirated and hijacked.
Scenario 4: Internal office
Traditional enterprise internal business scenarios include internal online office work, such as OA, mailboxes, production systems, and external customer-oriented applications, such as the official website of the enterprise, enterprise APP, small program, and shopping mall. Enterprise demand pain point poor platform access experience and enterprise data security. Government and enterprise security acceleration solutions can be based on site-wide acceleration, seven-layer/four-layer acceleration to support cross-regional, cross-operator system collaboration and API acceleration, and improve platform access experience. At the same time, in terms of security, the solution’s one-stop integrated edge WAF capability can effectively achieve anti-crawler, anti-theft brush, and WEB system intrusion protection, avoid core data leakage caused by corporate websites being crawled and platforms being brushed, and ensure Security of enterprise data and origin site.
In summary, the Alibaba Cloud government-enterprise security acceleration solution has the following advantages:
Edge security: Building edge security at the Internet level can build a full range of edge security protection capabilities that are anti-attack, anti-tampering, and anti-overload. Provide exclusive resources and physical isolation to meet the higher-level security needs of different industries.
Equal guarantee compliance: Enterprise security is accelerated, and the platform has passed Equal Guarantee 2.0 level three and SOC, ISO9001, PCI-DSS, ISCCC and other safety certifications.
Stable and fast: Alibaba Cloud's global 2800+ high-performance acceleration nodes, 130T sufficient bandwidth reserve, through intelligent routing, protocol optimization and multiple distribution strategies, improve access efficiency and reduce overall costs.
Convenient access: Without the need to deploy equipment, it can achieve rapid deployment of security + acceleration capabilities through API, and achieve integrated protection.
Professional services: Relying on the large platform of Alibaba Cloud Global Delivery Center GTS, it can provide daily services (real-time detection, monthly reports), emergency response, escort for major events, and triple security.
Liu Qiang said: “At present, the government-enterprise security acceleration solution has served many government-enterprise customers. Alibaba Cloud CDN serves hundreds of thousands of customers around the world and has accumulated rich industry experience. We hope to turn this experience into better services. , To create a fast, safe, and reliable Internet experience, deliver products that satisfy customers, and help more governments and enterprises seize opportunities for digital development.
Scan the QR code to join the government and enterprise security acceleration solution consulting group to learn more about the solution
Original link: https://developer.aliyun.com/article/780593?
Copyright statement: The content of this article is voluntarily contributed by Alibaba Cloud real-name registered users. The copyright belongs to the original author. The Alibaba Cloud Developer Community does not own its copyright and does not assume corresponding legal responsibilities. For specific rules, please refer to the "Alibaba Cloud Developer Community User Service Agreement" and the "Alibaba Cloud Developer Community Intellectual Property Protection Guidelines". If you find that there is suspected plagiarism in this community, fill in the infringement complaint form to report it. Once verified, the community will immediately delete the suspected infringing content.