摘 要:网络安全形势风云诡谲,企业的传统安全防护体系在面对高阶持续攻击时已无法实时监控系统持续运行、保护数据安全。为全方位保护企业的网络安全,结合纵深防御的指导思想构建一套从主机、应用到网络边界的安全防护体系。利用技术手段实现多点实时检测,结合威胁情报、日志安全分析以及自动化阻断恶意访问的安全防护体系,经过网络安全攻防演练实战检验,有效的告警信息和快速的处置手段可大幅减少应急响应处置的时间。
关键词:网络安全体系;纵深防护;实时监测
中图分类号:TP393.08;TP308 文献标识码:A 文章编号:2096-4706(2020)24-0097-04
Practice of Network Security in Depth Protection System
ZHOU Meng,QIU Dai
(SSE Infonet Co.,Ltd.,Shanghai 201203,China)
Abstract:The situation of network security is changeable,and the traditional security protection system of enterprises has been unable to real-time monitor the continuous operation of the system and protect the data security in the face of high-level continuous attacks.In order to protect the network security of enterprises in an all-round way,combined with the guiding ideology of defense in depth,this paper constructs a set of security protection system from the host,application to the network boundary. Using technical means to achieve multi-point real-time detection,combined with threat intelligence,log security analysis and automatic blocking malicious access security protection system. Through the actual combat test of network security attack and defense drill,effective alarm information and fast disposal means can greatly reduce the time of emergency response disposal.
Keywords:network security system;depth protection;real-time monitoring
参考文献:
[1] 高博. 基于大数据的计算机网络安全体系构建对策 [J]. 现代信息科技,2020,4(12):134-135+139.
[2] 张学林. 计算机网络安全防护体系的建设研究 [J]. 网络安全技术与应用,2015(2):140+144.
[3] 孙华山,张茂兴. 大数据背景下关于网络信息系统安全形势的研究 [J]. 信息系统工程,2019(12):60-61.
[4] 赵峰,马跃强. 基于等保2.0 工业控制系统网络安全技术防护方案的设计 [J]. 网络安全技术与应用,2020(5):109-111.
[5] 程永昕. 计算机网络安全防护体系的建设 [J]. 传播力研究,2020,4(1):182+184.
作者简介:周蒙(1989—),女,汉族,江苏东台人,工程师,硕士,研究方向:计算机应用技术、网络安全、应用安全SDL 管理。