摘 要:随着信息化的发展,各高校的应用系统不断发展,网络规模迅速扩大、设备数量激增,网络平台逐步建设起来。谈到以深化应用和提高效率为特征的运维阶段,各应用系统的运维,安全管理逐步融为一体。信息系统的安全运行直接关系到各高校日常教学和办公,同时对操作和维护的安全性提出了更高的要求。堡垒机的建设和应用,通过基于唯一识别的集中账户和访问控制策略,帮助大学为用户建立集中、有序、主动的运维安全管理和控制平台。堡垒机无缝连接各种服务器和网络设备,实现集中精细的运维管理和审计,降低人为操作的安全风险,避免安全损失,满足合规要求,保障高校各应用系统的稳健运行。本文结合我校堡垒机的建设,对高校堡垒机建设提供一定的实践经验。
关键词:堡垒机;信息技术;网络运维
中图分类号:TP309 文献标识码:A 文章编号:2096-4706(2019)10-0152-04
Preliminary Study on the Construction and Application Prospect of
Fortress Machine in Medical Colleges and Universities
PENG Guifen,ZHE Mingwei,HAN Hua
(Kunming Medical University Modern Education Technology Center,Kunming 650500,China)
Abstract:With the development of information technology,the application systems of colleges and universities continue to develop,the network scale expands rapidly,the number of equipment increases sharply,and the network platform is gradually built up. Speaking of the operation and maintenance stage characterized by deepening application and improving efficiency,the operation and maintenance of application systems and safety management are gradually integrated. The safe operation of information system is directly related to the daily teaching and office work of colleges and universities. At the same time,it puts forward higher requirements for the security of operation and maintenance. The construction and application of the fortress machine,through the centralized account and access control strategy based on unique identification,helps the university to establish a centralized,orderly,active operation and security management and control platform for users. Fortress machine seamlessly connects all kinds of servers and network equipment,realizes centralized and meticulous operation and maintenance management and audit,reduces the security risks of human operation,avoids security losses,meets the requirements of compliance,and ensures the stable operation of various application systems in colleges and universities. Combining with the construction of the fortress machine in our university,this paper gives some practical experience for the construction of the fortress machine in colleges and universities.
Keywords:fortress machine;information technology;network operation and maintenance
参考文献:
[1] 赵瑞霞,王会平. 构建堡垒主机抵御网络攻击 [J]. 网络安全技术与应用,2010(8):26-27.
[2] 闫文耀,王志晓. 基于堡垒主机防火墙的安全模型研究[J]. 网络安全技术与应用,2008(6):37-40.
[3] 孙思良. 防火墙技术及其在网络安全中的应用 [J]. 电脑知识与技术,2005(12):34-36.
[4] 周斌. 如何构建有效的IT 运维管理 [J]. 互联网周刊,2013(2):24-25.
[5] 张晔,赵呈东. 信息安全动态保障体系建设探讨 [J]. 信息安全与通信保密,2012(7):81-83.
作者简介:
彭桂芬(1979.09-),女,汉族,云南大理人,讲师,硕士研究生,研究方向:计算机应用和现代教育技术;
通讯作者:
者明伟(1983.09-),男,汉族,云南玉溪人,助理工程师,硕士研究生,研究方向:计算机网络、网络安全。