| 企业信息系统安全体系的构建 |
| |
| 引用本文: | 李华锋,林恒.企业信息系统安全体系的构建[J].北京工业大学学报,2003,29(4):491-494. |
| |
| 作者姓名: | 李华锋 林恒 |
| |
| 作者单位: | 北京工业大学,计算机学院,北京,100022 |
| |
| 摘 要: | 通过对网络安全现状的分析,从网络层、主机系统层、应用系统层等层次上分解了建立企业信息系统安全体系的要素,构建了企业信息系统安全体系.在建立企业信息安全体系中,主要运用了划分网络边界、设置窒息点、纵深防御、堡垒主机、数据容灾等关键技术来实现安全体系各层次的要素,提出了建立信息安全中心的概念,描述了安全体系的最薄弱环节、最小权限、防外也防内等基本原则,给出了相应的安全措施,最后分析了安全系统的非技术因素,从系统的角度上构建了一套完善的企业信息系统的安全体系.
|
| 关 键 词: | 网络边界 窒息点 堡垒主机 数据容灾 信息系统安全体系 |
| 文章编号: | 0254-0037(2003)04-0491-04 |
| 修稿时间: | 2003年2月20日 |
Building of the Security System of Enterprise Information System |
| |
| LI Hua-feng,LIN Heng.Building of the Security System of Enterprise Information System[J].Journal of Beijing Polytechnic University,2003,29(4):491-494. |
| |
| Authors: | LI Hua-feng LIN Heng |
| |
| Abstract: | The authors analyze the status quo of security network system, describe such essential factors of the security system in enterprise information system as the elements of network layer, mainframe layer, and application layer, etc. and build the information security system. By using the key technology, such as dividing network boundary, putting up choke point, deep defense, stronghold mainframe, data redundancy and so on, they propound the conception of security information center, and describe basic policies, such as the weakest link, minimum right, defending both inside and outside, etc. At last the non-technology factors are also analyzed. |
| |
| Keywords: | network boundary choke point stronghold mainframe data redundancy security system of information system |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
