| 面向实战的关键信息基础设施防御体系演进研究 |
| |
| 引用本文: | 段炼,王黎迪.面向实战的关键信息基础设施防御体系演进研究[J].电信工程技术与标准化,2021,34(11). |
| |
| 作者姓名: | 段炼 王黎迪 |
| |
| 作者单位: | 中国移动通信集团江苏有限公司,南京 210012;中国移动通信集团江苏有限公司常州分公司,常州 213000 |
| |
| 摘 要: | 本文基于攻击链模型提出了一种关键信息基础设施防御体系演进思路和实现方式,在骨干网、城域网、企业内网三个层面对网络入侵流量进行监测、分析和处置,进一步扩大关键信息基础设施的防御纵深。通过综合运用DPI、欺骗防御、大数据、旁路阻断等技术,逐层收敛告警,并以可视化的界面展示给网络安全运营人员,提升攻击事件的监测准确率,极大提升了系统整体防护效果和安全运营工作效率。
|
| 关 键 词: | 流量监测 入侵感知 攻击溯源 欺骗防御 |
| 收稿时间: | 2021/1/26 0:00:00 |
| 修稿时间: | 2021/1/26 0:00:00 |
Research on the evolution of critical information infrastructures defense system in actual combat |
| |
| DUAN LIAN and Wang Lidi.Research on the evolution of critical information infrastructures defense system in actual combat[J].Telecom Engineering Technics and Standardization,2021,34(11). |
| |
| Authors: | DUAN LIAN and Wang Lidi |
| |
| Affiliation: | China Mobile Group JiangSu CO.,Ltd.,China Mobile Group JiangSu CO.,Ltd. Changzhou Branch |
| |
| Abstract: | Based on the cyber kill chain model, this paper proposes an evolutionary idea and implementation method for critical information infrastructures(CII) defense system. It monitors, analyzes and disposes of network intrusion traffic at the backbone network, metropolitan area network, and corporate intranet, which further expands the defense depth of CII. Through the comprehensive use of DPI, deception defense, big data, bypass blocking and other technologies, the alarms are converged layer by layer, and displayed to network security operators with a visual interface, which improves the accuracy of the monitoring of attack events,system protection effect and the efficiency of network security operation . |
| |
| Keywords: | |
| 本文献已被 万方数据 等数据库收录! |
| 点击此处可从《电信工程技术与标准化》浏览原始摘要信息 |
|
点击此处可从《电信工程技术与标准化》下载全文 |
|
