摘要
本文通过对关键应用信息系统存在的风险和安全隐患进行分析,采用PPDR动态网络安全模型,结合企业信息系统特点和笔者多年的信息安全管理实践,将基于安全策略的系统性能提升、安全访问区域保护、信息系统的自身防护、入侵防御和漏洞扫描体系以及响应和恢复机制等技术方法和手段综合应用,全方位构筑关键应用信息系统的动态安全防御体系,保证关键应用信息系统的可用性、可靠性和安全性。
On the basis of analyzing the risk and hidden trouble for the key applying information system,the PPDR dynamic network safety model was used to build up the comprehensive dynamic safety defending system for the key applying information system to insure its availability,reliability and safety.The system also considered the characteristics of the information system used in the enterprise and the long-time practice for the writer to engage in the information safety management,and using the technique methods such as system performance improvement base on safety strategy, safety visiting regional protection,self defending of the information system,invasion defending,loophole scanning system,response and recovery mechanism,and so on.
出处
《计算机与应用化学》
CAS
CSCD
北大核心
2010年第8期1154-1156,共3页
Computers and Applied Chemistry
