摘要
等级保护2.0系列标准于2019年正式发布,相对于等级保护1.0标准,等级保护2.0更注重动态防护、整体防控和精准防护。分析新形势下铁路网络安全面临的挑战和需求,结合铁路网络安全现状,提出等级保护2.0时代铁路网络安全技术体系的建设思路,构建基于安全管理中心、安全通信网络、安全区域边界和安全计算环境的网络安全体系,并针对铁路当前新兴的IT应用安全防护需求提出主要建设内容,为铁路运营单位建设技术防护体系提供参考。
A series of classified protection standards of cybersecurity,Classified Protection 2.0 for short,were released in 2019.Compared with the previous ones,Classified Protection 1.0 for short,Classified Protection 2.0 pays more attention to dynamic protection,integrated prevention and control and targeted defense.The challenges and requirements for railway network security are analyzed,the construction thoughts for the new technical system of railway network security under the guidance of Classified Protection 2.0 are given based on the current situation of railway network security.It is proposed that the new technical system be established based on security management center,secure communication network,secure zone boundary and secure computing environment.And the construction contents of security protection for emerging IT applications in railway are also proposed,offering reference for railway enterprises in the construction of technical systems of cyber security.
作者
刘刚
杨轶杰
LIU Gang;YANG Yijie(Department of Science,Technology and Information Technology,China Railway,Beijing 100844,China;Institute of Computing Technologies,China Academy of Railways Sciences Corporation Limited,Beijing 100081,China)
出处
《铁路计算机应用》
2020年第8期19-23,27,共6页
Railway Computer Application
基金
中国国家铁路集团有限公司科研开发计划重点课题(K2019S002)。
关键词
铁路网络安全
网络安全等级保护2.0
技术体系
railway network security
Classified Protection 2.0 of Cybersecurity
technical system
