摘要
随着业务场景的快速变化,企业会高频度地发布新版本,这对变更管理提出了更大的挑战。变更安全审计可以规范变更操作,发现违规变更风险。研究变更自动化安全审计对于降低安全风险具有重要的现实意义。审计方法将变更审批和变更实施流程关联,把变更控制表和实际操作命令映射到统一的规则空间,结合规则的权重以及变更控制表与实际操作命令的距离,实现变更自动化安全审计。运维变更自动化审计可以识别出实际操作偏离变更控制表的高风险变更,提高变更审计的覆盖率和效率,从而降低变更风险。
With the rapid changes of business scenarios,high-frequency release present greater challenges to change management.Change audit can standardize change operation and find the risk of illegal change.The researches of change automation audit are very important and significative to reduce security risks.This paper tries to associate the change approval process with the change implementation process,map the change application form commands and actual operation commands to a unified rule space.Then combines the weight of each rule and the distance between application form commands and actual operation commands realize automatic security audit of changes.The results show that method in this paper can identify high-risk changes,improve the coverage and efficiency of change audits,thereby reducing the risk of changes.
作者
韩百然
Han Bairan(Citic Aibank Co.,Ltd.,Beijing 100029)
出处
《网络空间安全》
2021年第6期32-35,共4页
Cyberspace Security
关键词
堡垒机
变更管理
变更审计
信息安全
自动化审计
operation audit
change management
change audit
information security
automatic audit
