摘要
通过对网络安全现状的分析,从网络层、主机系统层、应用系统层等层次上分解了建立企业信息系统安全体系的要素,构建了企业信息系统安全体系.在建立企业信息安全体系中,主要运用了划分网络边界、设置窒息点、纵深防御、堡垒主机、数据容灾等关键技术来实现安全体系各层次的要素,提出了建立信息安全中心的概念,描述了安全体系的最薄弱环节、最小权限、防外也防内等基本原则,给出了相应的安全措施,最后分析了安全系统的非技术因素,从系统的角度上构建了一套完善的企业信息系统的安全体系.
The authors analyze the status quo of security network system, describe such essential factors of the security system in enterprise information system as the elements of network layer, mainframe layer, and application layer, etc. and build the information security system. By using the key technology, such as dividing network boundary, putting up choke point, deep defense, stronghold mainframe, data redundancy and so on, they propound the conception of security information center, and describe basic policies, such as the weakest link, minimum right, defending both inside and outside, etc. At last the non-technology factors are also analyzed.
出处
《北京工业大学学报》
CAS
CSCD
北大核心
2003年第4期491-494,共4页
Journal of Beijing University of Technology
关键词
网络边界
窒息点
堡垒主机
数据容灾
信息系统安全体系
network boundary
choke point
stronghold mainframe
data redundancy
security system of information system
