摘要
对移动警务安全接入平台中的终端设备的安全防护问题进行了研究,提出并研制了一种基于动态策略的移动警务终端安全管控系统,整个系统由客户端、前置服务端和内网服务端组成,前置服务端和内网服务端分别部署在前置区和公安内网,客户端部署在移动终端设备上,确保在移动接入区和公安内网区有效进行物理隔离的前提下,将系统制定的各种安全策略规则下发到客户端执行,规范用户对移动终端的本地软硬件资源和网络资源的使用,实现安全威胁检测、防护及预警,对移动终端用户的违规访问、操作行为进行全面监测和上报,实现终端设备安全和行为的统一管理。
In this paper,we study the security protection of terminal equipment in mobile police security access platform,and proposes and develops a mobile police terminal security management and control system based on dynamic strategy.The whole system consists of client,front-end server and intranet server.The front-end server and intranet server are deployed in front-end area and public security intranet respectively,and the client is deployed in mobile terminal.In term of this,under the premise of physical isolation between the mobile access area and the public security intranet area,all kinds of security policy rules will be distributed to the client for execution,so as to standardize the user's use of the local software and hardware resources and network resources of the mobile terminal.Meanwhile,the proposed system can realize the detection,protection and early warning of security threats,comprehensively monitor and report the illegal access and operation behavior,and realize the unified management of terminal equipment security and behavior.
作者
樊志杰
郑长松
曹志威
Fan Zhijie;Zheng Changsong;Cao Zhiwei(Research and Development Center,Shanghai Chenrui Information Technology Company,Shanghai 200031,China;Department of Information Security Technology,The Third Research Institute of the Ministry ofPublic Security,Shanghai 200031,China;Science and Technology Information Corps,Public Security Department of Sichuan Provincial,Chengdu 610041,China)
出处
《计算机测量与控制》
2021年第6期219-223,共5页
Computer Measurement &Control
基金
四川省科技计划项目(重点研发项目)(2021YFS0310)
国家重点研发计划(2018YFC0807105)。
关键词
动态策略
移动警务终端
安全管控系统
移动接入区
公安内网区
dynamic strategy
mobile police terminal
security control system
mobile access area
public security intranet area
