摘要
为全面提升铁路通信网网络安全防护能力,通过梳理分析铁路通信网络运用现状和存在的网络安全风险问题,以《国家网络安全法》《网络安全等级保护基本要求》为指引,结合铁路运行管理体制,围绕铁路通信网网络安全集中监控、安全事件预警、安全态势感知、安全合规检测及安全业务统一运维等管理需求,开展了系统架构、核心能力、关键技术等方面的研究,提出网络安全中心总体技术架构和部署方案建议。结果表明:该技术方案可为构建和实现铁路通信网"一个中心、三重防护"的网络安全防护技术体系提供技术支撑。
In order to improve the ability of network security protection of railway communication network,the current situation of application of railway communication network and the existing network security risks were summarized and analyzed.Guided by Cybersecurity Law of the People’s Republic of China and Baseline for Classified Protection of Cybersecurity,research on system architecture,core capabilities and key technologies was carried out.The railway operation management system was taken into consideration,and the management requirements of centralized monitoring of network security,early warning of events,security situation awareness,security compliance detection and unified operation and maintenance of security business were discussed.The overall technical framework and deployment proposal of network security center were proposed.The results show that the proposed technology scheme can provide technical support for the construction and implementation of″one center,three protection″network security protection system of railway communication network.
作者
张卫军
ZHANG Weijun(Beijing Railway Communication Technology Center,China Railway Beijing Group Co.,Ltd.,Beijing 100038,China)
出处
《中国安全科学学报》
CAS
CSCD
北大核心
2019年第S02期88-92,共5页
China Safety Science Journal
关键词
铁路通信
网络安全
主动防御
态势感知
技术架构
railway communication
network security
active defense
situational awareness
technical architecture