摘要
为了解决北京气象信息网络安全和有效地满足气象信息共享、等级保护和未来发展的需求,在分析现有北京气象信息网络建设中存在安全风险的基础上,从人员思想意识、管理和技术等方面提出了一套比较完整的解决信息安全问题思路。结果表明:可从信息安全系统建设方面以安全等级划分作为首要切入点,建立安全域,解决办公网、业务网和互联网三网关联问题。将安全检查评估和加固贯穿到信息系统整个周期,采用网络安全联防机制安全准入方案,解决VPN接入导致的网络边界模糊问题。可根据信息系统属性和损害客体及损害程度划分信息系统等级。此研究思路,对气象信息系统安全的进一步发展有参考依据。
In order to solve the network safety, share, security grade protection and the further needs of Beijing meteorological information, a set of information and network protection solution were proposed from the security idea, management and technology on the basis of the analytical results of the living network safety risk. The results indicate that safety domain should be built in terms of safety grade division in order to solve the network conjunction problem of office network, operational network and Internet. Security evaluation and reinforcement should be run through the total information system. Accessed VPN (Virtual Private Network) terminals causing the dubious network border are restricted by the network security joint defense's mechanism. Information system is divided into various grades according to its attribute and damaged object as well as damaged extent. This paper provides some good and useful ideas for the customization design and implementation under the complex meteorological network and information security environment conditions.
出处
《气象与环境学报》
2011年第2期45-49,共5页
Journal of Meteorology and Environment
基金
北京市气象局基金项目(BMBYWFZ2010001)"气象信息存贮共享及网络安全的业务发展策略和技术方案设计"资助
关键词
气象信息
信息安全发展
等级保护
安全策略
安全域
Meteorological information
Development of information safety
Grade protection
Security policy
Security domain
