摘要
层出不穷的安全事件,网络环境的变化多端,使大家意识到企业安全体系不是部署入侵检测,防火墙等安全设备就够了。互联网已经形成指数级发展,其影响的深度、广度也在逐渐加深拓宽,网络安全多变催生出新的、能够适应新常态下的安全解决方案,高效、快速、及时,准确地捕获、分析、投放攻击过程。通过对传统漏洞规则的划分维度做全新调整,依托大规模的安全情报系统,按照事件的攻击链过程,结合专业化、系统化、智能化的大数据处理中心的日志和流量分析,给客户动态呈现出整个攻击过程。
Plenty of safety incidents and changing network environment show that the deployment of intrusion detection and firewall are not enough for the enterprise safety system. Internet has the exponential order development, its influence is increasing. The changing of network environment contributes to the forming of safety resolution, which captures, analyzes and launches the attack process timely and accurately. It adjusts the traditional division dimension of loophole rule. Based on the large scale safe- ty information system, according to the attack chain procedure, the complete attack process is showed for the client, in com- bination with the log and traffic analysis of professional, systematic and intelligent big data processing center.
出处
《邮电设计技术》
2016年第1期74-77,共4页
Designing Techniques of Posts and Telecommunications
关键词
攻击链
势态感知
新常态
Attack chain
Situation awareness
New normal
