摘要
针对不可信终端的随意接入可能带来的企业网络及信息资源违规占用、病毒木马泛滥、企业资料泄密以及越权访问等诸多安全问题,文章从系统架构、关键技术、实施部署等方面介绍了网络接入认证控制系统建设的技术方案。通过网络接入认证控制系统的建设,对终端设备的接入从技术手段进行严格的审批、授权,未经审批、授权的终端设备将无法接入到公司的网络中。同时对发现有异常行为的终端设备迅速进行网络隔离,从而可以立即消除网络上的安全隐患,进一步提升企业整体网络安全管理水平。
According to the security problems caused by the unauthentic terminal, including the illegal occupation of the enterprise network and information resources, the spread of the virus Trojan horse, the leakage of the enterprise data, and exceeding authorized access. From the aspects of the system architecture, key technologies and implementation deployment, etc, this paper introduces the construction technology scheme of network access authentication control system. In this scheme, through the construction of the network access authentication control system, terminal equipment access is strictly approved and authored. Otherwise, the device can't access to the corporate network. Meanwhile, the terminal with abnormal behavior is isolated quickly which can immediately eliminate security risks on the Internet, further enhancing the security management level of the whole company network.
作者
叶水勇
YE Shui-yong(State Grid Huangshan Power Supply Company, Huangshan 245000, Chin)
出处
《电力信息与通信技术》
2018年第5期41-46,共6页
Electric Power Information and Communication Technology
关键词
安全准入
身份认证
终端设备
重定向
旁路干扰
security access
identity authentication
terminal equipment
redirection
bypass interference