摘要
为提升专网信息安全防御能力,拥有专网的机构越来越关注信息网络安全态势感知技术,以实现安全事件的预测与预防.通过对态势感知内容及相关技术简单介绍的基础上,针对行业专网领域网络安全管理的需求,提出一套适用的网络安全态势感知的功能架构,从功能层面详细阐述了各系统应包含的功能要素,为相关机构建设网络安全态势感知平台提供参考.
In order to improve the information security defense capability of the private network,the institutions with private network pay more and more attention to the information network security situational perception technology to realize the prediction and prevention of security events. Based on the brief introduction of situational awareness and related technologies, this paper puts forward a set of applicable network security situational awareness functional architecture targeting industry-specific network needs. This paper details the functional elements contained in each system from the functional level, which would provide reference for relevant institutions to build a network security situational awareness platforms.
作者
包利军
Bao Lijun(Beijing Tianrongxin Network Security Technology Co.,Ltd.,Beijing 100085)
出处
《信息安全研究》
2019年第2期168-175,共8页
Journal of Information Security Research
关键词
态势感知
大数据
网络安全
专网
异常监测
situational awareness
big data
network security
private network
abnormal monitoring