摘要
随着信息技术的发展,网络安全威胁和风险日益突出。终端作为信息交互、处理和存储的设备,数量众多,安全问题尤为突出。从网络准入、硬件、软件、数据、物联网终端和云终端六个层面分析终端存在的安全威胁,并从接入控制、身份认证和监控与审计三大方面提出了未来终端安全防护的发展方向和设计思路。该研究不仅适用于Windows终端、手机终端和平板终端,还适于国产化系统终端、云终端和物联网终端,只需针对系统的特点和用途利用不同的机制实现。通过设计和实现过程的事前检查、事中控制和事后分析审计,可大大降低安全事件发生的概率。
With the development of information technology,threats and risks of cyber security become increasingly serious.As a device for information interaction,processing and storage,the number of terminals is large,and the security problem is particularly prominent.The security threats of terminal are analyzed from the six aspects of network access,hardware,software,data,IoT terminal and cloud terminal.From the three aspects of access control,identity authentication,monitoring and auditing,the development direction and design ideas of terminal security protection are proposed.The research is applicable not only to Windows terminals,mobile terminals,and tablet terminals,but also to localized system terminals,cloud terminals,and IoT terminals.Only different mechanisms can be used to implement the system according to its characteristics and uses.The probability of security incidents can be greatly reduced by pre-inspection,in-process control and post-analysis auditing of the design and implementation process.
作者
王慧
王锐
胡兆华
WANG Hui;WANG Rui;HU Zhao-hua(Chengdu Westone Information Industry Co.,Ltd.,Chengdu Sichuan 610041,China;No.30 Institute of CETG,Chengdu Sichuan 610041,China)
出处
《通信技术》
2019年第2期455-459,共5页
Communications Technology
关键词
终端安全防护
身份认证
接入控制
监控与审计
物联网
terminal security protection
identity authentication
access control
monitoring and auditing
IoT(Internet of Things)
