摘要
信息技术的发展对信息系统的安全要求日益高涨,研究网络安全管控问题日益重要。使用渗透测试技术有利于实现对安全漏洞的精准定位、精确发现和主动报警,并优化监测与整改相结合的网络安全管理控制体系。将渗透测试技术作为管理控制的核心要素之一,优化了风险指数模型,使网络安全管理可控而高效,切实实现管理控制目标。
The development of information technology has increasingly demanded the security of information systems,so it is more and more important to study the management and control of network security.The use of penetration test is conducive to the accurate location of security vulnerabilities,to the accurate detection and to the active alarm.It also optimizes the network security management control system which combines monitoring with rectification.The penetration test technology is regarded as one of the core elements of management and control.The risk index model is optimized to make the network security management controllable and efficient,and the management and control objectives are effectively realized.
作者
王明政
Wang Mingzheng(Information Center of Shanghai Municipal Education Commission,Shanghai 200003,China)
出处
《计算机应用与软件》
北大核心
2019年第10期329-333,共5页
Computer Applications and Software
关键词
安全管控
渗透测试
网络安全
Security management and control
Penetration test
Network security
