摘要
随着网络和信息技术的蓬勃发展和广泛应用,信息系统的规模也在不断扩大,随之而来的安全问题也日渐凸显。如何有效地对网络安全设备进行统一的管理和配置,对网络安全信息数据进行高效的审计,使安全设备与网络安全管理者之间实现安全互动,就成了目前网络安全管理面临的一个主要问题。本文研究的系统以IP访问控制系统为例,对国内外网络安全管理技术的现状进行了分析,对网络安全数据管理系统进行了总体设计,确定了系统的总体框架并说明了系统各模块间的协作方式,采用MVC设计模式和AJAX技术设计并实现了一种基于B/S架构的分布式网络安全数据管理系统,在友好易用的图形界面中实现了对网络安全设备进行基本信息登记、配置管理,并联合安全设备的系统日志,对配置下发情况进行分析和审计。最终设计实现了能应用于IP控制系统、具有安全数据管理功能的网络安全数据管理系统。经测试,使用该系统,信息安全防护等级可提升至75%。
With the rapid development and wide application of network and information technology,the scale of information system is also expanding,and the ensuing security problems are becoming increasingly prominent.How to effectively unify the management and configuration of network security equipment,efficiently audit network security information data,and achieve security interaction between security equipment and network security managers has become a major problem facing network security management at present.This system takes IP access control system as an example,analyzes the status quo of network security management technology at home and abroad,and then carries on the overall design to the network security data management system,determines the overall framework of the system and explains the cooperation mode between the system modules.Using the MVC design pattern and AJAX technology,a distributed network security data management system based on B/S architecture is designed and implemented.The system realizes the basic information registration and the configuration management of network security equipment in a user-friendly graphical interface.In addition,the configuration distribution situation is analyzed and audited in combination with the system log of security equipment.Finally,a network security data management system with security data management function which can be applied to IP control system is designed and implemented.After testing,the information security protection level can be raised to 75%by using this system.
作者
辛云龙
XIN Yunlong(Office of Central Cyberspace Affairs Commission Network Security Emergency Command Center,Beijing,China,100044)
出处
《福建电脑》
2021年第7期1-8,共8页
Journal of Fujian Computer