摘要
为有效应对铁路企业面临的日益严峻的信息网络安全威胁,引入Cyber Kill Chain模型来识别和预防网络入侵活动,分析了该模型7个阶段相应的攻击行为特点,针对各阶段的预期目的,提出符合铁路行业特点的信息网络安全防御措施,以求在网络攻击较早阶段瓦解网络威胁,构建全方位、深层次的网络安全防御体系,保护铁路基础设施、应用系统、数据资源等免遭网络攻击破坏。
In order to effectively deal with the increasingly severe information network security threats faced by railway enterprises,this paper introduced the Cyber Kill Chain Model to identify and prevent network intrusion activities,analyzed the characteristics of corresponding attack behavior around the seven stages defined by the model.According to the expected purpose of each stage,the paper put forward the information network security defense measures with the characteristics of the railway industry to disintegrate the network threat in the early stage of network attack,build an all-round and deep-seated network security defense system,protect railway infrastructure,application system and data resources from network attacks.
作者
杨钰杰
霍云龙
YANG Yujie;HUO Yunlong(Information Technology Institute,China Railway Jinan Group Co.Ltd.,Jinan250001,China)
出处
《铁路计算机应用》
2021年第11期64-67,共4页
Railway Computer Application
