摘要
为了提高网络数据中心信息系统运行的安全性,保障系统安全区域规划的合理性,文章开展了网络数据中心信息系统安全区域规划方法的设计研究。文章从信息系统感知层、网络层、平台层、应用层四个方面,进行各层级安全需求分析;将系统中网络数据中心信息的安全等级作为基础,根据信息所属的安全域,进行安全区域划分;根据网络数据中心安全整体架构,从出口防护区,安全监测区,安全管理区﹑资源业务区四个方面,进行各安全区域详细规划设计。通过对比实验证明,文章设计的方法在实际应用中可以降低系统运行风险值,从而起到提升网络数据中心信息系统运行安全的效果。
In order to improve the operation security of network data center information system and ensure the rationality of system security area planning,the design and research of network data center information system security area planning method is carried out.We analyze the security requirements at all levels from four aspects:information system perception layer,network layer,platform layer and application layer.We take the security level of network data center information in the system as the key,and divide the security area according to the security domain to which the information belongs.According to the overall security architecture of the network data center,the detailed planning and design of each security area is carried out from four aspects:export protection area,security monitoring area,security management area and resource business area.Through comparative experiments,it is proved that the designed method can reduce the risk value of system operation in practical application,so as to improve the operation security of network data center information system.
作者
陈磊
唐国宾
蔡丹
宋智翔
雷大洋
CHEN Lei;TANG Guobing;CAI Dan;SONG Zhixiang;LEI Dayang(China Energy Engineering Group Shaanxi Electric Power Design Institute Co.,Ltd.,Xi'an 710054,China;State Grid Shaanxi Electric Power Company Information communication Company,Xi'an 710054,China)
出处
《计算机应用文摘》
2022年第2期85-88,共4页
Chinese Journal of Computer Application
关键词
网络数据中心
信息系统
安全区域
规划方法
安全需求
network data center
information system
safe area
planning methods
security requirements
