摘要
大型体育赛事规模大、涉及面广、影响力强、信息化程度高,已成为网络攻击的重要目标.对体育赛事的网络攻击呈现攻击目标精准化、攻击团队产业化、攻击规模巨量化等特点.根据大型体育赛事信息化业务特性,将信息系统、场馆、用户群体和供应链作为攻击面,分析网络攻击的动机、目标、类型、能力等特征,将体育赛事和网络攻击动机、目标、方式结合构建出威胁场景,针对性提出赛前、赛时和赛后保障策略,有效防范和阻止网络攻击,对赛事各相关方具有重要意义.
Large-scale sports events have become important targets for cyber attacks due to their large scale,wide coverage,strong influence,and high level of informatization.Cyber attacks on sports events exhibit characteristics such as precise attack targets,industrialization of attack teams,and massive attack scale.Based on the characteristics of large-scale sports event informatization business,this article takes information systems,venues,user groups,and supply chains as attack surfaces,analyzes the motivations,targets,types,capabilities,and other characteristics of cyber attacks,and combines sports events and cyber attack motivations,targets,and methods to construct threat scenarios.Targeted pre-match,during-game,and post-game support strategies are proposed to effectively prevent and prevent cyber attacks.Which is of great significance to all parties involved in the event.
作者
王杰
朱魏魏
刘明
王鹏翩
林星辰
Wang Jie;Zhu Weiwei;Liu Ming;Wang Pengpian;Lin Xingchen(National Computer Network Emergency Response Technical TeamCoordination Center of China,Beijing 100080;Sichuan Branch of National Computer Network Emergency Response Technical TeamCoordination Center of China,Chengdu 610031)
出处
《信息安全研究》
CSCD
北大核心
2024年第6期561-567,共7页
Journal of Information Security Research
基金
山东省自然科学基金项目(ZR2022ZD01)。
关键词
大型体育赛事
脆弱性分析
威胁场景分析
安全保障
安全防护体系
large-scale sports
vulnerability analysis
threats scenario analysis
cyber security assurance
cyber security protection system