摘要
目的为解决医疗结构网络安全工作无法量化、被动防御体系、专业技术人员短缺的现状,探索构建医院进攻性网络安全防御体系。方法通过搭建态势感知平台,联合互联网暴露面管理、开放端口管理、渗透测试、网络区域隔离、终端威胁检测与响应、安全培训等技术措施,构建医院进攻性网络安全防御体系。结果通过构建医院进攻性网络安全防御体系,医院网络安全事件主动发现数量和自动拦截数量均显著高于实施前(P<0.05),且平台具备良好的处理性能和稳定性。结论医院进攻性网络安全防御体系可改善目前医疗行业网络安全被动防御的现状,显著增强医院的网络安全防护能力。
Objective To address the security situation of unquantifiable cybersecurity efforts,passive defense system and professional and technical personnel shortage,to explore the construction of hospital offensive network security defense system.Methods By setting up a situational awareness platform,combining and implementing technical measures such as internet exposure control,port management,penetration testing,network zoning,endpoint threat detection and response,and security training,the hospital offensive network security defense system was constructed.Results After implementing the hospital offensive network security defense system,there was a significantly higher number of proactive detection and automatic interception of network security incidents compared to before(P<0.05),and the platform exhibited superior handing capabilities and stability.Conclusion The hospital offensive network security defense system can enhance the current passive network defense status in the healthcare sector,significantly bolster the overall network protection capabilities of hospital.
作者
孙保峰
葛晓伟
杨扬
李郁鸿
SUN Baofeng;GE Xiaowei;YANG Yang;LI Yuhong(Department of Information,The First Affiliated Hospital of Zhengzhou University,Zhengzhou Henan 450002,China)
出处
《中国医疗设备》
2024年第11期69-74,共6页
China Medical Devices
基金
河南省医学科技攻关计划软科学重点项目(RKX202201007)。
关键词
网络安全
渗透测试
杀伤链模型
防御体系
被动防御
网络攻击
安全防护
network security
penetration testing
cyber kill chain model
defense system
passive defense
network attack
security defense