| 内网安全联动防护技术的研究与实现 |
| |
| 引用本文: | 蔡昭权,吴莉娅,黄陶明.内网安全联动防护技术的研究与实现[J].微计算机应用,2006,27(2):168-170. |
| |
| 作者姓名: | 蔡昭权 吴莉娅 黄陶明 |
| |
| 作者单位: | 1. 惠州学院网络中心,广东,516001
2. 惠州市公路管理局职工培训学校,广东,516001 |
| |
| 摘 要: | 随着网络应用的迅速发展,更多的攻击来自于企业内部,使得传统的基于网关的安全架构在新一代的攻击手段面前显得非常脆弱。而传统的这些安全防护手段属于被动式,只能简单过滤或丢弃攻击数据,而无法在攻击源发起攻击之前或之后的较短时间内即时响应,将内部网络中可疑的攻击源主机断开,使其无法通过内网连接进行攻击。针对这种情况,提出了将入侵检测设备、主机安全应用程序与路由交换设备的全面联动的一种全新的主动式安全联动防护思路和方案,从而彻底在源头对攻击进行了抑制。这种联动机制,整合了原有的网络安全技术,实现了1加1远大于2的安全防护效果。
|
| 关 键 词: | 内网 联动 安全 |
| 收稿时间: | 2004-12-15 |
| 修稿时间: | 2004-12-15 |
Investigation and Implementation of Combined Security Technology for Intranet |
| |
| CAI Zhaoquan,WU Liya,HUANG Taoming.Investigation and Implementation of Combined Security Technology for Intranet[J].Microcomputer Applications,2006,27(2):168-170. |
| |
| Authors: | CAI Zhaoquan WU Liya HUANG Taoming |
| |
| Affiliation: | 1 Huizhou University Network Center, Huizhou,516001 ,China; 2Staffs Trainning School Of Huizhou Highway Administration Beraue, Huizhou, Guangdong, 516001 ,China |
| |
| Abstract: | Along with network application rapid development, more and more threat is from inside intraned, this new type of threat will by pass traditional security protection system(like firewall/VPN gateway) and will be launched from broadband intranet. The traditional security solution is passive and can only filter or block the attacking packet, it can not identify and block the source attacking host from the beginning or just a while from the beginning of the attack. The text analyse the security threat within the intranet, and suggest a new proactive security solution which based on combined operation between security application and switch router. |
| |
| Keywords: | 802 1x |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
