安全态势感知联动防护在地震网络安全保障的应用

(云南省地震局,昆明 650224)

信息安全;安全态势感知

Application of Security Situation Awareness Linkage Protection in Seismic Network Security Assurance
SU Yi,AN Xiaowei,LI Zhen,LV Shuai,LIU Pengfei

(Yunnan Earthquake Agency,Kunming 650224,China)

Information security;Security situational awareness

DOI: 10.13512/j.hndz.2020.04.09

备注

近年来,云南省地震局地震信息系统经过多次的攻防演练和信息安全监测,结果表明云南省地震系统正面临严峻的网络安全挑战。在传统的网络安全管理模式下虽投入大量人力和物力,但效果并不理想,很难满足当前的网络安全形式需求。因此,对全网网络安全的动态监测、联动防护、追踪溯源、分析取证是未来网络安全建设思路。通过对安全态势感知和联动防护在云南省地震系统中的应用进行探索和分析,并在实践中进行了验证,最后总结了网络安全防护体系建设经验。

In recent years,the seismic information system of the Yunnan Earthquake Agency has undergone many offensive and defensive drills and information security monitoring,and the results show that the seismic system of Yunnan Earthquake Agency is facing severe network security challenges. Although a lot of manpower and material resources have been invested in the traditional network security management mode, the effect is not satisfactory, and it is difficult to meet the demand of the current network security requirements. Therefore, dynamic monitoring,linkage protection,traceability,analysis and evidence collection of the entire network security are the ideas for future network security construction. This paper explores and analyzes the application of security situation awareness and linkage protection in the earthquake system of Yunnan Province,verifies it in practice,and finally summarizes the experience in building network security protection system.