With the unified export requirements for external services of provincial meteorological departments,the sys-tem and data are gradually intensified,and some provincial units have established data centers dedicated to providing external data services,and traditional network security technology is strained under the current new business forms and scenarios.As a new concept of network security,zero trust provides theoretical guidance for reconstructing network security architecture.This paper designs a zero-trust-based security architecture applicable to provincial meteorological departments,constructs a trusted access channel of meteorological network based on zero-trust to solve the security problem of data access pipeline,proposes a method of dynamic data authorization access to solve the problem of meteorological data security access credit,and proposes a terminal trusted space scheme to solve the data leakage problem on the terminal.
zero trust modeldynamic authorizationtrusted access channeltrusted terminal space
国家科技期刊平台
NSTL
万方数据
