多源一体化政务网络安全监测平台设计与应用
DESIGN AND APPLICATION OF MULTI-SOURCE INTEGRATED GOVERNMENT NETWORK SECURITY MONITORING PLATFORM
白荣华1
作者信息
- 1. 新疆维吾尔自治区信息中心 新疆乌鲁木齐 830001
- 折叠
摘要
为打破网络安全监测孤岛,提高监测预警应急处置能力,设计并实现多源一体化政务网络安全监测平台.从采集、加工、应用三个层次,以及数据加工、威胁分析、态势展示、威胁处置、相关管理五项功能进行整体架构,采用"1+N"(1个系统、N个探针)方式部署,通过采集多源数据、大数据处理、多层次关联分析,形成"会诊"监测意见.给出部分应用实例,验证了平台的合理性.该平台试运行以来,整体符合建设规范、监测准确、集约化效果明显,提升了安全可控能力.
Abstract
In order to avoid the isolated island of network security monitoring and improve the ability of monitoring,early warning and emergency response,a multi-source integrated government network security monitoring platform is designed and implemented.From the three levels of collection,processing and application,as well as the five functions of data processing,threat analysis,situation display,threat disposal and related management,the overall architecture was carried out.The"1+N"(one system,N probes)deployment mode was adopted.Through the collection of multi-source data,big data processing and multi-level correlation analysis,the"consultation"monitoring opinions were formed.Some application examples were given to verify the rationality of the platform.Since the trial operation of the platform,the overall compliance with the construction specifications,accurate monitoring,intensive effect are obvious,and the ability of safety control is improved.
关键词
网络安全/电子政务/多源一体化/安全监测/大数据/政务网络Key words
Network security/E-government/Multi-source integration/Security monitoring/Big data/Government network引用本文复制引用
出版年
2024
国家科技期刊平台
NSTL
万方数据