多源一体化政务网络安全监测平台设计与应用OA北大核心CSTPCD

In order to avoid the isolated island of network security monitoring and improve the ability of monitoring,early warning and emergency response,a multi-source integrated government network security monitoring platform is designed and implemented.From the three levels of collection,processing and application,as well as the five functions of data processing,threat analysis,situation display,threat disposal and related management,the overall architecture was carried out.The"1+N"(one system,N probes)deployment mode was adopted.Through the collection of multi-source data,big data processing and multi-level correlation analysis,the"consultation"monitoring opinions were formed.Some application examples were given to verify the rationality of the platform.Since the trial operation of the platform,the overall compliance with the construction specifications,accurate monitoring,intensive effect are obvious,and the ability of safety control is improved.