摘要
Abstract
In order to avoid the isolated island of network security monitoring and improve the ability of monitoring,early warning and emergency response,a multi-source integrated government network security monitoring platform is designed and implemented.From the three levels of collection,processing and application,as well as the five functions of data processing,threat analysis,situation display,threat disposal and related management,the overall architecture was carried out.The"1+N"(one system,N probes)deployment mode was adopted.Through the collection of multi-source data,big data processing and multi-level correlation analysis,the"consultation"monitoring opinions were formed.Some application examples were given to verify the rationality of the platform.Since the trial operation of the platform,the overall compliance with the construction specifications,accurate monitoring,intensive effect are obvious,and the ability of safety control is improved.关键词
网络安全/电子政务/多源一体化/安全监测/大数据/政务网络Key words
Network security/E-government/Multi-source integration/Security monitoring/Big data/Government network分类
信息技术与安全科学
