多源一体化政务网络安全监测平台设计与应用OA北大核心CSTPCD
DESIGN AND APPLICATION OF MULTI-SOURCE INTEGRATED GOVERNMENT NETWORK SECURITY MONITORING PLATFORM
为打破网络安全监测孤岛,提高监测预警应急处置能力,设计并实现多源一体化政务网络安全监测平台.从采集、加工、应用三个层次,以及数据加工、威胁分析、态势展示、威胁处置、相关管理五项功能进行整体架构,采用"1+N"(1个系统、N个探针)方式部署,通过采集多源数据、大数据处理、多层次关联分析,形成"会诊"监测意见.给出部分应用实例,验证了平台的合理性.该平台试运行以来,整体符合建设规范、监测准确、集约化效果明显,提升了安全可控能力.
In order to avoid the isolated island of network security monitoring and improve the ability of monitoring,early warning and emergency response,a multi-source integrated government network security monitoring platform is designed and implemented.From the three levels of collection,processing and application,as well as the five functions of data processing,threat analysis,situation display,threat disposal and related management,the overall architecture was carried out.The"1+N"(one system,N probes)deployment mode was adopted.Through the collection of multi-source data,big data processing and multi-level correlation analysis,the"consultation"monitoring opinions were formed.Some application examples were given to verify the rationality of the platform.Since the trial operation of the platform,the overall compliance with the construction specifications,accurate monitoring,intensive effect are obvious,and the ability of safety control is improved.
白荣华
新疆维吾尔自治区信息中心 新疆乌鲁木齐 830001
计算机与自动化
网络安全电子政务多源一体化安全监测大数据政务网络
Network securityE-governmentMulti-source integrationSecurity monitoringBig dataGovernment network
《计算机应用与软件》 2024 (007)
20-24,73 / 6
评论