發(fā)布時間：2018-02-12 18:56

  本文關(guān)鍵詞： 內(nèi)網(wǎng)安全 終端安全 補丁管理 資產(chǎn)收集 資產(chǎn)統(tǒng)計　出處：《中國科學院大學（工程管理與信息技術(shù)學院）》2014年碩士論文　論文類型：學位論文

【摘要】：隨著企事業(yè)單位的信息化程度不斷加深,內(nèi)網(wǎng)終端安全問題也隨之而來。大量的內(nèi)網(wǎng)病毒、黑客攻擊、蠕蟲和木馬泛濫,嚴重地威脅到各企事業(yè)單位內(nèi)部網(wǎng)絡(luò)的安全,他們大多利用操作系統(tǒng)的漏洞進行攻擊、感染和傳播。盡管內(nèi)部網(wǎng)絡(luò)系統(tǒng)通常采用多種安全防護手段來進行主動防御,但是潛在的漏洞和系統(tǒng)的脆弱性使得各單位仍然時刻面臨內(nèi)網(wǎng)安全威脅。另一方面內(nèi)部計算機軟硬件無法收集和統(tǒng)計以及移動存儲介質(zhì)濫用,也給各個企事業(yè)單位帶來巨大損失。按照以前的網(wǎng)絡(luò)安全體系對企事業(yè)單位的網(wǎng)絡(luò)進行保護已經(jīng)滿足不了目前的需求,網(wǎng)絡(luò)邊界和網(wǎng)絡(luò)設(shè)備的防護方式無法解決終端安全問題,并且企事業(yè)單位的計算機數(shù)量激增,單靠傳統(tǒng)方式進行防護將面臨巨大風險,所以要探索新的安全防護方式來滿足終端安全統(tǒng)一管理。這樣內(nèi)網(wǎng)終端安全體系建設(shè)問題就逐漸提上日程。 本文以內(nèi)網(wǎng)終端安全管理為背景,首先論述了研究背景及意義,討論了國內(nèi)外內(nèi)網(wǎng)終端安全現(xiàn)狀并總結(jié)了內(nèi)網(wǎng)終端安全所面臨的問題。然后討論了內(nèi)網(wǎng)安全管理系統(tǒng)的主要關(guān)鍵技術(shù),包括Windows平臺漏洞和補丁管理相關(guān)內(nèi)容,WindowsAPI,鉤子技術(shù)等。論文詳細論述了內(nèi)網(wǎng)終端安全管理系統(tǒng)的需求分析、設(shè)計原則、系統(tǒng)架構(gòu)、數(shù)據(jù)庫結(jié)構(gòu)以及主要模塊的功能設(shè)計,失泄密防護模塊實現(xiàn)了終端行為管控、打印行為監(jiān)控、外設(shè)接口管控,接入認證模塊實現(xiàn)了終端接入的身份認證和健康性檢查,資產(chǎn)管理模塊實現(xiàn)了終端資產(chǎn)的收集及統(tǒng)計等。同時,詳實的闡述了重點模塊的設(shè)計和實現(xiàn)。接著描述了系統(tǒng)部署環(huán)境及測試方案,通過系統(tǒng)測試驗證系統(tǒng)功能。最后論文總結(jié)了本內(nèi)網(wǎng)安全管理系統(tǒng),并對接下來的開發(fā)工作提出建議。 經(jīng)過測試,該系統(tǒng)在實際環(huán)境中運行良好,滿足了企事業(yè)單位的內(nèi)網(wǎng)終端安全管理的基本需求,同時減輕了內(nèi)網(wǎng)管理人員的運維負擔,幫助企事業(yè)單位規(guī)范了內(nèi)網(wǎng)終端的使用,提高了工作效率。
[Abstract]:With the deepening of the informationization of enterprises and institutions, the security problems of intranet terminals also follow. A large number of intranet viruses, hacker attacks, worms and Trojans overflow, which seriously threaten the security of the internal networks of enterprises and institutions. Most of them exploit operating system vulnerabilities to attack, infect, and spread. Although internal network systems often use multiple security precautions to actively defend themselves, But the potential vulnerabilities and system vulnerabilities still leave units facing constant security threats to intranets. On the other hand, internal computer hardware and software cannot be collected and counted and removable storage media are misused. It has also brought huge losses to various enterprises and institutions. According to the previous network security system, the network protection of enterprises and institutions has been unable to meet the current needs. The network boundary and the protection methods of network equipment cannot solve the terminal security problems. Moreover, the number of computers in enterprises and institutions has increased dramatically, so relying solely on traditional methods of protection will face enormous risks. Therefore, it is necessary to explore new ways of security protection to meet the unified management of terminal security. Based on the security management of intranet terminals, this paper firstly discusses the research background and significance. This paper discusses the security status of intranet terminals at home and abroad and summarizes the problems faced by intranet terminals, and then discusses the main key technologies of the intranet security management system. Including Windows platform vulnerability and patch management related contents such as Windows API, hook technology, etc. This paper discusses the requirement analysis, design principle, system architecture, database structure and function design of the main module of the security management system of the intranet terminal in detail. The leak protection module realizes terminal behavior control, print behavior monitoring, peripheral interface control, and access authentication module to realize identity authentication and health check of terminal access. The asset management module realizes the collection and statistics of the terminal assets. At the same time, the design and implementation of the key modules are described in detail. Then, the system deployment environment and the test scheme are described. Finally, the paper summarizes the security management system of the intranet, and puts forward some suggestions for the next development work. After testing, the system runs well in the actual environment, meets the basic needs of the internal network terminal security management of enterprises and institutions, at the same time reduces the operating and maintenance burden of the inner network management personnel. Help enterprises and institutions standardize the use of intranet terminals, improve work efficiency.
【學位授予單位】：中國科學院大學（工程管理與信息技術(shù)學院）
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TP393.08

【參考文獻】

相關(guān)期刊論文 前10條

1 張懷京;祝建航;王新亭;;企業(yè)內(nèi)網(wǎng)安全建設(shè)淺談[J];信息安全與技術(shù);2012年02期

2 司鳳山;王晶;;一種運用入侵檢測的分布式防火墻系統(tǒng)研究[J];赤峰學院學報(自然科學版);2011年01期

3 嚴曉峰;;中小型企業(yè)網(wǎng)絡(luò)安全風險評估的研究[J];電腦知識與技術(shù);2010年15期

4 王義申;;終端安全管理系統(tǒng)在企事業(yè)單位內(nèi)網(wǎng)應用的分析[J];計算機安全;2007年07期

5 龐雄昌;王U，

本文編號：1506321