【摘要】：網(wǎng)絡(luò)技術(shù)應(yīng)用發(fā)展至今,網(wǎng)絡(luò)安全作為一個(gè)突出的問題,是所有網(wǎng)絡(luò)建設(shè)者和管理者必須面對(duì)和要解決的問題。高校校園網(wǎng)絡(luò)作為一個(gè)大型的教學(xué)、科研和辦公平臺(tái),面對(duì)校園不同的用戶群體,開放著多種服務(wù)來滿足用戶需求。這就決定了其應(yīng)用技術(shù)的復(fù)雜性、綜合性以及脆弱性,所以確保校園網(wǎng)絡(luò)安全運(yùn)行是本文研究的重點(diǎn)。 本文立足于寧夏師范學(xué)院校園網(wǎng)絡(luò)的現(xiàn)狀,首先分析了校園網(wǎng)絡(luò)安全問題的根源和當(dāng)前校園網(wǎng)絡(luò)面臨的各種安全問題,對(duì)目前主流的網(wǎng)絡(luò)安全技術(shù)進(jìn)行了研究。通過基于專家評(píng)分和基于SSE-CMM模型兩種評(píng)估方法對(duì)校園網(wǎng)絡(luò)安全進(jìn)行風(fēng)險(xiǎn)評(píng)估,根據(jù)得到的校園網(wǎng)絡(luò)安全評(píng)估結(jié)果,結(jié)合寧夏師范學(xué)院校園網(wǎng)絡(luò)的應(yīng)用特點(diǎn),將寧夏師范學(xué)院校園網(wǎng)絡(luò)按照拓?fù)浣Y(jié)構(gòu)劃分為網(wǎng)絡(luò)邊緣安全區(qū)、核心匯聚安全區(qū)、接入層安全區(qū)、服務(wù)器群安全區(qū)和主機(jī)安全區(qū)五個(gè)區(qū)域,針對(duì)每個(gè)功能區(qū)域進(jìn)行需求分析。最后總結(jié)出了校園網(wǎng)絡(luò)在網(wǎng)絡(luò)安全方面的需求,深入全面的剖析了當(dāng)前寧夏師范學(xué)院校園網(wǎng)絡(luò)的安全狀況。以動(dòng)態(tài)安全模型“P2DR"為理論指導(dǎo),分別從策略、保護(hù)、檢測和響應(yīng)四個(gè)方面設(shè)計(jì)了寧夏師范學(xué)院校園網(wǎng)絡(luò)安全體系的整體方案,通過校園網(wǎng)絡(luò)出口安全設(shè)計(jì)、網(wǎng)絡(luò)核心層安全策略部署、服務(wù)器群安全部署和接入層安全設(shè)計(jì)四個(gè)方面進(jìn)行了具體實(shí)施,確保校園網(wǎng)絡(luò)安全。最后設(shè)計(jì)并實(shí)現(xiàn)了校園網(wǎng)絡(luò)安全風(fēng)險(xiǎn)評(píng)測系統(tǒng),并對(duì)安全評(píng)測系統(tǒng)進(jìn)行了測
[Abstract]:With the development of network technology application, network security, as a prominent problem, must be faced and solved by all network builders and administrators. As a large-scale teaching, scientific research and office platform, the campus network in colleges and universities is open to different user groups to meet the needs of users. This determines the complexity, comprehensiveness and fragility of its application technology, so it is the focus of this paper to ensure the safe operation of campus network. Based on the present situation of the campus network of Ningxia normal University, this paper firstly analyzes the root of the campus network security problem and the various security problems that the campus network is facing at present, and studies the current mainstream network security technology. Based on expert score and SSE-CMM model, the risk assessment of campus network security is carried out. According to the result of campus network security evaluation, combined with the application characteristics of campus network of Ningxia normal University, The campus network of Ningxia normal University is divided into five areas according to the topological structure: the security zone of network edge, the security zone of core convergence layer, the safety zone of access layer, the security zone of server group and the safety zone of host computer. The requirements of each functional area are analyzed. Finally summarizes the campus network in the network security requirements, in-depth and comprehensive analysis of the current Ningxia normal University campus network security situation. Under the guidance of dynamic security model "P2DR", the overall scheme of campus network security system of Ningxia normal University is designed from four aspects: strategy, protection, detection and response. The network core layer security policy deployment, server cluster security deployment and access layer security design are implemented to ensure campus network security. Finally, the campus network security risk assessment system is designed and implemented, and the security evaluation system is tested.
【學(xué)位授予單位】：華北電力大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類號(hào)】：TP393.18;TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前5條

1 程微微;陸余良;夏陽;楊國正;;計(jì)算機(jī)網(wǎng)絡(luò)脆弱性評(píng)估研究[J];安徽大學(xué)學(xué)報(bào)(自然科學(xué)版);2007年04期

2 容強(qiáng);;網(wǎng)絡(luò)入侵誘騙技術(shù)在高校網(wǎng)絡(luò)安全中的研究與實(shí)現(xiàn)[J];計(jì)算機(jī)安全;2009年06期

3 邢栩嘉,林闖,蔣屹新;計(jì)算機(jī)系統(tǒng)脆弱性評(píng)估研究[J];計(jì)算機(jī)學(xué)報(bào);2004年01期

4 譚良;;SSAM與CEM的研究與比較[J];信息安全與通信保密;2006年10期

5 邢西深;;校園網(wǎng)網(wǎng)絡(luò)安全掃描系統(tǒng)的設(shè)計(jì)與實(shí)現(xiàn)[J];中國電化教育;2006年02期

，

本文編號(hào)：2335779