【摘要】：近年來(lái),隨著我國(guó)信息技術(shù)的高速發(fā)展,帶動(dòng)了信息化進(jìn)程的全面加快,計(jì)算機(jī)與信息技術(shù)在各行各業(yè)被普遍應(yīng)用,重要行業(yè)、要害部門(mén)對(duì)信息系統(tǒng)的依賴(lài)也越來(lái)越強(qiáng)。但是我國(guó)信息安全形勢(shì)卻非常嚴(yán)峻,互聯(lián)網(wǎng)上影響國(guó)家安全和社會(huì)穩(wěn)定的問(wèn)題日益突出。在此背景下,信息安全等級(jí)保護(hù)的推進(jìn)水到渠成。目前國(guó)家已經(jīng)頒布了相關(guān)的政策標(biāo)準(zhǔn),用來(lái)規(guī)范、指導(dǎo)、監(jiān)督等級(jí)保護(hù)工作。信息安全等級(jí)保護(hù)是國(guó)家信息安全保障工作的基本制度、基本策略和基本方法[1]。主機(jī)安全測(cè)評(píng)是信息安全等級(jí)保護(hù)的重要組成部分。本文在深刻分析主機(jī)安全的基礎(chǔ)上,設(shè)計(jì)出主機(jī)安全測(cè)評(píng)的工作程序,提出主機(jī)安全測(cè)評(píng)的具體操作方法。對(duì)常見(jiàn)的操作系統(tǒng)和數(shù)據(jù)庫(kù)分別從身份鑒別、訪問(wèn)控制、安全審計(jì)、剩余信息保護(hù)、入侵防范、惡意代碼防范、資源控制等不同控制點(diǎn)檢查相關(guān)策略,依照該檢查結(jié)果與信息安全等級(jí)保護(hù)的具體要求做比較,驗(yàn)證測(cè)評(píng)方法的準(zhǔn)確性和實(shí)用性。本文首先介紹了信息安全等級(jí)保護(hù)的相關(guān)知識(shí)和基本含義;之后對(duì)涉及到的相關(guān)標(biāo)準(zhǔn)進(jìn)行了解讀,分析了標(biāo)準(zhǔn)的模型和特點(diǎn);接下來(lái)詳細(xì)分析了主機(jī)安全測(cè)評(píng)的控制點(diǎn)和分級(jí)保護(hù)的要求;設(shè)計(jì)出主機(jī)安全測(cè)評(píng)的工作程序和測(cè)評(píng)方法并結(jié)合測(cè)評(píng)實(shí)例進(jìn)行驗(yàn)證;最后總結(jié)了全文,并對(duì)未來(lái)工作進(jìn)行展望。
[Abstract]:In recent years, with the rapid development of information technology in our country, the process of information technology has been speeding up. Computers and information technology are widely used in various industries. The important industries and key departments rely more and more on information systems. However, the situation of information security in China is very severe, and the problems affecting national security and social stability on the Internet are increasingly prominent. In this context, the promotion of information security level protection is coming naturally. At present, the state has promulgated relevant policy standards to standardize, guide, and supervise the level of protection work. The information security grade protection is the basic system, the basic strategy and the basic method of the national information security guarantee work [1]. Host security evaluation is an important part of information security level protection. Based on the deep analysis of host security, this paper designs the working procedure of host security evaluation and puts forward the concrete operation method of host security evaluation. The common operating systems and databases are checked from different control points, such as identity authentication, access control, security audit, residual information protection, intrusion prevention, malicious code prevention, resource control, etc. The accuracy and practicability of the evaluation method are verified by comparing the results with the specific requirements of information security grade protection. This paper first introduces the relevant knowledge and basic meaning of information security level protection, and then interprets the related standards, analyzes the model and characteristics of the standards. Then the control points of host security evaluation and the requirements of hierarchical protection are analyzed in detail; the working procedures and evaluation methods of host security evaluation are designed and verified with an evaluation example; finally, the full text is summarized and the future work is prospected.
【學(xué)位授予單位】：北京郵電大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2016
【分類(lèi)號(hào)】：TP309

【參考文獻(xiàn)】

相關(guān)期刊論文 前4條

1 靖小偉;于普漪;馮梅;楊治賢;;信息安全等級(jí)保護(hù)工作的研究[J];數(shù)字石油和化工;2009年Z2期

2 ;信息安全等級(jí)保護(hù)管理辦法[J];電力信息化;2007年09期

3 ;《關(guān)于信息安全等級(jí)保護(hù)工作的實(shí)施意見(jiàn)》摘要[J];信息網(wǎng)絡(luò)安全;2005年02期

4 王貴駟,江常青;信息安全要未雨綢繆[J];中國(guó)石油企業(yè);2004年05期

相關(guān)碩士學(xué)位論文 前4條

1 張宏飛;S企業(yè)信息安全管理的策略和實(shí)施[D];北京交通大學(xué);2015年

2 卿江萍;基于主機(jī)安全層的安全評(píng)估系統(tǒng)的設(shè)計(jì)與研究[D];貴州師范大學(xué);2014年

3 張迎;基于安全終端的網(wǎng)絡(luò)信息等級(jí)保護(hù)機(jī)制的研究與實(shí)現(xiàn)[D];南京理工大學(xué);2009年

4 馬軍;等級(jí)保護(hù)制度在大型企業(yè)網(wǎng)絡(luò)安全建設(shè)中的研究和應(yīng)用[D];重慶大學(xué);2008年

，

本文編號(hào)：2370043