【摘要】：近年來,隨著我國信息技術(shù)的高速發(fā)展,帶動了信息化進程的全面加快,計算機與信息技術(shù)在各行各業(yè)被普遍應(yīng)用,重要行業(yè)、要害部門對信息系統(tǒng)的依賴也越來越強。但是我國信息安全形勢卻非常嚴峻,互聯(lián)網(wǎng)上影響國家安全和社會穩(wěn)定的問題日益突出。在此背景下,信息安全等級保護的推進水到渠成。目前國家已經(jīng)頒布了相關(guān)的政策標準,用來規(guī)范、指導(dǎo)、監(jiān)督等級保護工作。信息安全等級保護是國家信息安全保障工作的基本制度、基本策略和基本方法[1]。主機安全測評是信息安全等級保護的重要組成部分。本文在深刻分析主機安全的基礎(chǔ)上,設(shè)計出主機安全測評的工作程序,提出主機安全測評的具體操作方法。對常見的操作系統(tǒng)和數(shù)據(jù)庫分別從身份鑒別、訪問控制、安全審計、剩余信息保護、入侵防范、惡意代碼防范、資源控制等不同控制點檢查相關(guān)策略,依照該檢查結(jié)果與信息安全等級保護的具體要求做比較,驗證測評方法的準確性和實用性。本文首先介紹了信息安全等級保護的相關(guān)知識和基本含義;之后對涉及到的相關(guān)標準進行了解讀,分析了標準的模型和特點;接下來詳細分析了主機安全測評的控制點和分級保護的要求;設(shè)計出主機安全測評的工作程序和測評方法并結(jié)合測評實例進行驗證;最后總結(jié)了全文,并對未來工作進行展望。
[Abstract]:In recent years, with the rapid development of information technology in our country, the process of information technology has been speeding up. Computers and information technology are widely used in various industries. The important industries and key departments rely more and more on information systems. However, the situation of information security in China is very severe, and the problems affecting national security and social stability on the Internet are increasingly prominent. In this context, the promotion of information security level protection is coming naturally. At present, the state has promulgated relevant policy standards to standardize, guide, and supervise the level of protection work. The information security grade protection is the basic system, the basic strategy and the basic method of the national information security guarantee work [1]. Host security evaluation is an important part of information security level protection. Based on the deep analysis of host security, this paper designs the working procedure of host security evaluation and puts forward the concrete operation method of host security evaluation. The common operating systems and databases are checked from different control points, such as identity authentication, access control, security audit, residual information protection, intrusion prevention, malicious code prevention, resource control, etc. The accuracy and practicability of the evaluation method are verified by comparing the results with the specific requirements of information security grade protection. This paper first introduces the relevant knowledge and basic meaning of information security level protection, and then interprets the related standards, analyzes the model and characteristics of the standards. Then the control points of host security evaluation and the requirements of hierarchical protection are analyzed in detail; the working procedures and evaluation methods of host security evaluation are designed and verified with an evaluation example; finally, the full text is summarized and the future work is prospected.
【學位授予單位】：北京郵電大學
【學位級別】：碩士
【學位授予年份】：2016
【分類號】：TP309

【參考文獻】

相關(guān)期刊論文 前4條

1 靖小偉;于普漪;馮梅;楊治賢;;信息安全等級保護工作的研究[J];數(shù)字石油和化工;2009年Z2期

2 ;信息安全等級保護管理辦法[J];電力信息化;2007年09期

3 ;《關(guān)于信息安全等級保護工作的實施意見》摘要[J];信息網(wǎng)絡(luò)安全;2005年02期

4 王貴駟,江常青;信息安全要未雨綢繆[J];中國石油企業(yè);2004年05期

相關(guān)碩士學位論文 前4條

1 張宏飛;S企業(yè)信息安全管理的策略和實施[D];北京交通大學;2015年

2 卿江萍;基于主機安全層的安全評估系統(tǒng)的設(shè)計與研究[D];貴州師范大學;2014年

3 張迎;基于安全終端的網(wǎng)絡(luò)信息等級保護機制的研究與實現(xiàn)[D];南京理工大學;2009年

4 馬軍;等級保護制度在大型企業(yè)網(wǎng)絡(luò)安全建設(shè)中的研究和應(yīng)用[D];重慶大學;2008年

，

本文編號：2370043