| 铁路网络安全威胁及漏洞管理平台研究 |
| |
| 引用本文: | 祝咏升,陈春雷.铁路网络安全威胁及漏洞管理平台研究[J].铁路计算机应用,2020,29(8):61-65. |
| |
| 作者姓名: | 祝咏升 陈春雷 |
| |
| 作者单位: | 1. 中国铁道科学研究院集团有限公司 电子计算技术研究所, 北京 100081; |
| |
| 基金项目: | 北京经纬信息技术有限公司科研项目(DZYF18-44) |
| |
| 摘 要: | 为提高铁路行业对网络安全威胁及漏洞的整体防范能力,提升铁路系统运维管理水平,实现网络安全威胁及漏洞全生命周期闭环式管理,研究提出铁路网络安全威胁及漏洞管理平台。通过研究漏洞修复优先级算法、安全威胁及漏洞动态更新技术,设计平台总体架构、网络架构、主要功能及应用场景。可为建立铁路网络安全威胁及漏洞管理体系、构建行业漏洞知识库和补丁库提供参考。
|
| 关 键 词: | 铁路网络安全 威胁及漏洞 闭环式管理 漏洞修复 |
| 收稿时间: | 2020-03-30 |
Railway network security threats and vulnerability management platform |
| |
| Institution: | 1. Institute of Computing Technologies, China Academy of Railway Sciences Corporation Limited, Beijing 100081, China;2. Institute of Infrastructure Inspection, China Academy of Railway Sciences Corporation Limited, Beijing 100081, China |
| |
| Abstract: | In order to improve the overall prevention ability of railway industry against network security threats and vulnerabilities, enhance the management level of railway system operation and maintenance, and implement the closed loop management to network security threats and vulnerabilities in the whole life cycle, this article proposed a railway network security threats and vulnerability management platform.Through the research of vulnerability repair priority algorithm, security threats and vulnerability dynamic update technology, the article designed overall architecture of the platform, network architecture, main functions and application scenarios.It can provide reference for the establishment of railway network security threat and vulnerability management system, and the construction of industry vulnerability knowledge base and patch database. |
| |
| Keywords: | |
|
| 点击此处可从《铁路计算机应用》浏览原始摘要信息 |
| 点击此处可从《铁路计算机应用》下载免费的PDF全文 |
|
