| 基于Cyber Kill Chain的铁路信息网络安全防御研究 |
| |
| 引用本文: | 杨钰杰,霍云龙.基于Cyber Kill Chain的铁路信息网络安全防御研究[J].铁路计算机应用,2021,30(11):64-67. |
| |
| 作者姓名: | 杨钰杰 霍云龙 |
| |
| 作者单位: | 中国铁路济南局集团有限公司 信息技术所,济南 250001 |
| |
| 摘 要: | 为有效应对铁路企业面临的日益严峻的信息网络安全威胁,引入Cyber Kill Chain模型来识别和预防网络入侵活动,分析了该模型7个阶段相应的攻击行为特点,针对各阶段的预期目的,提出符合铁路行业特点的信息网络安全防御措施,以求在网络攻击较早阶段瓦解网络威胁,构建全方位、深层次的网络安全防御体系,保护铁路基础设施、应用系统、数据资源等免遭网络攻击破坏。
|
| 关 键 词: | 网络安全 Cyber Kill Chain 安全防御 威胁分析 安全检测 |
| 收稿时间: | 2021-08-31 |
Railway information network security defense based on Cyber Kill Chain |
| |
| Institution: | Information Technology Institute, China Railway Jinan Group Co. Ltd., Jinan 250001, China |
| |
| Abstract: | In order to effectively deal with the increasingly severe information network security threats faced by railway enterprises, this paper introduced the Cyber Kill Chain Model to identify and prevent network intrusion activities, analyzed the characteristics of corresponding attack behavior around the seven stages defined by the model. According to the expected purpose of each stage, the paper put forward the information network security defense measures with the characteristics of the railway industry to disintegrate the network threat in the early stage of network attack, build an all-round and deep-seated network security defense system, protect railway infrastructure, application system and data resources from network attacks. |
| |
| Keywords: | |
|
| 点击此处可从《铁路计算机应用》浏览原始摘要信息 |
| 点击此处可从《铁路计算机应用》下载免费的PDF全文 |
|
