基于改进PDRR模型的电力企业网络安全模型研究

发布时间：2018-08-05 13:49

【摘要】：随着现代化社会科技水平的高速发展,电力企业向着更加开放、标准化和网络互联的方向发展。因此,电力系统的安全运行变得更加依赖于网络信息系统安全。虽然电力企业较早地实现了生产经营信息化,但其网络信息安全架构还不完善,现有的网络信息安全模型不能完全适用于电力企业,这就致使电力企业无法对企业网络信息安全进行全面防护。因此,亟需一种面向电力企业针对性较强的网络安全模型来提升其网络信息系统的安全强度。本论文在分析电力企业网络信息系统安全形势的基础上,结合电力企业信息系统的安全现状和存在的主要威胁,构建了一种基于改进PDRR模型(Protection Detection Response Recovery,PDRR)的电力企业网络安全模型。PDRR模型是由防护、检测、响应和恢复四个模块构成的动态闭环管理的经典网络安全模型。改进后的模型在其基础上,将安全监测、响应、恢复、策略、加固等技术手段与人、管理、法律法规、教育培训等诸多影响电力企业网络安全因素有效结合在一起,以国网赤峰供电公司的网络信息安全架构为例,采用二级模糊综合评判法对现有架构作了安全等级评估并找到了目前存在的缺陷。在此基础上,设计并实现了规避风险的安全加固方案,验证了改进后的电力企业网络安全模型的实用性和有效性。本论文研究证明了改进后的电力企业网络安全模型能够使国网赤峰供电公司网络信息系统更加坚固,也为其他中小型电力企业网络信息系统建设提供参考依据,促使电力企业网络信息系统建设不再仅仅依靠技术和安全产品的堆砌,而是向着技术手段和管理手段相结合的方向发展,有效提高电力企业网络信息安全等级。
[Abstract]:With the rapid development of science and technology in modern society, electric power enterprises are becoming more open, standardized and interconnected. Therefore, the safe operation of power system becomes more dependent on the security of network information system. Although electric power enterprise realized production and management information earlier, its network information security framework is not perfect, the existing network information security model can not be fully applied to electric power enterprise. This causes the electric power enterprise to be unable to carry on the comprehensive protection to the enterprise network information security. Therefore, a network security model oriented to electric power enterprises is urgently needed to enhance the security intensity of its network information system. On the basis of analyzing the security situation of electric power enterprise network information system, this paper combines the security status and main threat of electric power enterprise information system. A power enterprise network security model. PDRR model is a classic network security model, which consists of four modules: protection, detection, response and recovery. On the basis of the improved model, the security monitoring, response, recovery, strategy, reinforcement and other technical means are effectively combined with a number of factors affecting the network security of power enterprises, such as people, management, laws and regulations, education and training, etc. Taking the network information security structure of Chifeng Power supply Company of National Power Network as an example, the security grade of the existing structure is evaluated by using the two-level fuzzy comprehensive evaluation method and the existing defects are found. On this basis, a security reinforcement scheme to avoid risks is designed and implemented, which verifies the practicability and validity of the improved network security model for electric power enterprises. This paper proves that the improved network security model of electric power enterprise can strengthen the network information system of Chifeng Power supply Company, and also provide reference for the construction of network information system of other small and medium-sized power enterprises. The construction of network information system of electric power enterprise is not only relying on technology and safety products, but also developing towards the direction of combination of technical means and management means, so as to effectively improve the security level of network information in electric power enterprises.
【学位授予单位】：华北电力大学
【学位级别】：硕士
【学位授予年份】：2015
【分类号】：TP393.08

【相似文献】