宁夏师范学院校园网络安全体系应用研究
发布时间:2018-11-16 14:32
【摘要】:网络技术应用发展至今,网络安全作为一个突出的问题,是所有网络建设者和管理者必须面对和要解决的问题。高校校园网络作为一个大型的教学、科研和办公平台,面对校园不同的用户群体,开放着多种服务来满足用户需求。这就决定了其应用技术的复杂性、综合性以及脆弱性,所以确保校园网络安全运行是本文研究的重点。 本文立足于宁夏师范学院校园网络的现状,首先分析了校园网络安全问题的根源和当前校园网络面临的各种安全问题,对目前主流的网络安全技术进行了研究。通过基于专家评分和基于SSE-CMM模型两种评估方法对校园网络安全进行风险评估,根据得到的校园网络安全评估结果,结合宁夏师范学院校园网络的应用特点,将宁夏师范学院校园网络按照拓扑结构划分为网络边缘安全区、核心汇聚安全区、接入层安全区、服务器群安全区和主机安全区五个区域,针对每个功能区域进行需求分析。最后总结出了校园网络在网络安全方面的需求,深入全面的剖析了当前宁夏师范学院校园网络的安全状况。以动态安全模型“P2DR"为理论指导,分别从策略、保护、检测和响应四个方面设计了宁夏师范学院校园网络安全体系的整体方案,通过校园网络出口安全设计、网络核心层安全策略部署、服务器群安全部署和接入层安全设计四个方面进行了具体实施,确保校园网络安全。最后设计并实现了校园网络安全风险评测系统,并对安全评测系统进行了测
[Abstract]:With the development of network technology application, network security, as a prominent problem, must be faced and solved by all network builders and administrators. As a large-scale teaching, scientific research and office platform, the campus network in colleges and universities is open to different user groups to meet the needs of users. This determines the complexity, comprehensiveness and fragility of its application technology, so it is the focus of this paper to ensure the safe operation of campus network. Based on the present situation of the campus network of Ningxia normal University, this paper firstly analyzes the root of the campus network security problem and the various security problems that the campus network is facing at present, and studies the current mainstream network security technology. Based on expert score and SSE-CMM model, the risk assessment of campus network security is carried out. According to the result of campus network security evaluation, combined with the application characteristics of campus network of Ningxia normal University, The campus network of Ningxia normal University is divided into five areas according to the topological structure: the security zone of network edge, the security zone of core convergence layer, the safety zone of access layer, the security zone of server group and the safety zone of host computer. The requirements of each functional area are analyzed. Finally summarizes the campus network in the network security requirements, in-depth and comprehensive analysis of the current Ningxia normal University campus network security situation. Under the guidance of dynamic security model "P2DR", the overall scheme of campus network security system of Ningxia normal University is designed from four aspects: strategy, protection, detection and response. The network core layer security policy deployment, server cluster security deployment and access layer security design are implemented to ensure campus network security. Finally, the campus network security risk assessment system is designed and implemented, and the security evaluation system is tested.
【学位授予单位】:华北电力大学
【学位级别】:硕士
【学位授予年份】:2014
【分类号】:TP393.18;TP393.08
本文编号:2335779
[Abstract]:With the development of network technology application, network security, as a prominent problem, must be faced and solved by all network builders and administrators. As a large-scale teaching, scientific research and office platform, the campus network in colleges and universities is open to different user groups to meet the needs of users. This determines the complexity, comprehensiveness and fragility of its application technology, so it is the focus of this paper to ensure the safe operation of campus network. Based on the present situation of the campus network of Ningxia normal University, this paper firstly analyzes the root of the campus network security problem and the various security problems that the campus network is facing at present, and studies the current mainstream network security technology. Based on expert score and SSE-CMM model, the risk assessment of campus network security is carried out. According to the result of campus network security evaluation, combined with the application characteristics of campus network of Ningxia normal University, The campus network of Ningxia normal University is divided into five areas according to the topological structure: the security zone of network edge, the security zone of core convergence layer, the safety zone of access layer, the security zone of server group and the safety zone of host computer. The requirements of each functional area are analyzed. Finally summarizes the campus network in the network security requirements, in-depth and comprehensive analysis of the current Ningxia normal University campus network security situation. Under the guidance of dynamic security model "P2DR", the overall scheme of campus network security system of Ningxia normal University is designed from four aspects: strategy, protection, detection and response. The network core layer security policy deployment, server cluster security deployment and access layer security design are implemented to ensure campus network security. Finally, the campus network security risk assessment system is designed and implemented, and the security evaluation system is tested.
【学位授予单位】:华北电力大学
【学位级别】:硕士
【学位授予年份】:2014
【分类号】:TP393.18;TP393.08
【参考文献】
相关期刊论文 前5条
1 程微微;陆余良;夏阳;杨国正;;计算机网络脆弱性评估研究[J];安徽大学学报(自然科学版);2007年04期
2 容强;;网络入侵诱骗技术在高校网络安全中的研究与实现[J];计算机安全;2009年06期
3 邢栩嘉,林闯,蒋屹新;计算机系统脆弱性评估研究[J];计算机学报;2004年01期
4 谭良;;SSAM与CEM的研究与比较[J];信息安全与通信保密;2006年10期
5 邢西深;;校园网网络安全扫描系统的设计与实现[J];中国电化教育;2006年02期
,本文编号:2335779
本文链接:https://www.wllwen.com/guanlilunwen/ydhl/2335779.html