信息安全研究 ›› 2019, Vol. 5 ›› Issue (9): 828-833.

• 学术论文 • 上一篇    下一篇

等保2.0下的网络安全态势感知方案研究

王斯梁1,冯暄2,蔡友保2,陈翼2   

  1. 1. 卫士通信息产业股份有限公司
    2. 四川省计算机研究院
  • 收稿日期:2019-09-06 出版日期:2019-09-15 发布日期:2019-09-06
  • 通讯作者: 王斯梁
  • 作者简介:王斯梁 博士,高级工程师,研究方向为网络安全和密码应用. westone_wang@163.com 冯暄 硕士,高级工程师,研究方向为信息系统设计和云计算安全. xuan.feng@scsics.com 蔡友保 工程师,研究方向信息系统设计和云计算安全. caiyoubao@scsics.com 陈翼 高级工程师,研究方向为企业信息化管理和云计算. yi.chen@scsics.com

Research of Cyber Situation Awareness System in the Implementation of Classified Protection 2.0

  • Received:2019-09-06 Online:2019-09-15 Published:2019-09-06

摘要: 摘要为保障《中华人民共和国网络安全法》(以下简称《网络安全法》)顺利实施,网络安全等级保护(等保2.0)应运而生.在法律层面,等保2.0将对应《网络安全法》中的网络安全等级保护制度,是《网络安全法》落地的具体举措;在技术层面,由等保1.0的被动防御发展到等保2.0主动免疫防护技术;在实施和实践层面,由传统的单点信息系统安全防护扩展为网络空间主动防御体系建设.详细分析了等保2.0演进发展的新特点和新要求,并结合态势感知技术和产品发展趋势,提出了态势感知产品在等保2.0下的挑战和解决思路,最后给出一种可行的解决方案

关键词: 等级保护2.0, 网络安全法, 态势感知, 主动防御, 解决方案

Abstract: Cyber security classified protection regulations (classified protection 2.0) are proposed in order to ensure the implementation of cyber security law. Overall, at the legal level, the guaranty 2.0 will correspond to the cyber security level protection system in the “Cyber Security Law”, which is a concrete measure for implementing the cyber security law. Secondly, at the technical level, cyber security technology is developed from passive defense (classified protection 1.0) to active immune defense (classified protection 2.0). Finally, at the implementation level, there has been a shift from traditional information system protection to the construction of active defense system of cyber space. The new characteristics are analyzed in detail in this paper. Combining with the development of situation awareness system products, the challenge and feasible solution are also studied in face of classified protection 2.0, finally a feasible solution is also presented.

Key words: classified protection 2.0, cyber security law, situation awareness, active defense, feasible solution