Journal of Information Security Reserach ›› 2023, Vol. 9 ›› Issue (4): 390-.

Previous Articles     Next Articles

Research on Intranet Security Integrated Protection Architecture in  Energy Enterprises Under Complex Network Threat Environment


  • Online:2023-04-01 Published:2023-03-31


董之光, 帅训波, 冯梅   

  1. (中国石油勘探开发研究院信息技术中心北京100083)
  • 通讯作者: 董之光 硕士,工程师.主要研究方向为网络安全攻防渗透、等级保护、风险评估.
  • 作者简介:董之光 硕士,工程师.主要研究方向为网络安全攻防渗透、等级保护、风险评估. 帅训波 硕士,高级工程师.主要研究方向为网络安全、网络规划、信息技术标准. 冯梅 博士,教授级高级工程师,中国石油勘探开发研究院信息技术中心主任.主要研究方向为信息管理、网络安全、信息基础设施.

Abstract: Under the background of complex network threats,the construction and improvement of enterprise Intranet security protection capability is imminent. At present, many enterprises still have problems of eradicating the botnet in the Intranet, insufficient ability to resist advanced persistent threat attacks and difficult to defend against network horizontal attacks. This paper analyzes the current complex network threats faced by energy enterprises, and then puts forward models for comprehensive security protection of the Intranet of energy enterprises, such as improving the ability of asset mapping and discovery, establishing an Intranet unified access authorization system, dividing Intranet finegrained Intranet Security Policy, building attack identification models, and system guarantee and expert talent training.

Key words: complex cybersecurity threats, intranet security, unified access authorization, finegrained intranet security policy, attack identification models

摘要: 在网络安全威胁愈加复杂多元的背景下,能源企业内网的安全防护能力建设和提升已迫在眉睫.针对企业内网存在的对高威胁可持续性攻击抵御能力不足、横向渗透攻击难以防御以及内网僵尸网络难以根除等问题,对能源企业内网所面临的复杂威胁进行分析,提出了能源企业内网综合安全防护能力建设的体系设计,主要包括提高资产测绘发现能力;建立内网统一准入授权系统;完善内网细粒度安全控制策略;构建攻击识别模型和制度保障人才培养等关键措施.

关键词: 复杂网络安全威胁, 内网安全, 统一准入授权, 安全控制策略, 攻击识别模型

CLC Number: