论文部分内容阅读
随着计算机及其网络日益成为泄密的重要隐患,多数单位和部门都已经应用安全保密检查工具定期对涉密和非涉密计算机进行检查。但其工作模式决定了只是在“事后”进行检查,难以实现多数违规痕迹的完整获取,并且随着涉密系统中USB接口和光驱接口都已严格控制或有效屏蔽的情况下,目前信息安全保密检查工具使用U盘或光盘的方式也受到限制。基于此,本文提出一种新型网络化的安全保密管理系统,通过常态化管理将系统可能存在的安全漏洞和泄密风险有效降低,实现对终端正在发生的泄密和违规行为的实时监控和在线管理,从而有效提升安全保密管理的技术水平。
As computers and their networks become an increasingly important source of compromise, most organizations and departments have applied security checks to regularly check classified and non-classified computers. However, its working mode determines that it is difficult to realize the complete acquisition of most of the violation traces only after “hindsight ”, and with the strict control or effective shielding of the USB interface and the optical drive interface in the confidential system, the current information The way the security check tool uses a USB flash drive or a CD-ROM is also limited. Based on this, this paper presents a new type of network-based security and privacy management system, which can effectively reduce the potential security breach and leakage risks of the system through normalized management, realizes the real-time monitoring and on-line management of leaks and irregularities occurring in the terminal, Thus effectively enhancing the technical level of security and confidentiality management.