摘要： 分析动态自适应网络安全模型P2DR的缺陷，提出对P2DR模型的几点改进建议。针对模型中策略相关不足设计了一个策略部署模型，该部署模型实现了策略统一定制、自动分发、自适应管理等功能，同时在部署模型中引入了安全事件关联分析的思想，共享设备间安全信息以实现安全策略的联动操作，达到安全事故及时响应的目标。该部署模型实现了P2DR模型的动态性和自适应以及策略核心作用。

关键词: 部署模型, 自适应管理, 策略联动, 安全事件关联

Abstract: This paper analyzes the insufficiency of dynamic adaptation network security model P2DR, and asserts some improved proposal for P2DR. A policy deployment model is designed on the insufficiency of policy for P2DR model. Deployment model provides the policy uniform defines, automatic distribution, self-adaptive management functions and so on. The security event coordination analysis is introduced in the deployment model. The model shares the security information between devices in order to realize cooperation of security policies, and achieves the goal of reposing security incident in time. The significance of deployment model is really realizing the dynamic and adaptive of P2DR model, and it makes the core effect of policy realized.

Key words: deployment model, self-adaptive management, policy linkage, security event coordination

中图分类号: 

• TP309.08