Abstract:
Limitation of network security management is analyzed. This paper introduces Policy-Based Management(PBM) approach to network security management, designs a network security management system. The presented system can manage the network security management systems integrately and automately, dramatically reduce the complicity of network security management. is greatly useful to the security management of large-scale network. This paper introduces the design of the system, shows the completing work of key technologys such as the process of cooperation of security productions driven by event-triggered policy and gives an example of the system application.
Key words:
policy-driven,
uniform policy management,
event coordination analysis,
Ponder policy framework
摘要: 针对当前网络安全管理的缺陷,在网络安全管理中引入基于策略的管理方法,设计一个网络安全管理系统,实现对网络安全的一体化自动管理,简化网络安全管理的复杂性。介绍安全管理系统设计和策略驱动设备间互操作等技术的实现过程,并给出应用实例。
关键词:
策略驱动,
统一策略管理,
事件关联分析,
Ponder策略框架
CLC Number:
HAN Rui-sheng; ZHAO Bin; XU Kai-yong. Policy-based Integrative Network Security Management System[J]. Computer Engineering, 2009, 35(8): 201-204.
韩锐生;赵 彬;徐开勇. 基于策略的一体化网络安全管理系统[J]. 计算机工程, 2009, 35(8): 201-204.