摘要
分析动态自适应网络安全模型P2DR的缺陷,提出对P2DR模型的几点改进建议。针对模型中策略相关不足设计了一个策略部署模型,该部署模型实现了策略统一定制、自动分发、自适应管理等功能,同时在部署模型中引入了安全事件关联分析的思想,共享设备间安全信息以实现安全策略的联动操作,达到安全事故及时响应的目标。该部署模型实现了P2DR模型的动态性和自适应以及策略核心作用。
This paper analyzes the insufficiency of dynamic adaptation network security model P2DR, and asserts some improved proposal for P2DR. A policy deployment model is designed on the insufficiency of policy for P2DR model. Deployment model provides the policy uniform defines, automatic distribution, self-adaptive management functions and so on. The security event coordination analysis is introduced in the deployment model. The model shares the security information between devices in order to realize cooperation of security policies, and achieves the goal of reposing security incident in time. The significance of deployment model is really realizing the dynamic and adaptive of P2DR model, and it makes the core effect of policy realized.
出处
《计算机工程》
CAS
CSCD
北大核心
2008年第20期180-183,共4页
Computer Engineering
基金
国家部委预研基金资助项目
关键词
部署模型
自适应管理
策略联动
安全事件关联
deployment model
self-adaptive management
policy linkage
security event coordination
