CAJ | 학술논문

网络漏洞必然存在，网络安全事件不可避免，应急处置作为最后一道防线，是保障网络信息可生存性的必要手段。现有的网络攻击应急处置措施相对对立，缺乏整体协作能力，难以应对日新月异的攻击方式。针对当前应急处置体系的不足，提出了一种网络事件应急处置协同方法和体系，将相对独立的应急处置组件有机统一起来，并提供专家远程辅助决策能力，可以有效减少冗余信息，提高响应能力，增强信息系统的安全性。
망락루동필연존재，망락안전사건불가피면，응급처치작위최후일도방선，시보장망락신식가생존성적필요수단。현유적망락공격응급처치조시상대대립，결핍정체협작능력，난이응대일신월이적공격방식。침대당전응급처치체계적불족，제출료일충망락사건응급처치협동방법화체계，장상대독립적응급처치조건유궤통일기래，병제공전가원정보조결책능력，가이유효감소용여신식，제고향응능력，증강신식계통적안전성。
Network vulnerabilities always exist, so do attack events. However, the existing emergency re-sponse measures are relatively independent and have poor integral collaboration,thus are difficult to cope with the ever-changing attacks. As the last line of defense, emergency response is a necessary means to ensure the network information survivability. Aiming at the current problems existing in the emergency re-sponse system, this paper proposes an events-oriented collaborative approach to network emergency re-sponse. It organically combines all independent and sporadic system components, and provides remote ex-pert assistance. Consequently, the new collaborative approach presented in this paper could effectively re-duce redundant information, enhance defense capability, and improve information systems security.