信息安全与通信保密
信息安全與通信保密
신식안전여통신보밀
CHINA INFORMATION SECURITY
2014年
9期
191-194
,共4页
电力通信网%安全防护%向日葵%安全分区
電力通信網%安全防護%嚮日葵%安全分區
전력통신망%안전방호%향일규%안전분구
security protection%power communication%sunflower%security partition
文中从电力通信网安全现状入手,对电力通信网物理安全和信息安全的角度进行了风险分析。利用向日葵模型,将安全分区对象划分为应用系统和数据网,建立了“生产控制区、信息管理区和通信集控区”三个安全分区的模型。从传输网、业务网、支撑网、接入网四个维度构建了电力通信网安全防护架构,提出了“可靠承载、分区隔离、安全接入、等级防护”的整体安全防护策略,为电力通信网安全防护整体设计打下了基础。
文中從電力通信網安全現狀入手,對電力通信網物理安全和信息安全的角度進行瞭風險分析。利用嚮日葵模型,將安全分區對象劃分為應用繫統和數據網,建立瞭“生產控製區、信息管理區和通信集控區”三箇安全分區的模型。從傳輸網、業務網、支撐網、接入網四箇維度構建瞭電力通信網安全防護架構,提齣瞭“可靠承載、分區隔離、安全接入、等級防護”的整體安全防護策略,為電力通信網安全防護整體設計打下瞭基礎。
문중종전력통신망안전현상입수,대전력통신망물리안전화신식안전적각도진행료풍험분석。이용향일규모형,장안전분구대상화분위응용계통화수거망,건립료“생산공제구、신식관리구화통신집공구”삼개안전분구적모형。종전수망、업무망、지탱망、접입망사개유도구건료전력통신망안전방호가구,제출료“가고승재、분구격리、안전접입、등급방호”적정체안전방호책략,위전력통신망안전방호정체설계타하료기출。
Based on security status of power communication network,this paper analyzes security risks from the perspective of physi-cal security and information security. With sunflower model,the secure partition object is divided into application systems and data net-works,and the three-security partition model established,i.e. manufacture-control zone,information management zone and communi-cation centralized control zone. Security protection architecture of power communication network is constructed from the four dimen-sions of transmission network,service network,supporting network and access network. Therefore,the overall security strategy composed of reliable bearing,partition isolation,security access and classified protection is proposed,thus to lay a foundation for the overall de-sign of electric power communication network.