美军零信任安全发展现状研究  被引量:3

Research on Development Status of Zero-Trust Security in the U.S.Military

在线阅读下载全文

作  者:杨震[1] 田永春[1] 范国林 李洪赭 YANG Zhen;TIAN Yongchun;FAN Guolin;LI Hongzhe(No.30 Institute of CETC,Chengdu Sichuan 610041,China)

机构地区:[1]中国电子科技集团公司第三十研究所,四川成都610041

出  处:《信息安全与通信保密》2024年第3期1-12,共12页Information Security and Communications Privacy

摘  要:纵观当前世界网络安全形势,国家级的网络对抗烈度持续上升,未知威胁攻击层出不穷,攻击手段复杂多变,攻击源不仅可能来自外部,也可能来自系统内部。再加上军事应用上云、机动或移动用户远程访问等新需求的不断出现,传统的网络边界被打破,即使信息系统建立了相对完善的基于边界安全方法的纵深防御体系,也无法提供足够的安全保障和网络弹性。因此,美军提出了零信任战略,重新审视美军现有的安全体系。通过系统性介绍美军零信任发展情况,从战略、架构、实践和影响等方面进行深入分析,为借鉴美军推进零信任安全的相关做法,充分吸收零信任安全防护理念,重构网络安全范式,全面提升军队网络安全水平提供了参考。Throughout the current global cyber security situation,the intensity of nation level cyber confrontation continues to raise,unknown threat attacks emerge endlessly,and attack methods are complex and varied.The attack source may be inside or outside of the system.In addition,coupled with the continuous emergence of new demands for military applications going to the cloud and remote access for mobile users,conventional network boundaries are being broken down.Even if the information systems establishes a relatively defense-in-depth system based on perimeter security approach,it will not be able to provide sufficient security guarantees and network resilience.Therefore,the U.S.military proposes a zero-trust strategy to reexamine its exiting security system.Through systematically introducing the development of zero-trust in the U.S.military,this paper carries out an in-depth analysis from the aspects of strategy,architecture,practice and impact,which provides a reference for learning from the relevant practices of the U.S.military in promoting the zero-trust security,fully absorbing the concept of zero-trust security protection,reconfiguring the paradigm of cyber security,and comprehensively improving the military’s cyber security level.

关 键 词:美军零信任 安全体系 总体目标 能力体系 实施路径 

分 类 号:TN915.08[电子电信—通信与信息系统]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象