面向营销系统的零信任架构构建与迁移方法  

Construction and Migration Method of Zero Trust Architecture for Marketing System

在线阅读下载全文

作  者:李志浩 赵聪 吴悠 陈泽纯 何行 董重重 LI Zhihao;ZHAO Cong;WU You;CHEN Zechun;HE hang;DONG Chongchong(Marketing Service Center of State GRID Hubei Electric Power Co.,Ltd.,Wuhan 430000,China)

机构地区:[1]国网湖北省电力有限公司营销服务中心,湖北武汉430000

出  处:《计算机与现代化》2025年第4期119-126,共8页Computer and Modernization

基  金:国家自然科学基金联合基金资助项目(U1936122);湖北省重点研发计划项目(2021BAA027)。

摘  要:随着云服务、物联网和其他技术的兴起,传统网络架构的边界变得更加复杂和模糊。为了更好地适应当今网络的无边界化趋势,提高敏感数据及业务系统的保护能力,首先,本文秉承“从不信任,总是验证”的原则提出一种基于零信任架构的多维度动态验证网络安全架构,以提高系统在无边界网络模式下的安全能力;其次,针对大多数零信任研究还停留在理论阶段的问题,对企业如何实施业务迁移和工作流分配等零信任实现提出迁移方法;最后,分析本架构的安全性能,以验证其有效性。面向营销系统的零信任架构有效地提高了系统的安全性能,解决了传统基于边界的网络架构在被攻击者突破后易遭受横向攻击的缺点,同时给出了一种低风险的实施和迁移办法,为理论的平滑落地提供了支持。With the rise of cloud services,IoT,and other technologies,the boundaries in traditional network architecture have become more complicated and hazier.Firstly,adhering to the principle of"never trust,always verify",a network security architecture based on zero-trust multi-dimensional dynamic verification is proposed to better adapt to the borderless trend of today’s network and improve the protection ability of sensitive data and business systems.Secondly,in view of the problem that most researches on zero trust are still in the theoretical stage,this paper proposes migration methods for enterprises to implement zero trust,such as business migration and workflow allocation.Finally,the security performance of the zero-trust architecture is analyzed to verify its effectiveness.The zero-trust architecture for marketing system effectively improves the security performance of the system,solves the shortcoming of the traditional boundary-based network architecture that is vulnerable to lateral attack after being breached by the attacker,and provides a low-risk implementation and migration method,which supports the smooth landing of the theory.

关 键 词:云服务 无边界网络 零信任架构 网络安全架构 横向攻击 

分 类 号:TP393.02[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象