현재 위치: WiKi Security Spirit » Network Security Architecture

차이

문서의 선택한 두 판 사이의 차이를 보여줍니다.

--- sec_architecture [2015/04/24 05:19] – hsshim
+++ sec_architecture [2023/05/22 07:31] – wiki1122
@@ 줄 1: / 줄 1: @@
-====== VPN Security Architecture ======
+==== Network Security Architecture ====
+  * [[Network Security Architecture Design]] \\
+  * [[안전한 정보통신 환경구현을 위한 네트워크 구축가이드]] \\
- {{wiki:vpn_security:entire1504.png}}
+==== Security Architecture List ====
-^   VPN 보안 위협   ^   VPN 보안 Safe 가이드   ^
+  * [[VPN Security Architecture|VPN Security Architecture]] \\
-| 1.Network Topology Discovery  |* Site to Site VPN : VPN 라우터를 통해 원격 Site 인증을 수행하고\\ 특정 목적지 주소에 국한하여 접속 |
+  * [[Server Farm Security Architecture]] \\
-| 2.패스워드 공격               |           :::                                            |
+  * [[Data Center Security Architecture]] \\
-| 3.비인가 접근                 |          :::                                          |
+  * [[Wireless-Private Network Security Architecture]] \\
-| 4.중간자 공격                 |* Remote Access VPN : VPN Concentrator를 통해 사용자 인증을 수행하고 \\ 방화벽을 통해 패킷통제      |
+  * [[Wireless-Public Hotspot Security Architecture]] \\
-| 5.패킷스니핑                  |          :::                                          |
+  * [[Public Web Zone Security Architecture]] \\
+  * [[DMZ Security Architecture]] \\
+  * [[Monitoring and Detection Zone Security Architecture]] \\
+  * [[Branch Network Security Architecture]] \\
+  * [[Distribution Network Security Architecture]] \\
+  * [[Backbone Network Security Architecture]] \\
+  * [[Intranet Security Architecture]] \\
+  * [[Internet Zone Security Architecture]] \\
+  * [[CCTV System Security Architecture]] \\
+  * [[Call Center Security Architecture]] \\
+  * [[VoIP System Security Architecture]] \\
+  * [[Industrial Control System Security Architecture]] \\
+==== Threat List ====
+  * [[Service disruption - Dos and DDoS]] \\
+  * [[Unauthorized access]] \\
+  * [[Data disclosure and modification]] \\
+  * [[Data loss]] \\
+  * [[Network abuse]] \\
+  * [[Date leak]] \\
+  * [[Identity theft and fraud]] \\
+  * [[Web-based phishing]] \\
+  * [[Virus, Spyware, Malware and adware]] \\
+  * [[Network intrusion and takeover]] \\
+  * [[E-mail spam and virus]] \\
+  * [[Application-layer attacks]] \\
-***Actors별 관련 보안통제모듈**
-^ Actor ^ 보안통제 사항 ^
+==== Control Group List ====
-|{{wiki:vpn_security:man_mon.png?50|}} \\ 보안관제   | AC-05, AC-10, AC-11, AC-12…  |
+  * [[AC- Access Control Group]] \\
-|{{wiki:vpn_security:man_opr.png?50|}} \\ 장비관리자 | AC-05, AC-10, AC-11, AC-12…  |
+  * [[AT- Awareness And Training Group]] \\
-|{{wiki:vpn_security:man_id.png?50|}} \\ 계정관리자  | AC-05, AC-10, AC-11, AC-12…  |
+  * [[AU- Audit And Accountability Group]] \\
-|{{wiki:vpn_security:users.png?50|}} \\ 사용자       | AC-05, AC-10, AC-11, AC-12…  |
+  * [[CA- Certification, Accreditation And Security Assessments Group]] \\
+  * [[CM- Configuration Management Group]] \\
+  * [[CP- Contingency Planning Group]] \\
+  * [[IA- Identification and Authentication Group]] \\
+  * [[IR- Incident Response Group]] \\
+  * [[MA- Maintenance Group]] \\
+  * [[MP- Media Protection Group]] \\
+  * [[PE- Physical and Environmental Protection Group]] \\
+  * [[PL- Planning Group]] \\
+  * [[PS- Personnel Security Group]] \\
+  * [[RA- Risk Assessment Group]] \\
+  * [[SA- System and Services Acquisition Group]] \\
+  * [[SC- System and Communication Protection Group]] \\
+  * [[SI- System and Information Integrity Group]] \\
+==== Actor List ====
+^   Actor   ^   역할   ^
+|   {{wiki:vpn_security:man_mon.png?50&nolink|}}   \\   보안관제   | IDS와 IPS 등 보안모니터링 시스템 관제 |
+|   {{wiki:vpn_security:man_opr.png?50&nolink|}}   \\   장비관리자   | Router, Switch, Server 관리 및 운영 |
+|   {{wiki:vpn_security:man_id.png?50&nolink|}}   \\   계정관리자   | 시스템 계정권한 관리 |
+|   {{wiki:vpn_security:users.png?50&nolink|}}   \\   사용자   | 사내 또는 사외 시스템 사용자 |

추적:

차이

검색