차이
문서의 선택한 두 판 사이의 차이를 보여줍니다.
양쪽 이전 판이전 판다음 판 | 이전 판다음 판양쪽 다음 판 | ||
sec_architecture [2015/05/04 10:22] – hsshim | sec_architecture [2018/08/21 15:03] – wiki1122 | ||
---|---|---|---|
줄 1: | 줄 1: | ||
- | ==== Security Architecture | + | ==== Network |
+ | * [[Network Security Architecture Design]] \\ | ||
+ | * [[안전한 정보통신 환경구현을 위한 네트워크 구축가이드]] \\ | ||
- | * [[VPN Security Architecture|VPN Security Architecture]] \\ | + | ==== Security Architecture |
- | * [[Client Security Architecture]] \\ | + | |
- | * [[Server Security Architecture]] \\ | + | |
- | * [[Serverfarm Security Architecture]] \\ | + | |
- | * [[Data Center Security Architecture]] \\ | + | |
- | * [[Wireless-Private Network Security Architecture]] \\ | + | |
- | * [[Wireless-Public Hotspot Security Architecture]] \\ | + | |
- | * [[Public Web Server Security Architecture]] \\ | + | |
- | * [[DMZ Security Architecture]] \\ | + | |
- | * [[Industrial Control System Security Architecture]] \\ | + | |
- | * [[Monitoring and Detection Security Architecture]] \\ | + | |
- | * [[Backbone Network Security Architecture]] \\ | + | |
- | * [[Intranet Zone Security Architecture]] \\ | + | |
- | * [[Internet Zone Security Architecture]] \\ | + | |
- | * [[Branch Zone Security Architecture]] \\ | + | |
- | * [[CCTV System Security Architecture]] \\ | + | |
- | * [[Call Center Security Architecture]] \\ | + | |
- | * [[VoIP System Security Architecture]] \\ | + | |
+ | * [[VPN Security Architecture|VPN Security Architecture]] \\ | ||
+ | * [[Server Farm Security Architecture]] \\ | ||
+ | * [[Data Center Security Architecture]] \\ | ||
+ | * [[Wireless-Private Network Security Architecture]] \\ | ||
+ | * [[Wireless-Public Hotspot Security Architecture]] \\ | ||
+ | * [[Public Web Zone Security Architecture]] \\ | ||
+ | * [[DMZ Security Architecture]] \\ | ||
+ | * [[Monitoring and Detection Zone Security Architecture]] \\ | ||
+ | * [[Branch Network Security Architecture]] \\ | ||
+ | * [[Distribution Network Security Architecture]] \\ | ||
+ | * [[Backbone Network Security Architecture]] \\ | ||
+ | * [[Intranet Security Architecture]] \\ | ||
+ | * [[Internet Zone Security Architecture]] \\ | ||
+ | * [[CCTV System Security Architecture]] \\ | ||
+ | * [[Call Center Security Architecture]] \\ | ||
+ | * [[VoIP System Security Architecture]] \\ | ||
+ | * [[Industrial Control System Security Architecture]] \\ | ||
==== Threat List ==== | ==== Threat List ==== | ||
- | * [[Service disruption - Dos and DDoS]] \\ | + | |
- | * [[Unauthorized access]] \\ | + | * [[Unauthorized access]] \\ |
- | * [[Data disclosure and modification]] \\ | + | * [[Data disclosure and modification]] \\ |
- | * [[Data loss]] \\ | + | * [[Data loss]] \\ |
- | * [[Network abuse]] \\ | + | * [[Network abuse]] \\ |
- | * [[Date leak]] \\ | + | * [[Date leak]] \\ |
- | * [[Identity theft and fraud]] \\ | + | * [[Identity theft and fraud]] \\ |
- | * [[Web-based phishing]] \\ | + | * [[Web-based phishing]] \\ |
- | * [[Virus, Spyware, Malware and adware]] \\ | + | * [[Virus, Spyware, Malware and adware]] \\ |
- | * [[Network intrusion and takeover]] \\ | + | * [[Network intrusion and takeover]] \\ |
- | * [[E-mail spam and virus]] \\ | + | * [[E-mail spam and virus]] \\ |
- | * [[Application-layer attacks]] \\ | + | * [[Application-layer attacks]] \\ |
- | ==== Control List ==== | + | ==== Control |
- | * [[AC-01 Access Control | + | * [[AC- Access Control |
- | * [[AC-02 Account | + | * [[AT- Awareness And Training Group]] \\ |
- | * [[AC-03 Access Enforcement]] \\ | + | * [[AU- Audit And Accountability Group]] \\ |
- | * [[AC-04 Information Flow Enforcement]] \\ | + | * [[CA- Certification, |
- | * [[AC-05 Separation Of Duties]] \\ | + | * [[CM- Configuration |
- | * [[AC-06 Least Privilege]] \\ | + | * [[CP- Contingency Planning Group]] \\ |
- | * [[AC-07 Unsuccessful Login Attempts]] \\ | + | * [[IA- Identification and Authentication Group]] \\ |
- | * [[AC-08 System Use Notification]] \\ | + | * [[IR- Incident Response Group]] \\ |
- | * [[AC-09 Previous Logon Notification]] \\ | + | * [[MA- Maintenance Group]] \\ |
- | * [[AC-10 Concurrent Session Control]] \\ | + | * [[MP- Media Protection Group]] \\ |
- | * [[AC-11 Session Lock]] \\ | + | * [[PE- Physical and Environmental Protection Group]] \\ |
- | * [[AC-12 Session Termination]] \\ | + | * [[PL- Planning Group]] \\ |
+ | * [[PS- Personnel Security Group]] \\ | ||
+ | * [[RA- Risk Assessment Group]] \\ | ||
+ | * [[SA- System and Services Acquisition Group]] \\ | ||
+ | * [[SC- System and Communication Protection Group]] \\ | ||
+ | * [[SI- System and Information Integrity Group]] \\ | ||
- | ==== Actors별 Controls | + | ==== Actor List ==== |
- | ^ Actor ^ 보안통제 사항 | + | ^ |
- | |{{wiki: | + | | |
- | |{{wiki: | + | | |
- | |{{wiki: | + | | |
- | |{{wiki: | + | | |