차이

문서의 선택한 두 판 사이의 차이를 보여줍니다.

차이 보기로 링크

양쪽 이전 판 이전 판
다음 판
이전 판
sec_architecture [2015/05/04 19:20]
hsshim
sec_architecture [2023/05/22 16:31] (현재)
wiki1122
줄 1: 줄 1:
 +==== Network Security Architecture ====
 +  * [[Network Security Architecture Design]] \\
 +  * [[안전한 정보통신 환경구현을 위한 네트워크 구축가이드]] \\
 +
 ==== Security Architecture List ==== ==== Security Architecture List ====
  
-* [[VPN Security Architecture|VPN Security Architecture]] \\ +  ​* [[VPN Security Architecture|VPN Security Architecture]] \\ 
-* [[Client Security Architecture]] \\ +  * [[Server ​Farm Security Architecture]] \\ 
-* [[Server Security Architecture]] \\ +  * [[Data Center Security Architecture]] \\ 
-* [[Serverfarm Security Architecture]] \\ +  * [[Wireless-Private Network Security Architecture]] \\ 
-* [[Data Center Security Architecture]] \\ +  * [[Wireless-Public Hotspot Security Architecture]] \\ 
-* [[Wireless-Private Network Security Architecture]] \\ +  * [[Public Web Zone Security Architecture]] \\ 
-* [[Wireless-Public Hotspot Security Architecture]] \\ +  * [[DMZ Security Architecture]] \\ 
-* [[Public Web Server ​Security Architecture]] \\ +  * [[Monitoring and Detection Zone Security Architecture]] \\ 
-* [[DMZ Security Architecture]] \\ +  * [[Branch Network ​Security Architecture]] \\ 
-* [[Industrial Control System ​Security Architecture]] \\ +  * [[Distribution ​Network Security Architecture]] \\ 
-* [[Monitoring and Detection ​Security Architecture]] \\ +  * [[Backbone Network ​Security Architecture]] \\ 
-* [[Backbone ​Network Security Architecture]] \\ +  * [[Intranet ​Security Architecture]] \\ 
-* [[Intranet Zone Security Architecture]] \\ +  * [[Internet ​Zone Security Architecture]] \\ 
-* [[Internet Zone Security Architecture]] \\ +  * [[CCTV System Security Architecture]] \\ 
-* [[Branch ​Zone Security Architecture]] \\ +  * [[Call Center Security Architecture]] \\ 
-* [[CCTV System Security Architecture]] \\ +  * [[VoIP System Security Architecture]] \\ 
-* [[Call Center Security Architecture]] \\ +  * [[Industrial Control System Security Architecture]] \\
-* [[VoIP System Security Architecture]] \\ +
  
 ==== Threat List ==== ==== Threat List ====
-* [[Service disruption - Dos and DDoS]] \\ +  ​* [[Service disruption - Dos and DDoS]] \\ 
-* [[Unauthorized access]] \\ +  * [[Unauthorized access]] \\ 
-* [[Data disclosure and modification]] \\ +  * [[Data disclosure and modification]] \\ 
-* [[Data loss]] \\ +  * [[Data loss]] \\ 
-* [[Network abuse]] \\ +  * [[Network abuse]] \\ 
-* [[Date leak]] \\ +  * [[Date leak]] \\ 
-* [[Identity theft and fraud]] \\ +  * [[Identity theft and fraud]] \\ 
-* [[Web-based phishing]] \\ +  * [[Web-based phishing]] \\ 
-* [[Virus, Spyware, Malware and adware]] \\ +  * [[Virus, Spyware, Malware and adware]] \\ 
-* [[Network intrusion and takeover]] \\ +  * [[Network intrusion and takeover]] \\ 
-* [[E-mail spam and virus]] \\ +  * [[E-mail spam and virus]] \\ 
-* [[Application-layer attacks]] \\+  * [[Application-layer attacks]] \\ 
 + 
  
 +==== Control Group List ====
 +  * [[AC- Access Control Group]] \\
 +  * [[AT- Awareness And Training Group]] \\
 +  * [[AU- Audit And Accountability Group]] \\
 +  * [[CA- Certification,​ Accreditation And Security Assessments Group]] \\
 +  * [[CM- Configuration Management Group]] \\
 +  * [[CP- Contingency Planning Group]] \\
 +  * [[IA- Identification and Authentication Group]] \\
 +  * [[IR- Incident Response Group]] \\
 +  * [[MA- Maintenance Group]] \\
 +  * [[MP- Media Protection Group]] \\
 +  * [[PE- Physical and Environmental Protection Group]] \\
 +  * [[PL- Planning Group]] \\
 +  * [[PS- Personnel Security Group]] \\
 +  * [[RA- Risk Assessment Group]] \\
 +  * [[SA- System and Services Acquisition Group]] \\
 +  * [[SC- System and Communication Protection Group]] \\
 +  * [[SI- System and Information Integrity Group]] \\
  
  
-==== Control ​List ==== +==== Actor List ====
-* [[AC-01 Access Control Policies and Procedures ]] \\ +
-* [[AC-02 Account Management]] \\ +
-* [[AC-03 Access Enforcement]] \\ +
-* [[AC-04 Information Flow Enforcement]] \\ +
-* [[AC-05 Separation Of Duties]] \\ +
-* [[AC-06 Least Privilege]] \\ +
-* [[AC-07 Unsuccessful Login Attempts]] \\ +
-* [[AC-08 System Use Notification]] \\ +
-* [[AC-09 Previous Logon Notification]] \\ +
-* [[AC-10 Concurrent Session Control]] \\ +
-* [[AC-11 Session Lock]] \\ +
-* [[AC-12 Session Termination]] \\+
  
 +^   ​Actor ​  ​^ ​  ​역할 ​  ^
 +|   ​{{wiki:​vpn_security:​man_mon.png?​50&​nolink|}} ​  ​\\ ​  ​보안관제 ​  | IDS와 IPS 등 보안모니터링 시스템 관제 |
 +|   ​{{wiki:​vpn_security:​man_opr.png?​50&​nolink|}} ​  ​\\ ​  ​장비관리자 ​  | Router, Switch, Server 관리 및 운영 |
 +|   ​{{wiki:​vpn_security:​man_id.png?​50&​nolink|}} ​  ​\\ ​  ​계정관리자 ​  | 시스템 계정권한 관리 | 
 +|   ​{{wiki:​vpn_security:​users.png?​50&​nolink|}} ​  ​\\ ​  ​사용자 ​  | 사내 또는 사외 시스템 사용자 |