차이
문서의 선택한 두 판 사이의 차이를 보여줍니다.
양쪽 이전 판 이전 판 다음 판 | 이전 판 | ||
sec_architecture [2015/05/04 19:20] hsshim |
sec_architecture [2023/05/22 16:31] (현재) wiki1122 |
||
---|---|---|---|
줄 1: | 줄 1: | ||
+ | ==== Network Security Architecture ==== | ||
+ | * [[Network Security Architecture Design]] \\ | ||
+ | * [[안전한 정보통신 환경구현을 위한 네트워크 구축가이드]] \\ | ||
+ | |||
==== Security Architecture List ==== | ==== Security Architecture List ==== | ||
- | * [[VPN Security Architecture|VPN Security Architecture]] \\ | + | * [[VPN Security Architecture|VPN Security Architecture]] \\ |
- | * [[Client Security Architecture]] \\ | + | * [[Server Farm Security Architecture]] \\ |
- | * [[Server Security Architecture]] \\ | + | * [[Data Center Security Architecture]] \\ |
- | * [[Serverfarm Security Architecture]] \\ | + | * [[Wireless-Private Network Security Architecture]] \\ |
- | * [[Data Center Security Architecture]] \\ | + | * [[Wireless-Public Hotspot Security Architecture]] \\ |
- | * [[Wireless-Private Network Security Architecture]] \\ | + | * [[Public Web Zone Security Architecture]] \\ |
- | * [[Wireless-Public Hotspot Security Architecture]] \\ | + | * [[DMZ Security Architecture]] \\ |
- | * [[Public Web Server Security Architecture]] \\ | + | * [[Monitoring and Detection Zone Security Architecture]] \\ |
- | * [[DMZ Security Architecture]] \\ | + | * [[Branch Network Security Architecture]] \\ |
- | * [[Industrial Control System Security Architecture]] \\ | + | * [[Distribution Network Security Architecture]] \\ |
- | * [[Monitoring and Detection Security Architecture]] \\ | + | * [[Backbone Network Security Architecture]] \\ |
- | * [[Backbone Network Security Architecture]] \\ | + | * [[Intranet Security Architecture]] \\ |
- | * [[Intranet Zone Security Architecture]] \\ | + | * [[Internet Zone Security Architecture]] \\ |
- | * [[Internet Zone Security Architecture]] \\ | + | * [[CCTV System Security Architecture]] \\ |
- | * [[Branch Zone Security Architecture]] \\ | + | * [[Call Center Security Architecture]] \\ |
- | * [[CCTV System Security Architecture]] \\ | + | * [[VoIP System Security Architecture]] \\ |
- | * [[Call Center Security Architecture]] \\ | + | * [[Industrial Control System Security Architecture]] \\ |
- | * [[VoIP System Security Architecture]] \\ | + | |
==== Threat List ==== | ==== Threat List ==== | ||
- | * [[Service disruption - Dos and DDoS]] \\ | + | * [[Service disruption - Dos and DDoS]] \\ |
- | * [[Unauthorized access]] \\ | + | * [[Unauthorized access]] \\ |
- | * [[Data disclosure and modification]] \\ | + | * [[Data disclosure and modification]] \\ |
- | * [[Data loss]] \\ | + | * [[Data loss]] \\ |
- | * [[Network abuse]] \\ | + | * [[Network abuse]] \\ |
- | * [[Date leak]] \\ | + | * [[Date leak]] \\ |
- | * [[Identity theft and fraud]] \\ | + | * [[Identity theft and fraud]] \\ |
- | * [[Web-based phishing]] \\ | + | * [[Web-based phishing]] \\ |
- | * [[Virus, Spyware, Malware and adware]] \\ | + | * [[Virus, Spyware, Malware and adware]] \\ |
- | * [[Network intrusion and takeover]] \\ | + | * [[Network intrusion and takeover]] \\ |
- | * [[E-mail spam and virus]] \\ | + | * [[E-mail spam and virus]] \\ |
- | * [[Application-layer attacks]] \\ | + | * [[Application-layer attacks]] \\ |
+ | |||
+ | ==== Control Group List ==== | ||
+ | * [[AC- Access Control Group]] \\ | ||
+ | * [[AT- Awareness And Training Group]] \\ | ||
+ | * [[AU- Audit And Accountability Group]] \\ | ||
+ | * [[CA- Certification, Accreditation And Security Assessments Group]] \\ | ||
+ | * [[CM- Configuration Management Group]] \\ | ||
+ | * [[CP- Contingency Planning Group]] \\ | ||
+ | * [[IA- Identification and Authentication Group]] \\ | ||
+ | * [[IR- Incident Response Group]] \\ | ||
+ | * [[MA- Maintenance Group]] \\ | ||
+ | * [[MP- Media Protection Group]] \\ | ||
+ | * [[PE- Physical and Environmental Protection Group]] \\ | ||
+ | * [[PL- Planning Group]] \\ | ||
+ | * [[PS- Personnel Security Group]] \\ | ||
+ | * [[RA- Risk Assessment Group]] \\ | ||
+ | * [[SA- System and Services Acquisition Group]] \\ | ||
+ | * [[SC- System and Communication Protection Group]] \\ | ||
+ | * [[SI- System and Information Integrity Group]] \\ | ||
- | ==== Control List ==== | + | ==== Actor List ==== |
- | * [[AC-01 Access Control Policies and Procedures ]] \\ | + | |
- | * [[AC-02 Account Management]] \\ | + | |
- | * [[AC-03 Access Enforcement]] \\ | + | |
- | * [[AC-04 Information Flow Enforcement]] \\ | + | |
- | * [[AC-05 Separation Of Duties]] \\ | + | |
- | * [[AC-06 Least Privilege]] \\ | + | |
- | * [[AC-07 Unsuccessful Login Attempts]] \\ | + | |
- | * [[AC-08 System Use Notification]] \\ | + | |
- | * [[AC-09 Previous Logon Notification]] \\ | + | |
- | * [[AC-10 Concurrent Session Control]] \\ | + | |
- | * [[AC-11 Session Lock]] \\ | + | |
- | * [[AC-12 Session Termination]] \\ | + | |
+ | ^ Actor ^ 역할 ^ | ||
+ | | {{wiki:vpn_security:man_mon.png?50&nolink|}} \\ 보안관제 | IDS와 IPS 등 보안모니터링 시스템 관제 | | ||
+ | | {{wiki:vpn_security:man_opr.png?50&nolink|}} \\ 장비관리자 | Router, Switch, Server 관리 및 운영 | | ||
+ | | {{wiki:vpn_security:man_id.png?50&nolink|}} \\ 계정관리자 | 시스템 계정권한 관리 | | ||
+ | | {{wiki:vpn_security:users.png?50&nolink|}} \\ 사용자 | 사내 또는 사외 시스템 사용자 | |