현재 위치: WiKi Security Spirit » Network Security Architecture

차이

문서의 선택한 두 판 사이의 차이를 보여줍니다.

차이 보기로 링크

양쪽 이전 판이전 판
다음 판		이전 판
sec_architecture [2015/05/04 10:22] hsshimsec_architecture [2024/04/04 05:12] (현재) – 바깥 편집 127.0.0.1
줄 1: 줄 1:
-==== Security Architecture List ====+==== Network Security Architecture ==== 
 +  * [[Network Security Architecture Design]] \\ 
 +  * [[안전한 정보통신 환경구현을 위한 네트워크 구축가이드]] \\
  
-* [[VPN Security Architecture|VPN Security Architecture]] \\ +==== Security Architecture List ====
-* [[Client Security Architecture]] \\ +
-* [[Server Security Architecture]] \\ +
-* [[Serverfarm Security Architecture]] \\ +
-* [[Data Center Security Architecture]] \\ +
-* [[Wireless-Private Network Security Architecture]] \\ +
-* [[Wireless-Public Hotspot Security Architecture]] \\ +
-* [[Public Web Server Security Architecture]] \\ +
-* [[DMZ Security Architecture]] \\ +
-* [[Industrial Control System Security Architecture]] \\ +
-* [[Monitoring and Detection Security Architecture]] \\ +
-* [[Backbone Network Security Architecture]] \\ +
-* [[Intranet Zone Security Architecture]] \\ +
-* [[Internet Zone Security Architecture]] \\ +
-* [[Branch Zone Security Architecture]] \\ +
-* [[CCTV System Security Architecture]] \\ +
-* [[Call Center Security Architecture]] \\ +
-* [[VoIP System Security Architecture]] \\+
  
 +  * [[VPN Security Architecture|VPN Security Architecture]] \\
 +  * [[Server Farm Security Architecture]] \\
 +  * [[Data Center Security Architecture]] \\
 +  * [[Wireless-Private Network Security Architecture]] \\
 +  * [[Wireless-Public Hotspot Security Architecture]] \\
 +  * [[Public Web Zone Security Architecture]] \\
 +  * [[DMZ Security Architecture]] \\
 +  * [[Monitoring and Detection Zone Security Architecture]] \\
 +  * [[Branch Network Security Architecture]] \\
 +  * [[Distribution Network Security Architecture]] \\
 +  * [[Backbone Network Security Architecture]] \\
 +  * [[Intranet Security Architecture]] \\
 +  * [[Internet Zone Security Architecture]] \\
 +  * [[CCTV System Security Architecture]] \\
 +  * [[Call Center Security Architecture]] \\
 +  * [[VoIP System Security Architecture]] \\
 +  * [[Industrial Control System Security Architecture]] \\
  
 ==== Threat List ==== ==== Threat List ====
-* [[Service disruption - Dos and DDoS]] \\ +  * [[Service disruption - Dos and DDoS]] \\ 
-* [[Unauthorized access]] \\ +  * [[Unauthorized access]] \\ 
-* [[Data disclosure and modification]] \\ +  * [[Data disclosure and modification]] \\ 
-* [[Data loss]] \\ +  * [[Data loss]] \\ 
-* [[Network abuse]] \\ +  * [[Network abuse]] \\ 
-* [[Date leak]] \\ +  * [[Date leak]] \\ 
-* [[Identity theft and fraud]] \\ +  * [[Identity theft and fraud]] \\ 
-* [[Web-based phishing]] \\ +  * [[Web-based phishing]] \\ 
-* [[Virus, Spyware, Malware and adware]] \\ +  * [[Virus, Spyware, Malware and adware]] \\ 
-* [[Network intrusion and takeover]] \\ +  * [[Network intrusion and takeover]] \\ 
-* [[E-mail spam and virus]] \\ +  * [[E-mail spam and virus]] \\ 
-* [[Application-layer attacks]] \\+  * [[Application-layer attacks]] \\
  
  
  
-==== Control List ==== +==== Control Group List ==== 
-* [[AC-01 Access Control Policies and Procedures ]] \\ +  * [[AC- Access Control Group]] \\ 
-* [[AC-02 Account Management]] \\ +  * [[AT- Awareness And Training Group]] \\ 
-* [[AC-03 Access Enforcement]] \\ +  * [[AU- Audit And Accountability Group]] \\ 
-* [[AC-04 Information Flow Enforcement]] \\ +  * [[CA- Certification, Accreditation And Security Assessments Group]] \\ 
-* [[AC-05 Separation Of Duties]] \\ +  * [[CMConfiguration Management Group]] \\ 
-* [[AC-06 Least Privilege]] \\ +  * [[CPContingency Planning Group]] \\ 
-* [[AC-07 Unsuccessful Login Attempts]] \\ +  * [[IAIdentification and Authentication Group]] \\ 
-* [[AC-08 System Use Notification]] \\ +  * [[IRIncident Response Group]] \\ 
-* [[AC-09 Previous Logon Notification]] \\ +  * [[MAMaintenance Group]] \\ 
-* [[AC-10 Concurrent Session Control]] \\ +  * [[MPMedia Protection Group]] \\ 
-* [[AC-11 Session Lock]] \\ +  * [[PEPhysical and Environmental Protection Group]] \\ 
-* [[AC-12 Session Termination]] \\+  * [[PLPlanning Group]] \\ 
 +  * [[PSPersonnel Security Group]] \\ 
 +  * [[RARisk Assessment Group]] \\ 
 +  * [[SASystem and Services Acquisition Group]] \\ 
 +  * [[SC- System and Communication Protection Group]] \\ 
 +  * [[SI- System and Information Integrity Group]] \\
  
  
-==== Actors별 Controls ====+==== Actor List ====
  
-^ Actor ^ 보안통제 사항 +  Actor     역할   
-|{{wiki:vpn_security:man_mon.png?50|}} \\ 보안관제   AC-05, AC-10, AC-11, AC-12…  +  {{wiki:vpn_security:man_mon.png?50&nolink|}}   \\   보안관제   IDS와 IPS 등 보안모니터링 시스템 관제 
-|{{wiki:vpn_security:man_opr.png?50|}} \\ 장비관리자 | AC-05AC-10AC-11, AC-12…  +  {{wiki:vpn_security:man_opr.png?50&nolink|}}   \\   장비관리자   RouterSwitchServer 관리 및 운영 
-|{{wiki:vpn_security:man_id.png?50|}} \\ 계정관리자  AC-05, AC-10, AC-11, AC-12…  |  +  {{wiki:vpn_security:man_id.png?50&nolink|}}   \\   계정관리자   시스템 계정권한 관리 |  
-|{{wiki:vpn_security:users.png?50|}} \\ 사용자       AC-05, AC-10, AC-11, AC-12…  |+  {{wiki:vpn_security:users.png?50&nolink|}}   \\   사용자   사내 또는 사외 시스템 사용자 |

추적: