企业网络安全系统的性能与可管理性设计

Jingsha He
{"title":"企业网络安全系统的性能与可管理性设计","authors":"Jingsha He","doi":"10.1109/ENM.1997.596874","DOIUrl":null,"url":null,"abstract":"The design of an enterprise network security system presents a great challenge because of the complexity of networking environments and variation in design objectives. The design of a high performance and manageable enterprise network security system presents an even greater challenge. Such a system, however, would not only reduce the overall cost of system administration and user management, but also enhance the effectiveness of the security mechanisms due to the decrease in the number of mistakes that the security system administrators might make. Systems too complex and too cumbersome to manage achieves only part of the objectives for an enterprise network security system at best. We present the design of an enterprise network security system developed in MCI to protect network elements from user access in which performance and manageability are among the most important criteria that measure the success of the development. We describe the environment, the requirements and the design considerations as well as the mechanisms used in the design and development to achieve the objectives. A number of specific design decisions are discussed that help make the security system easier to manage and, at the same time, improve the performance of the security operations.","PeriodicalId":357045,"journal":{"name":"Proceedings of IEEE Enterprise Networking Mini-Conference (ENM-97) in conjunction with ICC 97","volume":"36 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1997-06-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"Performance and manageability design in an enterprise network security system\",\"authors\":\"Jingsha He\",\"doi\":\"10.1109/ENM.1997.596874\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The design of an enterprise network security system presents a great challenge because of the complexity of networking environments and variation in design objectives. The design of a high performance and manageable enterprise network security system presents an even greater challenge. Such a system, however, would not only reduce the overall cost of system administration and user management, but also enhance the effectiveness of the security mechanisms due to the decrease in the number of mistakes that the security system administrators might make. Systems too complex and too cumbersome to manage achieves only part of the objectives for an enterprise network security system at best. We present the design of an enterprise network security system developed in MCI to protect network elements from user access in which performance and manageability are among the most important criteria that measure the success of the development. We describe the environment, the requirements and the design considerations as well as the mechanisms used in the design and development to achieve the objectives. A number of specific design decisions are discussed that help make the security system easier to manage and, at the same time, improve the performance of the security operations.\",\"PeriodicalId\":357045,\"journal\":{\"name\":\"Proceedings of IEEE Enterprise Networking Mini-Conference (ENM-97) in conjunction with ICC 97\",\"volume\":\"36 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1997-06-11\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of IEEE Enterprise Networking Mini-Conference (ENM-97) in conjunction with ICC 97\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ENM.1997.596874\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of IEEE Enterprise Networking Mini-Conference (ENM-97) in conjunction with ICC 97","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ENM.1997.596874","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 7

摘要

由于网络环境的复杂性和设计目标的多变性,对企业网络安全系统的设计提出了很大的挑战。设计一个高性能、可管理的企业网络安全系统是一个更大的挑战。然而,这样的系统不仅可以降低系统管理和用户管理的总体成本,而且还可以提高安全机制的有效性,因为安全系统管理员可能犯的错误数量减少了。对于企业网络安全系统来说,过于复杂和繁琐的系统充其量只能实现部分目标。我们提出了一个用MCI开发的企业网络安全系统的设计,以保护网络元素免受用户访问,其中性能和可管理性是衡量开发成功的最重要标准之一。我们描述了环境、需求和设计考虑因素,以及设计和开发中用于实现目标的机制。本文讨论了一些具体的设计决策,这些决策有助于使安全系统更易于管理,同时提高安全操作的性能。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
Performance and manageability design in an enterprise network security system
The design of an enterprise network security system presents a great challenge because of the complexity of networking environments and variation in design objectives. The design of a high performance and manageable enterprise network security system presents an even greater challenge. Such a system, however, would not only reduce the overall cost of system administration and user management, but also enhance the effectiveness of the security mechanisms due to the decrease in the number of mistakes that the security system administrators might make. Systems too complex and too cumbersome to manage achieves only part of the objectives for an enterprise network security system at best. We present the design of an enterprise network security system developed in MCI to protect network elements from user access in which performance and manageability are among the most important criteria that measure the success of the development. We describe the environment, the requirements and the design considerations as well as the mechanisms used in the design and development to achieve the objectives. A number of specific design decisions are discussed that help make the security system easier to manage and, at the same time, improve the performance of the security operations.
求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:604180095
Book学术官方微信