| 医院网络安全实行终端准入管理的探析 |
| |
| 引用本文: | 陆婷娟,肖征,晏亚,杨阳.医院网络安全实行终端准入管理的探析[J].中国数字医学,2021(2). |
| |
| 作者姓名: | 陆婷娟 肖征 晏亚 杨阳 |
| |
| 作者单位: | 中国人民解放军第903医院信息科;空军杭州特勤疗养中心疗养三区;西部战区总医院信息科;中国人民解放军第988医院信息科 |
| |
| 基金项目: | 浙江省医院可持续发展研究项目-医院桌面准入管理系统(编号:2019ZHA-ZDTQ214)。 |
| |
| 摘 要: | 目的:加强医院网络终端的准入管理,对终端进行统一管理和持续安全监控,同时提升IT工作人员的运维效率。方法:采用旁路链接的方式接入终端准入控制系统,通过在核心交换机上布置策略路由,将数据包引入到准入控制设备,实施对医院全网终端的管理与监控。结果:使非法的终端设备被有效地屏蔽在内网边界之外,网内终端的不合理上网行为也得到有效控制。结论:通过终端准入系统,医院变被动防护为主动防护,单点防护为全面防护,变分散管理为统一策略管理,提升了医院网络安全的防御能力,也为IT工程师的维护工作提供了极大的便利。
|
| 关 键 词: | 医院信息安全 终端准入 网络防护 |
Analysis on the Implementation of Terminal Access Management for Hospital Network Security |
| |
| Institution: | (不详;Information Department,the 988th Hospital of PLA,Zhengzhou 450000,He'nan Province,P.R.C.) |
| |
| Abstract: | Objective:To strengthen the access management of hospital network terminals,to carry out unified management and continuous security monitoring of terminals,and to improve the operation and maintenance efficiency of IT staff.Methods:Access the terminal control system through side channel link,forward the data packets to the access control equipment with the help of routing policy deployed on the root switch.In this way,all of the hospital network terminals under control of the management and monitoring system.Results:The illegal terminal equipment was effectively shielded outside the internal network boundary,and the unreasonable Internet behavior of the network terminal was effectively controlled.Conclusion:Through the terminal access system,the hospital changes passive protection to active protection,single point protection to comprehensive protection,and decentralized management to unified strategy management,which improves the defense ability of hospital network security and provides great convenience for the maintenance of IT engineers. |
| |
| Keywords: | hospital information security terminal access network shield |
| 本文献已被 维普 等数据库收录! |
|
