Tej Yam Yuav Mus Nrhiav Hauv Qhov Kev Kab Ntsig Ntawm Kab Mob Los
Layered security yog ib qho kev lees txais kev lag luam ntawm lub computer thiab kev ruaj ntseg network (saib Hauv Kev Ntseeg Kev Dag). Qhov yooj yim premise yog tias nws yuav siv ntau cov khaubncaws sab nraud povtseg los tiv thaiv ntau yam kev tawm tsam thiab kev hem. Tsis tsuas yog ib qho khoom los yog cov txheej txheem tsis tiv thaiv tawm tsam txhua qhov kev tsim txom, yog li ntawd yuav tsum tau txawv cov khoom sib txawv rau ntau qhov kev hem, tab sis muaj ntau txoj kab ntawm kev tiv thaiv yuav cia siab rau ib yam khoom ntes tej yam uas tau dhau los ntawm cov kev tiv thaiv sab nraud.
Muaj ntau daim ntawv thov thiab cov cuab yeej siv uas koj tuaj yeem siv rau cov khaubncaws sab nraud povtseg txawv-antivirus software, firewalls, IDS (Intrusion Detection Systems) thiab ntau dua. Txhua tus muaj qhov sib txawv me ntsis thiab tiv thaiv los ntawm ib qhov sib txawv ntawm kev tawm tsam hauv ib txoj kev sib txawv.
Ib qho ntawm cov cuab yeej tshiab yog IPS- Kev Tiv Thaiv Kev Tiv Thaiv Kev Nyuaj Siab. Ib qho IPS zoo ib yam li muab cov IDS nrog ib lub firewall. Ib hom IDS yuav teev lossis qhia koj txog tej yam tsheb txawv, tiamsis qhov lus teb tuaj rau koj. Ib qho IPS muaj cov cai thiab kev cai uas nws sib piv cov tsheb khiav mus los. Yog tias cov tsheb khiav ua txhaum txoj cai thiab cov cai tswjfwm IPS tuaj yeem kho ua ke kom tsis txhob teb koj dua. Cov lus teb yuav yog los thaiv tag nrho cov tsheb khiav los ntawm qhov chaw nyob ntawm tus IP lossis los thaiv cov tsheb khiav ntawm qhov chaw nres nkoj kom tiv thaiv lub computer lossis network.
Muaj cov kev tiv thaiv raws kev tiv thaiv kev lag luam (NIPS) thiab muaj cov tswv yim tiv thaiv kev tawm tsam (HIPS). Thaum nws tuaj yeem pheej yig kom siv HIPS- tshwj xeeb tshaj yog nyob rau hauv ib qho chaw loj, chaw lag luam, kuv xav kom muaj kev ruaj ntseg rau tsev tos txais txhua qhov chaw. Ua rau muaj kev cuam tshuam cov kev xav thiab kev kis mob rau ntawm tus neeg ua haujlwm hauv lub chaw ua haujlwm yuav ua tau zoo dua ntawm kev thaiv, lossis tsawg kawg uas muaj, kev hem. Nrog rau hauv siab, ntawm no yog ib daim ntawv teev cov khoom yuav nrhiav hauv HIPS tov rau koj lub network:
- Tsis Txaus Siab rau Kos Npe : Kos npe - los yog cov yam ntxwv tshwj xeeb ntawm kev tsim kev hem - yog ib qho tseem ceeb tshaj plaws uas siv los ntawm software xws li antivirus thiab intrusion detection (IDS) .Cov kev kos npe yog tias lawv yog cov neeg tsis txaus siab. Kev kos npe tsis tau tsim kom txog txij tom qab muaj kev hem thawj thiab koj tuaj yeem raug xa rov qab ua ntej kos npe tsim. Koj qhov kev daws teebmeem HIPS yuav tsum siv kev kos npe raws li kev pom zoo nrog kev txheeb ze raws li qhov pom tseeb ntawm qhov "normal" network kev ua haujlwm zoo li koj lub tshuab thiab yuav teb tau cov tsheb khiav tsis zoo. Piv txwv, yog tias koj lub kaspivtau tsis siv FTP thiab dheev qee qhov kev hem thawj los qhib kev sib txuas ntawm FTP los ntawm koj lub computer, HIPS yuav pom tias qhov no yog kev ua haujlwm tsis zoo.
- Ua Haujlwm Nrog Koj Kev Teeb Meem : Ib txhia HIPS cov kev daws teeb meem yuav txwv tsis pub muaj cov kev pab cuam lossis cov txheej txheem lawv saib xyuas thiab tiv thaiv. Koj yuav tsum tau sim mus nrhiav HIPS uas muaj peev xwm tuav cov khoom lag luam tawm ntawm lub txee thiab lwm qhov kev tu-ncua kev tu vaj tse uas koj tau siv. Yog tias koj tsis siv cov ntawv thov kev pab lossis tsis xav txog qhov teeb meem no rau koj qhov chaw, tsawg kawg yog xyuas kom koj cov kua HIPS tiv thaiv cov kev pab cuam thiab cov txheej txheem koj khiav.
- Tso cai rau koj los tsim kev cai : Cov tswv yim feem ntau ntawm HIPS tuaj nrog cov txheej txheem zoo nkauj ua ntej cov cai thiab cov neeg muag khoom feem ntau yuav muab cov kev qhia tshiab lossis tso tawm cov cai tshiab los muab cov lus teb rau cov kev hem lossis kev tawm tsam tshiab. Txawm li cas los xij, nws yog ib qho tseem ceeb uas koj muaj peev xwm los tsim koj tus kheej cov cai thaum muaj teeb meem tshwj xeeb tias tus neeg muag khoom tsis khoom los yog thaum muaj kev ntshai tshiab tsoo thiab koj xav tau txoj cai tiv thaiv koj lub cev ua ntej tus neeg muag khoom muaj sij hawm los tso tawm cov kev hloov tshiab. Koj yuav tsum ua kom paub tseeb tias cov khoom koj siv tsis tau tsuas yog muaj peev xwm rau koj tsim cov cai, tab sis qhov kev tsim cov cai no yog qhov yooj yim rau koj kom nkag siab tsis muaj cov limtiam ntawm kev cob qhia lossis kev paub txog kev ua haujlwm.
- Muab Cov Lus Qhia thiab Kev Tswj Xyuas : Thaum peb tab tom tham txog kev tiv thaiv kev tswj hwm rau cov neeg zov me nyuam los yog cov chaw ua haujlwm, HIPS thiab NIPS cov kev daws teeb meem zoo ib yam thiab sab nrauv ntawm lub cheeb tsam tsev neeg. Yog li, txawm tias thaum tham txog HIPS koj zaum yuav tsum xav txog nws los ntawm qhov kev sib tham ntawm kev npaj HIPS rau tejzaum nws pua pua desktops thiab servers thoob lub network. Thaum nws tseem zoo los tiv thaiv ntawm tus neeg ua haujlwm hauv kev lag luam, kev ua haujlwm ntawm ntau pua tus neeg, los yog sim ua kom muaj kev tshaj tawm cov lus qhia yuav muaj peev xwm tsis muaj ib qho kev ceeb toom hauv nruab nrab thiab tswj kev ua haujlwm. Thaum xaiv ib yam khoom, xyuas kom nws tau centralized qhia thiab tswj hwm koj tso cai tshiab rau tag nrho cov cav tov los yog los tsim cov lus qhia ntawm txhua lub tshuab los ntawm ib qhov chaw.
Muaj ob peb yam koj xav tau kom nco ntsoov. Ua ntej, HIPS thiab NIPS tsis yog "mos txwv nyiaj" rau kev ruaj ntseg. Lawv tuaj yeem yog ib qho zoo sib xws rau cov khoom siv, kev tiv thaiv kev tiv thaiv xws li firewalls thiab antivirus applications ntawm lwm yam, tab sis yuav tsum tsis txhob sim hloov cov tswv yim uas twb muaj lawm.
Thib ob, thawj zaug pib siv HIPS kev daws teeb meem tuaj yeem mob siab. Kev txhim kho txoj kev txheeb xyuas qhov kev pom zoo feem ntau yuav tsum muaj kev sib txuas lus ntawm "tes tuav" los pab rau daim ntawv thov nkag siab tias qhov "tsheb" li cas thiab qhov tsis yog. Koj tuaj yeem ntsib ntau cov lus cuav lossis tsis tuaj yeem tsis xav ua haujlwm thaum koj ua haujlwm los tsim lub hauv paus ntawm qhov txhais tau tias "normal" ntawm koj lub tshuab.
Thaum kawg, tuam txhab lag luam feem ntau ua yuav khoom raws li lawv tau ua dab tsi rau lub tuam txhab. Standard accounting practice qhia tias qhov no yuav raug ntsuas raws li qhov xa rov qab ntawm peev, los yog ROI. Cov kws kho mob xav kom to taub yog hais tias lawv nqis peev nyiaj ntawm ib qho khoom tshiab lossis kev siv tshuab, ntev npaum li cas nws yuav siv sij hawm rau qhov khoom los yog siv tshuab los them rau nws tus kheej.
Hmoov tsis, kev ruaj ntseg ntawm lub network thiab khoos phis tawj tsis feem ntau haum cov pwm no. Kev ruaj ntseg ua haujlwm ntau dua ntawm kev rov qab-ROI. Yog tias cov khoom ruaj ntseg lossis kev siv hluav taws xob ua haujlwm raws li tsim lub network yuav muaj kev nyab xeeb - tab sis yuav tsis muaj "nyiaj" los ntsuas tus ROI los ntawm. Koj yuav tsum tau saib qhov rov qab thiab xav txog seb lub tuam txhab puas poob tau yog tias cov khoom lossis technology tsis nyob rau hauv qhov chaw. Yuav siv nyiaj npaum li cas rau kev tsim kho cov neeg siv khoom, cov ntaub ntawv rov qab, lub sijhawm thiab cov kev pabcuam rau cov kws tshaj lij kev ua haujlwm kom huv si tom qab kev tawm tsam, thiab lwm yam? Yog tias tsis muaj cov khoom yuav ua rau poob nyiaj ntau ntau tshaj qhov khoom lossis cov nqi siv tshuab los siv, ces tej zaum nws ua rau kev txiav txim siab ua.