摘要
为解决高校内网安全问题,对主机安全防护技术进行了研究,提出基于EDR(Endpoint Detection and Response,端点检测与响应)的高校内网终端主机安全防护体系,阐述了该体系核心要点,提出EDR与其他网络安全检测、防护设备联动机制,并通过实践印证了该体系能有效提升高校内网主机安全防护能力,提高网络安全运维、管理效率。
In order to solve the problem of Intranet security in colleges and universities,this paper studies the host security protection technology,puts forward the security protection system of Intranet terminal host in colleges and universities based on EDR (Endpoint Detection and Response),expounds the core points of the system,puts forward the linkage mechanism between EDR and other network security detection and protection equipment,and proves that the system can effectively improve the security protection ability of Intranet host in colleges and universities through practice,and it can improve the efficiency of network security operation and maintenance management.
作者
费禹
FEI Yu(Information&Network Center,Beijing Information Science&Technology University,Beijing 100192,China)
出处
《现代信息科技》
2022年第14期51-53,57,共4页
Modern Information Technology
关键词
网络安全
EDR
主机安全
高校内网
威胁处置
network security
EDR
host security
university Intranet
threat disposal
