摘要
数据安全分区是通过对系统内数据、文件的传输通道进行限制与管理,切断可能发生数据泄漏的传输通道。在系统的测试上线,日常运维、检修升级,下线等过程中容易发生数据泄漏。通过分析日常运维过程中所面临的风险,采取安全分区的防护措施,引入申请审批机制,规范数据库运维操作行为,细化对数据访问权限的控制,限制数据传输通道,从而解决运维系统中的数据泄漏隐患。
Data security partition is to restrict and manage the transmission channel of data and file in the system, and cut off the transmission channel where data leakage may occurs.Data leakage is easy to occur during the process of system on-line test, daily operation, maintenance and upgrade, off-line, etc.By analyzing the risks faced by the daily operation and maintenance process, the paper adopts the protection measures of the security partition, introduces the application examination and approval mechanism,regulates the operation and maintenance behavior of the database,details the control of the data access authority,and restricts the data transmission channel,so as to solve the hidden danger of data leakage in operation and maintenance system.
作者
朱兵
王旭东
叶水勇
陈清萍
蔡翔
王萍
胡聪
ZHU Bing;WANG Xudong;YE Shuiyong;CHEN Qingping;CAI Xiang;WANG Ping;HU Cong(State Grid Huangshan Power Supply Company,Huangshan 24500,China;State Grid Anhui Xintong Company,Hefei 23006,China;State Grid Anhui Electric Power Co.,Ltd.,Hefei 230022,China)
出处
《国网技术学院学报》
2019年第2期27-31,46,共6页
Journal of State Grid Technology College
基金
国网安徽省电力公司项目“数据治理过程中数据安全防护技术研究及应用”(项目编号:5212S0170002)
关键词
安全分区
数据泄漏
运维审计系统
文件传输
security partition
data leakage
operation and maintenance audit system
file transfer
作者简介
王旭东(1966),男,高级工程师。研究方向:电力行业信息化管理。
