某省地税信息安全规划方案.docx资源-CSDN文库

版权申诉

智慧城市

人工智能

36 浏览量 2023-09-25 15:01:50 上传评论收藏 3.36MB DOCX 举报

资源推荐

资源详情

资源评论

XX 省地税信息安全

规划方案

XX 有限公司

1 概述.................................................................................................................................................................5

1.1 背景介绍 ....................................................................................................................................................5

1.2 规划目标 ....................................................................................................................................................6

1.3 规划范围 ....................................................................................................................................................6

1.4 规划原则 ....................................................................................................................................................7

2 现状分析.........................................................................................................................................................8

2.1 网络现状 ....................................................................................................................................................8

2.1.1

横向网络结构

...................................................................................................................................8

2.1.1.1 税务外网.......................................................................................................................................................9

2.1.1.2 税务内网.......................................................................................................................................................9

2.1.1.3 前置区.........................................................................................................................................................10

2.1.2

纵向网络结构

.................................................................................................................................11

2.2 应用现状 ..................................................................................................................................................12

2.2.1

税收征管系统

.................................................................................................................................12

2.2.2

货运发票系统

.................................................................................................................................13

2.2.3

网上电子报税

.................................................................................................................................13

2.2.4

行政管理系统

.................................................................................................................................13

2.2.5

决策支持系统

.................................................................................................................................13

2.2.6

外部信息系统

.................................................................................................................................14

2.3 安全现状 ..................................................................................................................................................14

3 安全风险分析...............................................................................................................................................14

3.1 边界风险分析 ..........................................................................................................................................14

3.2 内网风险分析 ..........................................................................................................................................15

3.3 应用风险分析 ..........................................................................................................................................16

3.4 安全管理风险分析 ..................................................................................................................................17

4 安全需求分析...............................................................................................................................................18

4.1 边界安全需求分析 ..................................................................................................................................19

4.1.1

防止越权访问

.................................................................................................................................20

4.1.2

建立安全通道

.................................................................................................................................20

4.1.3

数据安全交换

.................................................................................................................................21

4.2 内网安全需求分析 ..................................................................................................................................21

4.2.1

部署入侵检测

.................................................................................................................................21

4.2.2

体系化防病毒

.................................................................................................................................21

4.2.3

自动补丁分发

.................................................................................................................................22

4.2.4

统一桌面管理

.................................................................................................................................22

4.3 应用安全需求分析 ..................................................................................................................................22

4.3.1

业务运行监控

.................................................................................................................................23

4.3.2

网络行为审计

.................................................................................................................................23

4.3.3

安全风险评估

.................................................................................................................................23

4.4 安全管理需求分析 ..................................................................................................................................24

4.5 安全需求分析总结 ..................................................................................................................................24

5 总体安全规划...............................................................................................................................................25

5.1 整体安全框架 ..........................................................................................................................................25

5.2 边界安全规划 ..........................................................................................................................................26

5.2.1

边界划分

.........................................................................................................................................28

5.2.2

边界防护

.........................................................................................................................................28

5.3 内网安全规划 ..........................................................................................................................................32

5.4 应用安全规划 ..........................................................................................................................................34

5.5 安全管理规划 ..........................................................................................................................................40

5.6 规划实现效果 ..........................................................................................................................................41

6 安全建设方案...............................................................................................................................................42

6.1 建设内容 ..................................................................................................................................................42

6.2 建设目标 ..................................................................................................................................................42

6.2.1

边界安全建设目标

.........................................................................................................................42

6.2.2

内网安全建设目标

.........................................................................................................................43

6.2.3

应用安全建设目标

.........................................................................................................................43

6.2.4

安全管理建设目标

.........................................................................................................................43

6.3 边界安全建设 ..........................................................................................................................................45

6.3.1

省局边界安全建设

.........................................................................................................................45

6.3.1.1 部署说明.....................................................................................................................................................46

6.3.1.2 具体功能.....................................................................................................................................................47

6.3.2

广域网边界安全建设

.....................................................................................................................59

6.3.2.1 部署说明.....................................................................................................................................................59

6.3.2.2 具体功能.....................................................................................................................................................60

6.4 内网安全建设 ..........................................................................................................................................62

6.4.1

部署说明

.........................................................................................................................................63

6.4.2

具体功能

.........................................................................................................................................64

6.5 应用安全建设 ..........................................................................................................................................70

6.5.1

部署说明

.........................................................................................................................................70

6.5.2

具体功能

.........................................................................................................................................71

6.6 安全管理建设 ..........................................................................................................................................78

6.6.1

部署说明

.........................................................................................................................................79

6.6.2

具体功能

.........................................................................................................................................79

6.7 配置清单 ..................................................................................................................................................81

7 建设计划.......................................................................................................................................................82

8 方案总结.......................................................................................................................................................83