安全通信网络现状问题分析
可信验证-终端入网设备问题
目前医院网络的硬件设备如防火墙、入侵检测系统、入侵防御系统等常规的网络安全产品能够解决信息系统一部分安全问题,但客户端的安全一直是医院安全的问题所在。大多数员工因为却上计算机相关基础知识以及时间的紧张,却少对办公电脑的维护,根据相关调查,医院普通员工基本上对电脑的防护只限于使用免费杀毒软件进行磁盘清理和病毒查杀,所以办公终端成了一个重灾区。而造成这些安全隐患的原因大大概有一下几点:
- 1没有规范化终端管理
- 2 不能为客户端下发自动升级补丁,导致攻击漏洞
- 3 员工随意下载或者点击不安全信息
- 4 随意插入不安全移动存储设备
At present, conventional network security products such as firewalls, intrusion detection systems, and intrusion prevention systems in hospital network hardware can solve some security problems in information systems, but the security of clients has always been the problem of hospital security. Most employees have less computer-related basic knowledge and time constraints, but less maintenance of office computers. According to related investigations, the protection of ordinary employees in hospitals is basically limited to the use of free anti-virus software for disk cleaning and virus detection. Therefore, the office terminal has become a severely affected area. The reasons for these security risks are probably the following:
-1 No standardized terminal management
-2 The automatic upgrade patch cannot be issued for the client, resulting in an attack vulnerability
-3 Employees download or click unsafe information at will
-4 Insert unsafe mobile storage devices at will