网镜业务认证审计系统产品白皮书(2007年9月修订)四川赛贝卡信息技术有限公司2007年目录1.体系结构及系统构成......................................................................................................................21.1网镜-CONSOLE控制台.....................................................................................................................41.2网镜-SERVER审计服务器................................................................................................................41.3网镜-SENSOR嗅探器.......................................................................................................................51.4网镜-AGENT认证代理.....................................................................................................................51.5策略库(PL)..................................................................................................................................62.主要功能及特点..............................................................................................................................62.1集中管理的强身份认证..................................................................................................................72.2审计及响应......................................................................................................................................82.3系统性能监控和辅助故障分析......................................................................................................92.4多种审计报告输出........................................................................................................................112.5历史分析及安全趋势预测............................................................................................................122.6集中统一的安全管理....................................................................................................................133.策略库............................................................................................................................................133.1数据库审计及响应(DBPL).....................................................................................................133.2FTP/TELNET审计及响应(MANAGEMENTPL).........................................................................143.3SSH协议审计及响应(网镜-PROXY/UNIXTERM)....................................................................153.4远程桌面终端(RDP)操作审计................................................................................................164.典型应用及成功案例....................................................................................................................164.1中小网络应用................................................................................................................................164.2大型网络应用................................................................................................................................171.体系结构及系统构成网镜业务认证审计系统集认证、授权、安全响应和安全审计为一体,为计算机系统提供了一个统一、集中的授权、访问控制和审计平台。典型的系统配置和部署如下图所示。网镜系统典型配置安全风险往往出现在“不同”之中,出现在“设想”之外。网镜业务认证审计系统从多角度显示系统在怎样的运行、后一时刻与前一时刻的运行有何不同,系统的实际运行状况与设计(或设想)的运行模式...
