信息安全等级保护(三级)建设方案目录1.前言............................................................................................................31.1概述...................................................................................................31.2相关政策及标准...................................................................................32.现状及需求分析............................................................................................52.1.现状分析...........................................................................................52.2.需求分析...........................................................................................53.等保三级建设总体规划...................................................................................63.1.网络边界安全建设...............................................................................63.2.日志集中审计建设...............................................................................63.3.安全运维建设.....................................................................................63.4.等保及安全合规性自查建设..................................................................63.5.建设方案优势总结...............................................................................74.等保三级建设相关产品介绍.............................................................................94.1.网络边界安全防护...............................................................................94.1.1标准要求...................................................................................94.1.2明御下一代防火墙.....................................................................104.1.3明御入侵防御系统(IPS)..........................................................134.2.日志及数据库安全审计.......................................................................154.2.1标准要求.................................................................................154.2.2明御综合日志审计平台...............................................................174.2.3明御数据库审计与风险控制系统..................................................194.3.安全运维审计...................................................................................224.3.1标准要求.................................................................................224.3.2明御运维审计和风险控制系统.....................................................234.4.核心WEB应用安全防护....................................................................264.3.1标准要求.................................................................................264.3.2明御WEB应用防火墙...............................................................274.3.3明御网站卫士...........................................................................304.5.等保及安全合规检查..........................................................................314.5.1标准要求.................................................................................314.5.2明鉴WEB应用弱点扫描器.........................................................324.5.3明鉴数据库弱点扫描器...............................................................344.5.4明鉴远程安全评估系统...............................................................374.5.5明鉴信息安全等级保护检查工具箱...............................................384.6.等...
