Huawei 3com Application Layer Security Solutions For A New Chapter
Background: Golden Tax Project is a national e-government system
, 12 key construction of a system, it is conducive not only to strengthen our tax administration, tax collection and management to promote the deepening of reform, and other e-government national projects provided rich source of shared data is beneficial to information sharing between government departments and cooperative relations is conducive to building a comprehensive national e-government forward. With the popularity of the Internet and security technology, the tax system for personal business on the Internet to carry out step by step, the current line of bonded, including travel tax, withholding tax, stamp duty and other common, but a series of security threats into the network construction tax must be resolved, such as e-mail viruses, worms, spyware, cheating, etc. These are Internet business-oriented tax system, the process of opening up can not be avoided, the face of these threats made Huawei 3Com depth security solutions, introduced the face of threats to the application layer solutions.
1. Application-layer threats introduced 2000 years ago, when we talk about Internet safety, also mainly refers to the firewall, because then the security has been mainly dominated the network layer access control. Indeed, a firewall is like a security door, give us a basic security. But, as today's best security doors can not stop the "bird flu" virus, as the firewall can not stop the spread of today's Internet threats. Today's network security status and compared to the year 2000, great changes have taken place, we have entered a "threat to the application layer," the era of proliferation.
Today, various worms, spyware, phishing and other application-layer threats and EMAIL, mobile code, and formed a complex threat, a threat more dangerous and difficult to resist. The threat of direct attack on core servers and applications, enterprises will be a major loss; attacks end-user computer, the information risk to users or damage to property; on the network infrastructure DoS / DDoS attack, causing infrastructure paralyzed; more What is more, such as eDonkey, BT and other P2P applications, and MSN, QQ instant messaging software such as the popularity of the precious bandwidth resources are business related traffic waste an enormous loss of resources. Faced with these problems, the biggest problem with traditional solutions is that the firewall working in TCP/IP3 ~ 4 layer, simply to "see" no such threats exist, IDS, as a bypass device, for these threats and "see without resistance ", so we need a new security solution.
In resolving the issue, we need to look at the application layer threats in the form and principles. The so-called application-level threats, including the following forms:
Figure 1, the application layer threats
We concentrate on worms, spyware, bandwidth misuse of these three typical application layer threats.
1.1. Worm Worm is defined as "computer networks through self-replicating malicious programs, the proliferation of network congestion and can lead to paralysis." In essence, worms and viruses is the biggest difference is that worms spread through network initiative, which the virus requires human manual intervention (such as various external storage media literacy). But now, worms, and often viruses, Trojans, and DDoS and other threats to combine hybrid worm.
Worms take many forms, including system vulnerabilities worms, mass-mailing worm, share-based worms, parasitic worms and mixed-type worms. We focus on the "vulnerabilities worms" vulnerabilities worms use client or server operating system, application software vulnerabilities to spread, become the most dangerous worms. To the Blaster worm, for example, is the use of MicrosoftRPC DCOM buffer overflow vulnerability to spread. Vulnerabilities worms spread quickly, a wide range of great harm. For example, CodeRed outbreak in 2001 brought to the global loss of 20 billion dollars, while the SQ? Slammer only 10 minutes to break the world! The following for the past five years, Microsoft's operating system vulnerabilities five most famous worm:
Code Red (CodeRed): MS01-033, Microsoft Index Server buffer overflow, use TCP 80 Communication
SQ? SLAMMER: MS02-039, SQL server vulnerabilities, to spread the use UDP 1434
Shock (Blaster) MS03-026, RPC DCOM service vulnerability using TCP 135 139 and so spread
The Sasser (Sasser): MS04-011, LSASS Local Security Authority Subsystem Service vulnerability, such as port communication using TCP445
Zobot MS05-39, windows PnP service vulnerability using TCP 445 port for communication
The five worms are notorious worms, which Zobot to December 2005 was still raging with its network of more than prestige. Because vulnerabilities worms have taken advantage of software flaws in the design and take advantage of their existing business communication port, the traditional firewall to its almost nothing. In fact, the system vulnerability is a hotbed for the breeding of worms, the network allows them to behave unscrupulously.
Huawei 3com Application Layer Security Solutions For A New Chapter
By: viedy
Sure-fire Job Hunting Tips for New Graduates Lighting And Mastering Digital Photography Expo Shoe Together To Try New Marketing Strategy Advice To Gay Men New To Online Dating How To Find And Locate The Male G Spot For Mega Orgasms Best New Toys for 2010 What Are These Amazing Green Energy Sources? Advice Dating Top Use Natural And Safe Techniques To Enlarge Your Penis To New Lengths! Bosque: Mike Mussina, or into a new scapegoat for Real Madrid will be fired without a crown Penis Male Enlargement Extender Penis Pills Are A Waste Of Time - Develop A Natural Approach To Enhancement Neopets: The Energy of Young children and Their Imagination Saving Money And Saving Energy With LED High Bay Lighting SEO New York - A step ahead from others Polanski Will Finish His New Movie in Jail