| 1. | In this paper we analyzed the structure , function and characteristics of the private office network , discussed the primary threats to the office network security and common attack methods , based on the p2dr model , we distributed the office network security policy across three layers : network layer , system layer and application layer . the security principle , implement solution and the relationship among these three layers were illustrated in this paper , including physical access control , logical access control , vpn , data encryption , authentication , authorization , audit , ids ( intrusion detection systems ) , system leak test and anti - virus protection 本文中将办公网络的安全策略由下至上划分为网络层、系统层和应用层三个层次,分别叙述了各个层次上的安全原则和实现方式,以及各层之间的相互关系,详细介绍了物理控制、逻辑控制、 vpn与数据加密、用户认证和授权、审计与入侵检测、漏洞扫描及病毒防护等方面的策略和实现方式。 |