Closed loop type network security supervision method and system for security threat event

Abstract

The invention relates to a closed loop type network security supervision method and system for a security threat event. When a security detection module finds the security threat event and needs to notify, a corresponding state tag code is set and recording is carried out; alarm information is generated and sent to an alarm contact; the alarm contact disposes and submits the event state tag code and modifies the event state tag code into a to-be-audited state; a network security supervision mechanism audits to confirm whether the event state tag code is effectively disposed; if no, the networksecurity supervision mechanism continuously notifies to rectify; and events disposed by adopting network access control are directionally tracked, and other effective disposes are completed accordingto flow. According to the invention, the particularity of network security is combined; a closed loop of finding, notification, dispose and tracking management is constructed for the security threatevent; the security threat event is continuously tracked so as to ensure closed-loop dispose and correct repair of the event; process data can be quantized and can be examined; a current situation anda dispose condition of the security threat event of a subordinate supervision mechanism are effectively quantized; network security supervision means are increased; and the network security supervision efficiency and the jurisdiction security level are continuously promoted.

Description

technical field [0001] The present invention relates to the transmission of digital information, such as the technical field of telegram communication, and in particular to a closed-loop network security supervision method and system for security threat events. Background technique [0002] The application of information technology has profoundly affected and changed people's production methods and lifestyles, promoted the progress and development of all aspects of society, and played an important role in promoting and supporting various fields of the national economy. With the continuous improvement of the level of information application and the continuous expansion of the scope, the problem of network information security has become increasingly prominent, seriously affecting national security, social stability, and economic order. The national level has also paid more and more attention to this issue, and has issued a series of policies in recent years, requiring various...

AI Technical Summary

Problems solved by technology

[0005] In order to solve the problems in the prior art, the means of network security supervision is single, and it is impossible to accurately monitor the handling of network security threat events and the regional network security handling capabilities, and it is impossible to grasp the comprehensive level of regional network security capabilities. The present invention provides an optimized The closed-loop network security supervision method and system for security threat incidents, through the organic integration of security detection capabilities, regional network security personnel, and regional information systems, continuously discovers security threats, assists and urges regions to rectify threats, thereby improving regional information System security level and the security level of network security personnel in the region, thereby greatly improving the level of regional network security

Images