信息安全研究第10卷第4期2024年4月JournalotinformationSecurityResearchVol.10No.4Apr.2024DOl:10.12379/j.issn.2096-1057.2024.04.11银行业DAO数字化安全运营体系研究李丁炜林叶明孙钢袁昱(浙商银行股份有限公司杭州311200)(浙银网络安全创新实验室杭州(1687113490@qq.com)ResearchonBankingDAODigitalSecurityOperationSystem1311200)LiDingwei,LinYeming,SunGang,andYuanYu(ZheshangBankCo.,Ltd.,Hangzhou311200)(ZheyinNetworkSecurityInnovationLaboratory,Hangzhou311200)AbstractInthecurrenteraofexplosivegrowthofnetworkthreats,withthedigitalreshapingofbusinessmodelsandsustainedgrowthofbusiness,thebankingindustryisfacingproblemssuchasredundantsecurityequipment,heavysecurityoperationtasks,andinsufficientpracticalcombatcapabilitiescausedbythecontinuousexpansionofnetworksecuritydefenselines.Thispaperanalyzesthechallengesfacedbyfinancialinstitutionsinthebankingindustryinsecurityoperations,bankingDAO(defence,abilityandoperation)digitalsecurityoperationsystemintegratingpeaceandwarintegrationsecurityoperationmechanismhasbeenproposed,withafocusonstudyingthethree-levelarchitectureofdeepeningtheprotectionfoundation,atomizationcapabilitycenter,anddigitaloperationcenter,aswellastheimplementationpathofpeaceandwarintegrationmechanismfornormalized,high-strength,anduninterruptedprotectiontargets.Keywordsnetworksecurityoperation;securityequipmentmanagement;atomization;securityorchestrationautomationandresponse;integrationofpeacetimeandwartime摘要在网络威胁呈爆发式增长的当下,随着业务模式数字化重塑与业务持续性增长,银行业面临因网络安全防线持续扩大所导致的安全设备杂、安全运营任务繁重、实战能力不足等问题.对银行业金融机构在安全运营中所面临的挑战进行分析,提出了融合平战一体化安全运营机制的银行业DAO(defence,abilityandoperation)数字化安全运营体系,重点研究纵深化防护基础、原子化能力中枢、数字化运营总台3层次架构,以及针对常态化、高强度、无间断防护目标的平战一体机制实施路径。关键词网络安全运营;安全设备管理;原子化;安全编排自动化和响应;平战一体化中图法分类号TP309.1收稿日期:2023-08-04通信作者:林叶明(wslinym@163.c...
