标准摘要
[中文适用范围]: ISO/IEC 18028 的这一部分提供了安全使用远程访问的指南——一种将计算机远程连接到另一台计算机或使用公共网络的网络的方法及其对 IT 安全的影响。 其中介绍了不同类型的远程访问,包括所使用的协议,讨论了与远程访问相关的身份验证问题,并在安全设置远程访问时提供支持。 它旨在帮助计划使用这种连接或已经使用这种连接并需要有关如何安全设置和安全操作它的建议的网络管理员和技术人员。 [外文原描述]: The general objectives of ISO/IEC 18028 are to extend the IT security management guidelines provided in ISO/IEC TR 13335 by detailing the specific operations and mechanisms needed to implement network security safeguards and controls in a wider range of network environments, providing a bridge between general IT security management issues and network security technical implementations. ISO/IEC 18028-4:2005 provides guidance for securely using remote access - a method to remotely connect a computer either to another computer or to a network using public networks - and its implication for IT security. In this it introduces the different types of remote access including the protocols in use, discusses the authentication issues related to remote access and provides support when setting up remote access securely. It is intended to help network administrators and technicians who plan to make use of this kind of connection or who already have it in use and need advice on how to set it up securely and operate it securely.
英文名称Information technology - Security techniques - IT network security - Part 4: Securing remote access