标准摘要
[中文适用范围]: ISO/IEC 27033 的此部分为利用安全网关(如防火墙、应用防火墙、入侵保护系统等)保障网络间通信的安全提供了指导,指导内容须依据安全网关的成文信息安全政策,包括:a) 识别并分析与安全网关相关的网络安全威胁;b) 基于威胁分析,定义安全网关的网络安全需求;c) 采用设计与实施技术,应对典型网络场景中的威胁及控制要素;d) 解决安全网关在实施、运行、监控和评审过程中的控制问题。 [外文原描述]: ISO/IEC 27033-4:2014 gives guidance for securing communications between networks using security gateways (firewall, application firewall, Intrusion Protection System, etc.) in accordance with a documented information security policy of the security gateways, including: identifying and analysing network security threats associated with security gateways; defining network security requirements for security gateways based on threat analysis; using techniques for design and implementation to address the threats and control aspects associated with typical network scenarios; and addressing issues associated with implementing, operating, monitoring and reviewing network security gateway controls.
英文名称Information technology - Security techniques - Network security - Part 4: Securing communications between networks using security gateways