Click here to load reader
Upload
phungthu
View
337
Download
4
Embed Size (px)
Citation preview
SYCG(D)-201811
20181
1
2
5
11
27
34
58
59
59
73
90
70
94
1
1 SYCG(D)-2018112 3
1.
1
1
2
1
3
1
4
1
5
1
6
1
7
WAF
2
8
1
9
1
10
3
2.
3.10,3
4.
5150.8
4
5
1
2
3
43
5
1
2(www.creditchina.gov.cn)(www.ccgp.gov.cn)
3
6
12018 1 26 18:00
2
3
4500536558208403
5
7
12018 2 9 230
22018 2 9 300
3100
4
5201829300
6100
8
1 4
9
3
536558208403
10
5
11
1.
2.
12
89
0515-82323851
15195435571
32
224300
2018119
2
1
2 2
150.8
*
3 3
4 4
5 5
6 6
7 7
1*8
2*8
8 8
9 9
10 10
11 11
1
2
1. *
2. *
3. *
4. *
5. *
6. *
7. *
8. *
3
9.
10.
11.
12 12
1. *
2. *
3. *
4.
5.
6.
7.
13 13
14 14
15 15
16 16
180
17 17
*U
18 18
19
10%
20 19
21 20
20113001
6 %
22 21
*(1) ""
(2)
23 22
*201048
24
*
25
5
26
*
(www.creditchina.gov.cn)(www.ccgp.gov.cn)
27 23
*
1.**
2.
3
1
1.
1.1.
1.2.
1.3. 2012692016198
2.
2.1. 1
2.2.
2.3.
2.4.
2.5.
2.6.
3.
3.1.
3.2.
1
2
3
4
5
6 3
7
3.3. 67
1 7
2 8
3.4. 7
3.5.
1 50%
2
3
3.6. 9
1
2 ,
3
4 3
5
6
7
8
4.
4.1. 20071192008248
5.
5.1. 20113001
6.
6.1.
7.
7.1.
7.2. 51
2
8.
9.
9.1. 5
10.
10.1.
11.
11.1.
1
2
3
4
5
6
7
8
12.
12.1. 15
12.2.
12.3.
12.4.
12.5. 15
12.6.
12.7.
3
13.
13.1.
13.2.
13.3.
13.4. *
14.
14.1.
11-13
14.2.
1 A4
2
14.3.
1 3
2
14.4.
1
2
3 13
4 0
5
6
7
8
14.5.
1 14
2 ,
3
15.
15.1.
15.2.
15.3.
15.4.
15.5.
16.
16.1. 16
16.2.
17.
17.1.
17.2.
17.3.
17.4. 17
17.5.
4
18.
18.1. U
19.
19.1.
20.
20.1.
20.2. XXX
20.3.
5
21.
21.1.
21.2.
21.3.
21.4.
21.5. 2
6
22.
22.1. 2/3300
22.2.
23.
23.1.
23.2.
1
2
3
23.3.
23.4.
1
2 10
3 ,
4
23.5. ,,
23.6.
24.
24.1.
24.2.
24.3.
25.
25.1.
25.2.
25.3. 6-10%21
26.
26.1.
26.2.
26.3.
26.4. 25
27.
27.1.
27.2.
28.
28.1.
28.2.
29.
29.1.
1 3
2 3
3
4
29.2.
7
30.
30.1. 2
30.2.
30.3.
30.4.
30.5.
31.
31.1. 30
31.2.
31.3.
31.4.
31.5. 2
31.6.
8
32.
32.1.
32.2
32.31001.5%1.0%100-5001.1%0.8%0.7%500-10000.8%0.45%10000.6%0.35%4500
32.4
32.5
9
33.
1
2
3
34.
34.1.
34.2.
34.3. 7
1
2
3
34.4.
1
2
3
4
34.5.
34.6. 7
34.7.
1
2
3
34.8.
34.9. 32224300
10
35.
35.1.
35.2.
35.3.
4
1
21
2
(30)
30
=()30
0-30
12
3
ISO 90011
ISO 20000 IT1
ISO 27001:20131
0-3
4
CNCERT12
CNNVD21
0-4
5
2
1
3A1
ISO9001:20151
0-5
18
(12)
31
0-12
2
33CISP32015201620172
0-2
2
CISP0.5,22017
0-2
2
120161
0-2
40
26
2
0-26
3
321()
0-3
3
321CCIDIDC()
0-3
3
3210()
0-3
2
0.5
0-2
3
0.53
0-3
5
150.8
10,3
89
0515-82323851
1
1
2
1
3
1
4
1
5
1
6
1
7
WAF
2
8
1
9
1
10
3
##
1 1
1
1
2
1
3
600A
1
4
LCD
1
5
7
6
1
7
10M
1
8
1
9
1
10
1
2 1
()
1GQQ120L/2.5
22.5mpa
35004801870mm
4DC24V
51~1.5A
610s
70-50C
199.6
2/mg/kg10
3HF/mg/kg1
4/0.01
2100
187~242V
0+40
95%
12V/12Ah
22V,12V12Ah,4.
385*134*510mm
100mm50mm
15V28V
0.3mA -10+55
2.8mA 95%RH
0.3mA -10+55
2.8mA 95%RH
DC30V/3A100k12V-48VDC24V/1.5A
3
WindowsLinux3--150
B/S
WebEmailDNSISA
ARP
,
WIFI3G
ModemCOMUSB
APSSIDSSID
360McAfee
Windows
Windows
Windows
WindowsWindowsWindows
USB KEY
64
CPU
CSACloud Security Alliance,
2010(CVE)
(CNCERT/CC)
4
1U51
IDS2.5G
150
24
IMP2P
4000
TCPSYNFLOODTCP STREAMFLOODUDP FLOODICMP FLOOD
Web
30
IPIPIPIPV6
step by step
HTMLPDFEXCELWORD
///IPIP
CMMI3
60
2016
5
EAL3+
1U
62TB
SNMP TrapSyslogODBC\JDBC\WMIFTPSFTPNetBIOSOPSEC.
HA
/
2
Syslog
EPS
Cisco PIXWindowsLinuxSolarisAIXIDOracleSQL ServerMySQLInformixDB2
CMMI3
2016
6
B/SHTTPS
2*USB1*RJ451*GE4*GE
2T200
300
500
IPIP
SSHSFTPRDPVNC TelnetFTPX11
VPNVPNVPNVPN
APP
APP
APP
EAL3+
(CNCERT/CC)
CVE80CVE
7
1U3G1GHTTP160
410/100/1000 Base-T4bypass+4SFP
0day
Web
HTTP/HTTPS/FTP
Web
HTTPS
SQL
XSS
CGI
WebWeb
SYN Flood/UDP Flood/ICMP FloodXML DoSHTTP FloodCC
Web
CSRF
CookieCookieCookie
Web
WebShell
Web
URL
Web
Web
URLWebWeb
URL
3
Web
CVE
IPv6
OWASPWEB
MAPPMicrosoft Active Protections Program
CVE100
8
1.
2.
3. OEM,
6CPU
, IP,MacIPTCP UDP ICMP IPARP
DPI(),WebDHCP
,Windows (2000, XP, 2003, Vista), Sun Solaris (8, 9, 10), Red Hat EL (4, 5), SuSE Linux (9)
SQL Injection Cross-site
VmwareH3C Citrix
Guest OS
WMotionStorage VMotionHA
(PCI DSS 10.6) SIEM OSSEC
Microsoft Windows 2000 (32) XP (32 /64) Vista (32/64) Windows 7Windows Server 2003 (32/64) Windows Server 2008 (32/64) linuxUNIX
1. Oracle, MySQL, Microsoft SQL Server, Ingres
1. Microsoft Exchange Server, Merak, IBM Lotus Domino, Mdaemon, Ipswitch, Imail, MailEnable Professional
1. Ipswitch, War FTP Daemon, Allied Telesis
1. Computer Associates, Symantec, EMC
1. Symantec, Veritas
1.
2. 800
3.
4. 58724
5. VMWARE
6.
9
/
20KW18KW
1
1
5300m3/H;
3kg/h
3.5kWPTC
:
100%
200
3.0
30-100%DIN625-40~70
2436510
ISO9001ISO14001CRAA
CCC
()
CQCCQC
40
10
180
2
3,
4
5
6
7
824
, ,
1
1
2
2
1
2
3
4
5
3
4
13
224243
3
5
1
2
/,
6
,:
1
2724
33
7
22
8
1724
21522424
3
4
1
100%
2
1
6
89
(0515)82323851
(0515)82323851
224300
() SYCG(D)-201811()--
1
1
2
3
4
2
1.1
1.2
1.3
1.4
1.5
1.6
1.7
1.8
1.9 /
1.10
1.11
1.12 //
1.13 //
1.14
2.1 345
3.1
3.2
3.3 2
4.1
4.2
4.3
1) 100%
2
4.4
4.5
5.1
5.2 110
5.3
5.4
5.5
5.6
5.7 30
5.8 89
6.1
6.2
/
6.3
(1) 2
(2) 2
(3)
6.4
7.1
7.2 ()
7.3
7.4
7.5
7.6
7.7
7.8 (A)(B)6(C)/ABC77
7.9 7
7.10 180(6)
7.11
8.1
8.2 30
8.3
8.4 30
9.1
9.2
9.3 2
9.4 48
9.5 (7)*(24)
9.6 24
9.7 2
9.8 72
9.9
9.10 ,
9.11
9.12
9.13 2
9.14 24//2/
9.15 /
9.16
10.1
10.2 ///
10.2.1
10.2.2 /
10.2.3
10.2.4
10.2.5
10.2.6 /
10.3
10.4
10.4.1 2
10.5
10.5.1 5%
10.5.22 2 2
10.5.3 10
10.5.4 5%/
10.5.5
10.6
10.7 //
10.8 //////////
11.1
11.2
11.3
11.4
12.1 ;
12.2 3
89
224300
12.3
13.1
13.2
14.1 ,
14.2
14.3
15.1
15.1.1
15.1.2
15.1.3
15.1.4
15.2
16.1
16.2
17.1
17.2
18.1
18.2
18.3
19.1
19.2
19.3
20.1
21.1
21.2 /
21.3
21.4
7
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
1.
2.
3.
4.
5.
6. *
7.
1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
2 *
3 *
()
1. 180
2.
1
2
3
4
5
6
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15. 510
1
2
3
4
5
6
:
()
()
4 *5 *6 *7 *8 *
9 *
/
10
11
*
:
SYCG(D)-201811
:
1
2
3
3
1 *
(:)
1
2
7
8
9
10
11
1
2
3
4
:
1. 7=5X6
2. 11=789+10
3.
1
2
3
(:)
1
2
3
4
(:)
1
2
3
1. 11-
2.
3.
2 *
1
2
3
4
3 *
4
1
2
3
......
5 6 7
8
1
[2011]181______
1 [2011]300______
2 __________________
1
2
SYCG(D)2018
1.180
2.
1
2
3
4
5
6
3.
4.
5.
6.510
1
2
3
4
5
6
:
()
()